Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35362e302f32332d3234203d3e2033333230.roa
File: 33312e362e35362e302f32332d3234203d3e2033333230.roa (raw, json)
Hash identifier: ZJWTNkOBpS5HnbC3QK6TzYD8rBfpcUY9KthoJWbUDwg=
Subject key identifier: 04:27:7A:53:B8:A2:4E:9E:52:48:B5:AB:EF:39:61:DA:47:54:2E:87
Certificate issuer: /CN=3a96802395455ca00679c41d5c056cae95d4b57d
Certificate serial: 0CB51046941F811F6A22ADE7880C47B698C58891
Authority key identifier: 3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35362e302f32332d3234203d3e2033333230.roa
Signing time: Wed 22 Mar 2023 15:29:47 +0000
ROA not before: Wed 22 Mar 2023 15:24:47 +0000
ROA not after: Wed 20 Mar 2024 15:29:47 +0000
asID: 3320
IP address blocks: 31.6.56.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:b5:10:46:94:1f:81:1f:6a:22:ad:e7:88:0c:47:b6:98:c5:88:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a96802395455ca00679c41d5c056cae95d4b57d
Validity
Not Before: Mar 22 15:24:47 2023 GMT
Not After : Mar 20 15:29:47 2024 GMT
Subject: CN=04277A53B8A24E9E5248B5ABEF3961DA47542E87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:62:23:e4:fa:8b:a0:7c:1f:50:68:16:55:0d:
03:8f:96:08:9a:64:d4:9d:29:e0:0a:43:db:54:33:
5f:b3:73:f6:bf:17:ad:c6:5b:f8:2c:84:b0:1d:12:
37:05:83:97:23:bc:11:55:2f:c0:b8:2a:40:3e:48:
81:34:0b:fd:39:0e:59:ad:52:6e:13:87:8e:88:2c:
38:90:5f:17:54:38:f2:80:24:59:b6:de:d6:c0:5b:
1c:32:77:de:a8:4e:e4:e2:40:a3:f9:87:4a:64:5b:
b5:81:ed:81:51:8f:e0:d7:1a:0f:20:e8:29:0e:64:
bd:9e:1d:e6:7f:83:3d:2b:10:4d:76:55:bf:25:7d:
e8:c3:ce:78:6a:4d:90:fb:92:bc:5e:26:f0:3a:15:
1b:b2:a2:0a:7a:5b:5e:13:70:32:f8:4b:0a:68:51:
89:42:2a:a6:8f:ec:74:c5:3a:84:40:49:b1:5b:40:
c8:3a:59:da:5c:54:27:26:2f:fd:19:5a:1a:78:ee:
f9:9b:5b:8d:01:e1:77:f5:8e:8a:23:bc:78:96:21:
13:b5:63:6a:ce:d0:3b:82:86:73:fc:62:89:d1:a5:
d6:51:bd:e4:fc:ec:91:18:97:ad:bc:8c:e3:12:c7:
1d:65:6a:14:94:71:22:dc:2d:73:4b:18:53:d5:1e:
a2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:27:7A:53:B8:A2:4E:9E:52:48:B5:AB:EF:39:61:DA:47:54:2E:87
X509v3 Authority Key Identifier:
keyid:3A:96:80:23:95:45:5C:A0:06:79:C4:1D:5C:05:6C:AE:95:D4:B5:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/3A96802395455CA00679C41D5C056CAE95D4B57D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpaAI5VFXKAGecQdXAVsrpXUtX0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a2ffbce7-88dd-4ca9-b245-116386cee788/0/33312e362e35362e302f32332d3234203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.56.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:67:76:88:1c:2b:6e:42:fd:a8:8d:ac:71:73:07:9a:45:d4:
02:73:c8:b5:80:7c:6b:04:17:71:0a:b0:1e:fe:1b:77:e2:6e:
d4:21:12:d6:e3:0d:c2:50:ec:5d:0f:06:21:27:83:04:7c:e7:
2b:f0:12:4b:6d:49:de:f0:6f:c5:07:9a:08:f9:01:ef:b1:2a:
9c:23:54:9a:07:3f:c3:17:07:f8:ac:6b:68:5f:6a:66:e1:15:
fb:11:ff:45:43:0c:1a:6e:cf:d1:c1:79:92:6c:0d:38:53:10:
d1:96:7f:01:c3:2c:14:0c:c5:d2:c7:3c:6b:65:c9:f9:51:04:
28:d7:1a:f4:db:38:ad:3c:66:bf:22:5a:05:c3:c2:d7:f0:a2:
11:29:3e:25:cb:1e:fc:2e:40:aa:7c:43:db:19:e3:ad:29:2e:
5c:c6:30:64:b4:bc:a5:05:f0:3d:f6:49:e7:8f:bb:39:bc:1d:
1f:43:b8:fa:bb:30:ca:de:9c:06:ca:1f:56:10:f1:42:61:ab:
8d:c3:36:ca:35:82:78:a4:45:2d:93:3b:b7:8a:03:4d:67:0a:
a0:e3:bf:0f:68:63:5b:c7:4b:bc:e6:43:bf:ec:3b:53:7f:7e:
72:33:98:eb:ee:45:6e:9c:1f:cb:89:89:a1:6d:79:f5:09:44:
9a:fe:34:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org