Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS33387.roa
File: AS33387.roa (raw, json)
Hash identifier: ifEn5rxO01plX4oxc988/AoKtH4jNp2BFkhUCaSlbdI=
Subject key identifier: A5:09:A5:BF:59:DA:F6:56:67:C6:80:9D:6D:7A:AB:4E:BB:99:29:58
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 29008AA9B06E9899EEC2D7ADB71F8EB123BADCC4
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS33387.roa
Signing time: Thu 02 Feb 2023 14:50:45 +0000
ROA not before: Thu 02 Feb 2023 14:45:45 +0000
ROA not after: Thu 01 Feb 2024 14:50:45 +0000
asID: 33387
IP address blocks: 141.11.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:00:8a:a9:b0:6e:98:99:ee:c2:d7:ad:b7:1f:8e:b1:23:ba:dc:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Feb 2 14:45:45 2023 GMT
Not After : Feb 1 14:50:45 2024 GMT
Subject: CN=A509A5BF59DAF65667C6809D6D7AAB4EBB992958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:9e:8a:5e:12:ff:f8:8e:32:32:52:f2:4b:
cf:b0:eb:e6:97:61:4f:d5:7f:7c:1e:5b:94:64:67:
78:a2:34:e1:a8:2f:7f:be:ea:22:3e:4a:ba:54:04:
b6:39:fc:84:d3:ea:a2:9c:13:06:ac:f7:63:fb:78:
99:d1:a4:f7:34:55:47:e5:90:90:4d:54:6d:20:19:
99:75:a3:2e:e3:1e:8e:05:ba:8d:b7:50:4b:8a:78:
b3:09:5c:6a:b3:db:73:89:8a:6f:73:e9:17:16:8b:
e5:df:b5:0e:00:63:33:6a:d1:28:a3:3b:e8:65:cc:
42:ee:93:5b:63:ae:1b:df:59:1d:e9:7c:a8:e0:50:
ce:80:f5:db:79:54:c1:48:91:5b:ed:09:34:5a:6d:
2f:d4:d0:70:df:92:2b:e5:43:2b:9d:e2:48:f1:6d:
4e:8b:47:6b:69:2a:dc:84:32:bc:23:ea:1c:24:69:
cf:20:d8:17:5d:1b:52:7e:2b:15:62:df:b6:29:aa:
01:ad:1b:1e:14:04:82:0c:69:eb:a9:3f:93:3c:f4:
a0:b1:20:e8:f1:f6:7f:9c:7d:dd:4c:8b:ae:50:53:
0f:bf:d2:a5:52:b3:7c:0f:8c:c8:40:39:22:dd:1e:
a0:a1:62:82:6b:c6:ea:a5:bd:77:0e:7f:3b:4e:66:
71:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:09:A5:BF:59:DA:F6:56:67:C6:80:9D:6D:7A:AB:4E:BB:99:29:58
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS33387.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.102.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b6:ee:4a:f3:07:5c:8d:25:88:74:76:61:4c:ee:9b:53:56:
d9:12:9e:39:2e:14:e5:b0:58:61:85:b2:79:1d:af:1e:3c:62:
a8:02:cf:25:ca:40:ae:a0:43:4e:63:65:cb:7f:b4:3b:19:a8:
c2:29:e6:6d:3f:cf:d4:39:68:2f:b6:ce:c7:da:36:d9:ce:f9:
b1:d6:dc:90:ae:00:34:81:7c:e2:42:5b:e0:74:27:57:04:9e:
c8:0f:54:a8:9d:92:64:34:72:54:3a:17:a7:da:2d:ca:da:52:
26:7f:34:a8:93:cb:44:94:c4:a7:95:66:f5:ec:f6:91:5d:0c:
89:30:ed:de:ff:bd:1a:16:cf:15:ad:a6:ed:45:2b:1f:55:f3:
35:23:78:6d:fc:b0:65:9f:f1:2d:d9:20:a9:37:85:41:c8:14:
a8:c6:9e:47:80:de:d7:18:63:a9:7d:92:71:fc:9e:3f:39:b9:
c7:17:32:4a:63:8d:75:fc:6b:0a:71:66:8b:1d:f2:bd:fd:d7:
d9:46:2b:14:5d:52:f8:bb:18:c7:77:10:f3:f3:85:0d:87:67:
f3:33:92:5d:f9:03:49:ea:ec:a9:27:13:31:29:7e:7b:af:fc:
11:08:2f:5a:ae:87:1f:9f:b0:62:ce:65:62:72:6b:5c:e6:aa:
b6:6a:74:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org