Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32342d3234203d3e20323031363730.roa
File: 3231332e3133392e37382e302f32342d3234203d3e20323031363730.roa (raw, json)
Hash identifier: dV/azXJX9pX5njRfUcGl9GP6MOvGnShtqUdR626Ajb0=
Subject key identifier: CD:32:83:3C:56:BA:DC:2E:4B:D0:E3:6D:6A:6D:DF:C5:D1:A7:39:91
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 37AB662352F7A3F7C7D175FE26ACBE07586EE2AD
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32342d3234203d3e20323031363730.roa
Signing time: Mon 11 Mar 2024 15:28:08 +0000
ROA not before: Mon 11 Mar 2024 15:23:08 +0000
ROA not after: Mon 10 Mar 2025 15:28:08 +0000
asID: 201670
IP address blocks: 213.139.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:ab:66:23:52:f7:a3:f7:c7:d1:75:fe:26:ac:be:07:58:6e:e2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 11 15:23:08 2024 GMT
Not After : Mar 10 15:28:08 2025 GMT
Subject: CN=CD32833C56BADC2E4BD0E36D6A6DDFC5D1A73991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:d7:26:f3:32:f9:92:6f:2b:24:30:0e:d7:
b7:61:45:94:91:66:30:c6:9b:e4:96:4f:62:b2:bc:
63:4b:c8:1a:37:9a:22:8d:dc:0f:97:b9:33:5e:68:
7a:bf:74:39:0d:59:c9:15:03:d2:f0:ba:ea:94:4c:
f1:45:30:c7:d3:09:03:4e:0a:b9:b1:4c:b7:f4:b7:
3e:8c:1d:62:91:89:77:06:4a:84:cf:a2:73:1f:fe:
9e:97:7d:4c:06:3d:52:c1:c5:02:84:4e:3f:7b:9d:
f5:00:47:e7:f7:27:34:3e:0f:d9:a9:c6:b3:db:e2:
90:95:f1:5c:57:31:23:60:ca:bb:1d:97:2c:af:d4:
a9:a1:a6:74:16:49:c9:1b:6a:28:f6:11:c2:07:79:
c0:12:4c:da:22:6d:e5:46:00:90:9b:f0:4b:64:a0:
3b:18:b4:9b:b0:59:e9:ad:0b:05:fb:af:d8:dc:ab:
76:83:c2:d4:96:82:c8:9f:e2:f6:e8:76:f8:34:d6:
06:1c:e3:6b:7b:a2:34:dd:a5:64:dc:69:12:11:fb:
51:47:1d:22:18:1f:7f:5e:d2:15:13:40:36:57:9c:
8f:a9:4e:a2:2f:40:52:91:86:4a:16:fb:f6:34:5c:
a3:1e:cf:1c:8f:55:e5:6e:a0:44:b1:8a:07:0b:46:
6a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:32:83:3C:56:BA:DC:2E:4B:D0:E3:6D:6A:6D:DF:C5:D1:A7:39:91
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37382e302f32342d3234203d3e20323031363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.78.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:a2:7a:b3:15:7e:98:d2:40:42:34:5b:20:e4:c0:08:39:1f:
64:c8:30:62:63:22:00:06:2e:c4:6b:10:79:f5:e8:8e:4f:42:
33:1e:1e:f2:5a:be:f3:4c:f5:c3:a9:1e:3b:95:08:57:cf:4a:
92:b8:90:e3:9b:50:f5:ee:9a:87:23:49:6f:62:7b:02:1e:7f:
ae:93:e0:04:90:1b:28:4e:70:94:40:bf:0e:8a:4a:ea:1f:36:
a3:cd:b9:78:4c:ca:4b:4b:9d:8f:70:96:19:1d:dc:00:77:85:
48:c8:2c:35:23:aa:a4:33:ff:fa:cc:95:59:b1:9b:fe:7b:23:
15:c1:57:92:fa:34:9f:6f:34:b9:78:12:2d:7b:23:36:08:c1:
d0:9b:f0:3a:1e:5e:86:b4:89:d0:af:75:f0:59:0a:3d:46:b6:
1d:20:ed:a0:a9:ee:f2:75:a6:86:67:bf:eb:31:da:6a:17:64:
53:00:7b:a1:6e:87:60:90:2a:f4:d2:13:cc:10:98:ef:9c:d0:
fe:d6:7f:f1:4e:5a:87:6d:12:33:68:bf:9a:92:10:5a:d3:c7:
9d:9d:c0:bb:29:e2:a7:20:c6:8b:1f:bd:bd:bb:12:8d:e5:19:
69:e8:96:ce:d2:83:6c:cb:14:fe:05:d8:2f:a8:60:21:99:5a:
72:45:47:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:45 2025 by rpki-client