Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e37372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Q1u2acHGnrVvXMXDwRcmvctNkU3x9BIgM08+bRvnL1k=
Subject key identifier: C4:29:5F:31:58:F7:BC:A4:3D:99:81:D4:4B:3E:94:0D:2F:A5:37:8C
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 3173B1A3509BFAC36F4684A875848A8F1A6754DA
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
Signing time: Fri 25 Oct 2024 00:04:24 +0000
ROA not before: Thu 24 Oct 2024 23:59:24 +0000
ROA not after: Fri 24 Oct 2025 00:04:24 +0000
asID: 834
IP address blocks: 213.139.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 18:27:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:73:b1:a3:50:9b:fa:c3:6f:46:84:a8:75:84:8a:8f:1a:67:54:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Oct 24 23:59:24 2024 GMT
Not After : Oct 24 00:04:24 2025 GMT
Subject: CN=C4295F3158F7BCA43D9981D44B3E940D2FA5378C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:10:b2:f6:60:3b:1f:be:64:04:2b:e3:f5:05:
28:32:58:6c:81:72:bf:6b:ac:ca:90:03:77:a4:06:
c5:4e:42:a5:31:7e:cf:c9:e8:7a:ae:f2:e7:a6:ab:
cd:28:26:76:42:6a:03:2f:30:43:b0:3c:0b:b5:a7:
ef:c2:5e:c4:a9:6f:fc:2e:af:31:7e:97:15:c7:32:
ea:96:1b:96:8b:82:8e:9c:29:a5:04:24:c7:cd:00:
10:ac:af:84:8b:78:f9:af:db:18:5f:b1:9e:09:bb:
36:06:b0:0f:23:98:89:50:c3:a2:3e:95:6a:72:b2:
e8:44:0c:78:0c:51:a5:8c:27:41:ee:d7:c4:2d:e3:
0b:dd:38:bd:1e:a4:9c:8d:ee:b5:2b:87:bd:e3:04:
e8:9a:59:d6:9f:a9:e2:22:dc:72:72:f6:c2:64:90:
b3:8f:16:73:d0:5e:db:a2:91:52:68:dc:7c:c8:3d:
93:22:2c:2b:bb:3b:b4:fa:8a:88:5b:dc:4a:63:ae:
71:2a:fd:6f:54:6a:66:dc:9a:c3:09:48:d1:9f:a8:
b3:52:f4:8c:bf:d4:6e:ce:96:32:d5:c0:fe:7b:6f:
28:25:30:4b:10:03:9c:a6:97:e6:69:a1:4d:8c:c2:
11:06:34:57:77:40:53:5c:2e:42:07:91:d8:70:ff:
5d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:29:5F:31:58:F7:BC:A4:3D:99:81:D4:4B:3E:94:0D:2F:A5:37:8C
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.77.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ab:5c:35:99:f2:6f:a1:4a:b0:da:8c:4e:b9:06:6e:25:04:
0f:3b:69:b3:82:17:8b:00:6f:18:4b:85:16:8c:dd:81:99:ba:
f9:7d:84:be:e8:0c:94:25:cd:34:20:65:b9:cb:98:9d:36:a2:
8a:50:3d:a7:bb:41:8e:30:c0:46:4d:28:c7:c3:bd:23:bc:cf:
a2:d9:fa:e3:83:0c:aa:ee:70:f3:72:c6:84:9c:a3:b2:bf:c4:
7d:49:e4:76:c8:dc:c2:54:75:85:ad:b8:83:67:e9:38:c7:b7:
17:4c:6a:64:ac:df:9c:ee:0d:87:90:37:53:63:68:c8:15:dd:
f0:01:a3:c0:51:dc:62:80:72:89:f5:88:50:01:19:85:37:c3:
48:0b:40:b8:cd:b8:ff:ab:76:03:bb:13:44:49:a9:67:be:f6:
99:5b:bf:e4:cf:a0:ab:fb:08:42:3b:ff:8d:95:37:9c:96:3f:
ff:fa:2c:19:c5:be:b1:16:6a:bf:c9:fa:5a:f5:03:e2:1e:57:
57:d3:d2:b2:a0:b7:c1:69:56:5e:93:d2:54:04:11:ad:73:27:
01:ce:aa:76:e8:42:ce:80:38:e7:ed:57:57:ad:63:a9:1c:66:
ac:32:6d:a7:25:dd:58:f9:04:4c:c1:f6:05:26:44:f2:dd:d5:
c3:4a:94:14
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 27 21:35:11 2024 by rpki-client on console-ams.rpki-client.org