Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa
File: 3231332e3133392e38302e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: vX980/HTjpLxFzysuCjNNiczFgg76ECVaMescQthrSE=
Subject key identifier: 2D:12:33:73:4C:B6:B6:2C:EE:56:8C:BF:25:3A:00:04:CA:81:8B:BF
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 2A8B16C0A5A535FE7E684A90B4EAB1CEE18A601C
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa
Signing time: Fri 30 Aug 2024 00:01:36 +0000
ROA not before: Thu 29 Aug 2024 23:56:36 +0000
ROA not after: Fri 29 Aug 2025 00:01:36 +0000
asID: 834
IP address blocks: 213.139.80.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 16:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:8b:16:c0:a5:a5:35:fe:7e:68:4a:90:b4:ea:b1:ce:e1:8a:60:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Aug 29 23:56:36 2024 GMT
Not After : Aug 29 00:01:36 2025 GMT
Subject: CN=2D1233734CB6B62CEE568CBF253A0004CA818BBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ef:8f:2c:7c:1e:3e:f6:f9:a4:79:9f:e0:fd:
1f:ab:c3:98:2b:d5:c9:27:a1:22:2d:78:c8:12:6e:
a2:0a:6c:76:75:98:d4:40:ef:da:36:8a:76:66:52:
a4:47:09:1b:a5:7e:3c:be:8f:5d:76:4d:63:fc:8c:
c6:be:19:ec:a1:df:fd:e3:3f:b4:56:96:38:d2:b6:
0c:9d:dc:fd:9c:42:30:fc:22:4e:21:4a:d1:68:04:
98:0c:cd:f3:47:96:3a:d0:75:ae:af:08:1d:db:26:
37:8d:f2:f8:db:42:2a:8c:c1:c4:4c:09:a4:9f:9b:
12:0e:83:fb:75:d8:6c:71:a9:8f:40:42:55:39:f2:
c8:85:1f:05:c3:4d:8f:d0:82:22:e9:36:4f:2b:c8:
38:68:e7:15:f4:d4:2e:1c:c0:56:41:74:a3:c4:e9:
37:8f:08:e9:2f:e8:fd:bf:5c:35:74:ac:17:39:38:
93:07:64:31:39:19:ff:fe:d8:86:95:c6:c4:5a:8f:
eb:ef:83:ac:be:f6:fa:1e:6c:56:2c:51:8e:88:76:
71:5e:db:c9:be:4b:e9:19:0e:31:2f:a9:16:92:dd:
2f:6c:85:92:42:e7:87:f6:97:a2:17:dc:4c:7f:b2:
39:7d:f6:6e:05:39:fd:c0:93:9a:8c:ea:ef:6e:8a:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:12:33:73:4C:B6:B6:2C:EE:56:8C:BF:25:3A:00:04:CA:81:8B:BF
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38302e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.80.0/23
Signature Algorithm: sha256WithRSAEncryption
14:da:b1:56:a1:09:fd:d5:b8:13:89:53:6a:a3:c0:8e:1a:5b:
b4:e7:3a:a3:73:86:fd:6b:29:b4:14:d7:9a:7b:bf:55:ae:33:
c6:c6:19:a4:b8:08:5e:95:93:0e:52:65:b1:96:12:5b:60:21:
b5:62:7d:72:0c:13:84:0e:a6:fc:be:a4:c8:dd:95:4a:a1:85:
57:40:17:e2:69:70:0d:bb:4f:f1:64:81:9f:d4:91:22:0d:46:
18:3a:54:a8:0b:8d:b9:7a:e8:6d:5d:a9:40:21:a9:80:e7:ea:
3d:f4:fa:9a:f7:85:7c:5f:53:fa:aa:e1:f6:55:0b:38:d4:28:
cb:56:43:17:50:19:01:76:a9:af:f9:0f:a8:23:1f:de:cf:c5:
e8:06:c2:fe:24:aa:74:4a:ce:86:0b:9a:74:87:fb:fe:ca:fd:
04:a4:e0:19:87:11:e7:41:c8:79:65:78:4b:a8:05:30:92:ac:
31:e7:34:01:b7:97:63:83:fc:63:d5:27:2e:9e:66:d8:35:82:
53:e9:29:28:85:14:f7:a5:d8:c5:5b:07:b1:2b:8a:31:1c:53:
f9:88:ed:82:cb:1f:f4:f5:95:88:42:e3:75:d3:d9:18:a0:8a:
dd:d9:51:04:1b:81:7b:c9:4c:3c:e4:1e:9b:2f:61:f8:e6:1c:
b3:eb:1d:77
-----BEGIN CERTIFICATE-----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Generated at Tue Nov 19 19:24:41 2024 by rpki-client on console-fra.rpki-client.org