Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39322e302f32322d3234203d3e20383334.roa
File: 3231332e3133392e39322e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: 7jcX4HPnRMRweSUXS0DcZ2JXhr0xlOwhRfMbLQISQ7M=
Subject key identifier: 10:E2:08:94:E0:45:6B:CD:7D:6D:C1:14:DB:92:75:B8:1E:AA:DE:C1
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 72171991BA99686BFBF2BD4C24184981D575AFC8
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39322e302f32322d3234203d3e20383334.roa
Signing time: Mon 20 May 2024 16:21:30 +0000
ROA not before: Mon 20 May 2024 16:16:30 +0000
ROA not after: Mon 19 May 2025 16:21:30 +0000
asID: 834
IP address blocks: 213.139.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 08:14:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:17:19:91:ba:99:68:6b:fb:f2:bd:4c:24:18:49:81:d5:75:af:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 20 16:16:30 2024 GMT
Not After : May 19 16:21:30 2025 GMT
Subject: CN=10E20894E0456BCD7D6DC114DB9275B81EAADEC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bf:01:db:0a:4a:fa:03:65:54:e9:bd:3b:de:
fa:44:25:ce:a1:1d:fd:ac:be:39:3f:56:25:97:c8:
35:27:a3:45:4d:48:69:72:00:07:c4:92:0c:e3:20:
6d:12:bc:49:0b:b3:38:b8:53:3b:c8:e7:83:44:42:
e4:58:3d:d1:f3:2f:5d:9d:6a:5f:46:84:23:5b:7a:
30:ad:37:44:64:62:36:47:bb:f1:28:bf:38:5a:ab:
f6:f9:25:ca:55:3a:1d:b7:ff:3e:1d:43:69:66:05:
13:a1:6b:8c:63:38:c8:53:0c:4c:1f:3b:8e:1f:5a:
83:2d:f3:24:07:f8:5b:dc:0d:43:b1:c1:bd:54:f1:
32:08:05:53:09:22:80:bf:5c:b1:79:29:ba:c9:39:
39:c7:90:ad:62:0e:0c:d2:a9:83:e1:d4:4f:9c:bc:
8d:d2:47:b7:a7:e9:6b:c6:a5:83:61:fc:79:b4:e0:
b7:b0:2a:73:01:40:a5:9d:30:e5:3c:b6:f0:38:81:
5c:7a:ff:da:98:ad:90:20:58:86:91:37:4f:5c:ec:
9e:1c:42:8c:af:a3:e8:bc:54:c5:e2:84:7a:f6:75:
71:9f:5a:1e:af:6f:bf:76:16:e8:3d:d1:62:d6:ee:
11:bf:44:c7:21:2b:83:e8:f0:58:61:9c:4f:20:75:
57:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E2:08:94:E0:45:6B:CD:7D:6D:C1:14:DB:92:75:B8:1E:AA:DE:C1
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39322e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.92.0/22
Signature Algorithm: sha256WithRSAEncryption
30:75:2e:c6:80:08:d7:45:5f:35:95:25:f0:0f:d2:ca:ea:07:
bc:e1:b1:a7:29:d3:2e:85:f8:26:0a:48:d9:62:d4:58:0b:cd:
4c:de:f6:19:13:02:e6:d8:f6:3e:be:41:8f:29:6e:3b:88:f2:
7a:da:a0:1a:01:d2:79:77:12:cb:6a:9f:e9:56:e8:ca:8b:ed:
5d:12:18:85:67:47:fb:b3:92:56:34:6c:8d:10:19:63:18:0f:
ad:7c:b9:3f:ca:1a:ab:5d:a2:b5:af:d1:40:bb:45:cd:85:b4:
dc:fe:78:58:04:d5:ca:af:54:6e:90:09:22:c9:02:c2:81:2c:
56:22:ad:86:db:93:49:0a:c7:c9:35:de:3b:c4:98:b8:84:37:
97:87:39:bb:8c:d0:17:2b:32:23:80:de:c8:18:92:b7:69:10:
cc:5d:89:02:88:c6:a7:5a:0f:ba:08:3b:39:9c:71:79:47:e0:
7a:d8:df:84:01:37:06:36:b2:ba:da:65:e4:6a:e3:7a:36:24:
74:bc:4b:0d:a6:83:7c:b3:be:c8:ca:a6:e8:c0:58:8a:67:1e:
66:b9:bb:a3:fd:4f:38:34:fb:4e:f5:52:08:2a:a2:e5:6f:05:
55:e0:5a:a7:e1:ab:44:69:30:d2:1d:d3:ad:e7:f0:0d:89:71:
12:fc:b1:2a
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUchcZkbqZaGv78r1MJBhJgdV1r8gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDA1MjAxNjE2MzBaFw0yNTA1MTkxNjIxMzBaMDMxMTAvBgNV
BAMTKDEwRTIwODk0RTA0NTZCQ0Q3RDZEQzExNERCOTI3NUI4MUVBQURFQzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQvwHbCkr6A2VU6b073vpEJc6h
Hf2svjk/ViWXyDUno0VNSGlyAAfEkgzjIG0SvEkLszi4UzvI54NEQuRYPdHzL12d
al9GhCNbejCtN0RkYjZHu/Eovzhaq/b5JcpVOh23/z4dQ2lmBROha4xjOMhTDEwf
O44fWoMt8yQH+FvcDUOxwb1U8TIIBVMJIoC/XLF5KbrJOTnHkK1iDgzSqYPh1E+c
vI3SR7en6WvGpYNh/Hm04LewKnMBQKWdMOU8tvA4gVx6/9qYrZAgWIaRN09c7J4c
Qoyvo+i8VMXihHr2dXGfWh6vb792Fug90WLW7hG/RMchK4Po8FhhnE8gdVczAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUEOIIlOBFa819bcEU25J1uB6q3sEwHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM5
MzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALVi1ww
DQYJKoZIhvcNAQELBQADggEBADB1LsaACNdFXzWVJfAP0srqB7zhsacp0y6F+CYK
SNli1FgLzUze9hkTAubY9j6+QY8pbjuI8nraoBoB0nl3Estqn+lW6MqL7V0SGIVn
R/uzklY0bI0QGWMYD618uT/KGqtdorWv0UC7Rc2FtNz+eFgE1cqvVG6QCSLJAsKB
LFYirYbbk0kKx8k13jvEmLiEN5eHObuM0BcrMiOA3sgYkrdpEMxdiQKIxqdaD7oI
OzmccXlH4HrY34QBNwY2srraZeRq43o2JHS8Sw2mg3yzvsjKpujAWIpnHma5u6P9
Tzg0+071UggqouVvBVXgWqfhq0RpMNId063n8A2JcRL8sSo=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:51:10 2025 by rpki-client