Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35322e302f32322d3234203d3e2031323339.roa
File: 33312e362e35322e302f32322d3234203d3e2031323339.roa (raw, json)
Hash identifier: MM+qAb9sVQGWg1q1hBn/5DieyFeyzQRySlGmMBRkLcE=
Subject key identifier: 0A:0B:01:DB:61:12:78:F1:58:16:5B:89:4F:5C:CC:76:C1:67:FF:69
Certificate issuer: /CN=3a96802395455ca00679c41d5c056cae95d4b57d
Certificate serial: 79CEF2DF0E67DF237D9BE85AF760340E7ABEBE47
Authority key identifier: 3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35322e302f32322d3234203d3e2031323339.roa
Signing time: Wed 22 Mar 2023 15:29:47 +0000
ROA not before: Wed 22 Mar 2023 15:24:47 +0000
ROA not after: Wed 20 Mar 2024 15:29:47 +0000
asID: 1239
IP address blocks: 31.6.52.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:ce:f2:df:0e:67:df:23:7d:9b:e8:5a:f7:60:34:0e:7a:be:be:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a96802395455ca00679c41d5c056cae95d4b57d
Validity
Not Before: Mar 22 15:24:47 2023 GMT
Not After : Mar 20 15:29:47 2024 GMT
Subject: CN=0A0B01DB611278F158165B894F5CCC76C167FF69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:90:0d:54:06:f3:46:be:da:fd:fb:f3:c7:8d:
60:00:d8:03:ba:93:1c:43:61:12:a7:7c:6f:12:54:
1f:12:8a:8f:7b:d5:cb:65:73:04:34:4b:df:f9:a6:
39:02:da:43:22:9a:42:de:87:b0:b5:c8:e6:1b:24:
96:75:56:a0:b8:5b:b1:99:68:28:36:25:a3:bf:04:
1d:57:0c:6a:8e:4e:8a:fb:85:10:05:4c:93:74:6d:
b6:11:c1:62:c2:43:ba:23:9f:bf:1d:4a:f8:4c:f7:
61:d2:ed:cf:e6:07:b7:62:80:4a:11:82:d5:48:ac:
bb:ce:13:7b:c3:b2:fe:52:fe:ff:8d:a6:b5:59:ef:
cc:80:9c:db:8e:25:df:2d:1e:99:6b:61:46:0d:63:
d0:3d:47:7a:0f:e2:da:44:f2:75:00:29:73:01:25:
f0:68:8f:2c:b2:d7:96:42:8c:fd:1a:51:f5:79:e2:
78:ae:0d:29:d0:f5:f1:71:0b:31:1e:34:28:d8:59:
56:b7:5a:51:83:4c:36:b8:29:34:c7:b8:53:34:65:
19:71:5a:22:a6:63:30:ad:b8:81:5c:79:e7:33:63:
9c:f0:c0:64:58:0c:ae:6c:f9:34:5a:03:d2:f2:52:
c0:eb:d7:2c:b2:3b:3d:cd:97:6f:68:2f:dc:45:51:
db:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0B:01:DB:61:12:78:F1:58:16:5B:89:4F:5C:CC:76:C1:67:FF:69
X509v3 Authority Key Identifier:
keyid:3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3A96802395455CA00679C41D5C056CAE95D4B57D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35322e302f32322d3234203d3e2031323339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.52.0/22
Signature Algorithm: sha256WithRSAEncryption
06:c7:61:a2:99:d8:fa:d5:d1:f5:18:71:d9:ed:d5:f1:43:a8:
53:df:6f:85:86:aa:6d:4e:e8:41:ae:f6:01:f7:6f:39:ef:4f:
49:5c:66:d3:1a:47:d2:40:4f:b9:3b:ba:45:5c:45:67:a6:74:
c6:c7:b0:5d:4e:98:52:cc:d3:ef:bc:be:9e:e9:6c:1c:92:20:
70:3e:3d:8a:dc:93:d3:9b:8a:f9:58:e3:20:c0:57:2a:ec:0e:
cc:69:01:63:7b:ae:43:89:d4:27:89:e1:70:80:fe:7f:2a:a6:
dd:02:88:8e:fb:30:fc:ed:f7:b9:ef:cf:1b:3d:7e:e6:c8:5e:
74:12:c9:15:25:7f:63:97:8b:0a:61:87:32:52:85:38:b0:08:
88:7e:82:83:6e:8b:a0:2d:f1:4f:e3:04:49:62:14:7b:16:26:
a8:9a:aa:8d:71:19:bb:3b:a5:92:e1:b8:64:f6:07:d9:ff:81:
88:30:8b:08:33:d0:9e:c5:e5:8d:b6:e4:87:39:f1:6a:ba:af:
70:3a:45:f3:27:d1:2f:82:35:3d:f2:9c:64:2a:c2:af:88:ae:
fa:56:bf:28:98:ee:43:e6:95:51:46:01:82:b9:30:81:62:3f:
7d:f2:ef:c3:7d:e2:52:df:f9:6c:5f:38:1b:e6:97:e7:4f:c3:
a6:4b:ff:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org