Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39302e302f32332d3234203d3e20383334.roa
File: 3231332e3133392e39302e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: 9gNzlJkgvHD/xtso8AkG7L5euJGVQFr9MTyeBsD1VS8=
Subject key identifier: 60:D5:FD:70:4C:0D:DF:2A:43:37:1D:41:E2:8E:20:96:C3:36:C3:C4
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 73B83AFC94CB91518B787F0220386A834B48CB52
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39302e302f32332d3234203d3e20383334.roa
Signing time: Mon 20 May 2024 16:21:30 +0000
ROA not before: Mon 20 May 2024 16:16:30 +0000
ROA not after: Mon 19 May 2025 16:21:30 +0000
asID: 834
IP address blocks: 213.139.90.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 08:14:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:b8:3a:fc:94:cb:91:51:8b:78:7f:02:20:38:6a:83:4b:48:cb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 20 16:16:30 2024 GMT
Not After : May 19 16:21:30 2025 GMT
Subject: CN=60D5FD704C0DDF2A43371D41E28E2096C336C3C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:79:0b:e2:3e:00:0c:c5:25:ea:a6:97:2b:15:
3f:66:13:b8:76:ba:15:92:dc:d0:ee:c0:9d:80:55:
74:0f:f6:ed:0b:77:e0:ed:f1:d6:1d:60:6f:3f:c9:
61:af:64:75:83:24:ad:f2:c3:76:99:cb:03:04:f4:
fe:6c:df:f6:41:5a:c4:82:1a:b4:cc:2f:dd:5f:15:
e6:b3:cc:b6:35:fd:c8:16:4e:2b:00:5a:82:c5:33:
76:50:8e:45:2d:81:2a:a9:f9:a6:4a:94:51:2e:b1:
8a:1a:ad:1f:a3:a9:b8:64:32:1b:80:29:55:53:97:
f1:15:1b:ff:5c:f9:96:52:7c:d5:92:27:63:a8:53:
fe:26:56:f3:c8:ca:ef:b3:c6:7d:0b:1f:8b:53:6a:
69:a9:50:76:e9:35:6d:a2:03:4c:99:08:9f:88:8f:
25:85:e1:4d:f2:10:27:f7:38:97:e9:a1:d1:6c:ba:
df:49:7d:84:1f:6c:76:7f:f5:c4:06:3d:72:30:45:
2e:eb:17:f9:a2:ba:bd:68:1d:5a:34:ec:9e:a5:cd:
40:b8:e4:32:9b:87:37:83:08:99:e5:e9:26:26:77:
21:f5:bd:8d:50:52:8a:bb:0a:c7:09:bf:5b:ef:07:
0a:50:54:6a:d1:da:b6:70:2b:95:3c:44:c1:fc:c6:
d7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D5:FD:70:4C:0D:DF:2A:43:37:1D:41:E2:8E:20:96:C3:36:C3:C4
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39302e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.90.0/23
Signature Algorithm: sha256WithRSAEncryption
83:2d:4c:e3:6a:5b:b2:4b:8a:49:c5:66:4e:05:cc:13:aa:5a:
9e:9c:a6:98:3d:fc:84:87:55:9f:06:96:a6:51:3b:4c:4b:0f:
7a:92:ce:49:ce:d4:73:19:65:ed:ad:9c:9a:bb:b4:2e:d4:73:
92:c6:08:44:76:1f:23:f0:13:7f:96:1f:d5:07:6e:da:34:72:
cc:2b:53:05:12:67:91:dd:ea:9b:07:86:8c:f6:32:d4:b3:78:
30:22:57:09:89:d8:07:07:46:fb:86:4b:09:77:73:60:90:7f:
23:7c:c1:03:06:31:5e:36:fc:a9:8f:be:c7:53:8b:ba:df:c6:
7a:5a:67:75:1e:b3:c3:2d:e8:50:c8:02:bc:27:c0:49:aa:d3:
ab:88:dc:f7:04:48:d1:5a:c2:57:84:ca:ee:92:2c:a5:55:f7:
d0:4a:ee:c5:be:ee:7d:51:cb:dc:9a:29:7b:91:32:20:dd:a2:
12:b8:79:14:2c:68:76:a1:1b:02:0e:81:43:a6:9a:b3:b7:0b:
89:0d:ac:c1:6a:39:98:a1:96:81:bb:5c:49:59:c0:72:d8:d2:
58:a5:d7:45:de:77:ca:ea:f5:55:25:f1:7f:7b:f8:18:1f:cd:
8e:aa:c4:c5:7a:8c:bf:3a:2c:5c:1a:0c:e9:93:31:f0:14:62:
81:64:58:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 12:18:06 2024 by rpki-client on console-ams.rpki-client.org