Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203537383730.roa
File: 32332e3135332e3233322e302f32342d3234203d3e203537383730.roa (raw, json)
Hash identifier: XEn/yttCI+11W4Y3Tl663XRGeUNjx5G17MeWrei6+cw=
Subject key identifier: D2:F2:9E:06:8D:37:23:83:C6:83:7F:3F:BC:27:7C:1A:0D:2B:14:65
Certificate issuer: /CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c
Certificate serial: 6EBA0B9E52CCC44FD6084BB4693485BBC69B15E8
Authority key identifier: D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203537383730.roa
Signing time: Wed 03 Jan 2024 16:09:31 +0000
ROA not before: Wed 03 Jan 2024 16:04:31 +0000
ROA not after: Wed 01 Jan 2025 16:09:31 +0000
asID: 57870
IP address blocks: 23.153.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 12:26:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:ba:0b:9e:52:cc:c4:4f:d6:08:4b:b4:69:34:85:bb:c6:9b:15:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c
Validity
Not Before: Jan 3 16:04:31 2024 GMT
Not After : Jan 1 16:09:31 2025 GMT
Subject: CN=D2F29E068D372383C6837F3FBC277C1A0D2B1465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:1e:cc:bb:77:e3:66:5f:15:70:bb:29:9a:
6c:3d:22:40:b9:b4:14:76:3d:65:5f:56:35:1d:cb:
66:9e:59:d3:1f:9b:3c:8b:43:5e:6a:aa:84:06:9e:
bc:85:a3:67:d9:79:9a:56:23:b4:cf:93:55:2e:28:
d6:e4:77:c0:ef:86:f7:b7:e4:6a:8f:b4:49:ec:c5:
41:fe:ec:bc:70:98:72:a1:e8:0c:df:0f:7e:5c:1e:
36:6e:36:98:00:7e:86:e5:e3:88:c3:22:ba:b6:5e:
71:23:70:cc:7c:71:4f:bc:28:e3:89:f6:46:40:2e:
82:07:91:ff:76:08:f1:64:6a:a7:43:17:b5:fb:51:
0b:b9:b0:01:39:6f:20:25:96:36:fe:93:c9:30:4b:
33:db:5b:db:6a:9e:f3:71:74:9d:b4:7a:9a:d0:ff:
a9:f8:d7:50:87:6e:51:15:ff:9e:8e:6a:2d:cd:c1:
44:49:25:12:60:95:af:ce:b3:6e:53:7e:12:e5:c6:
34:4a:75:12:72:6b:c5:c0:5f:bd:e9:ce:78:a3:c5:
d4:87:e8:4a:6d:40:00:63:60:9d:d5:e1:8d:02:88:
3f:e8:31:32:d1:46:7d:fc:c8:a6:74:6e:4c:b0:c9:
1c:f3:5b:f7:88:11:7e:2f:c6:f8:fe:94:c9:d1:41:
d2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F2:9E:06:8D:37:23:83:C6:83:7F:3F:BC:27:7C:1A:0D:2B:14:65
X509v3 Authority Key Identifier:
keyid:D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203537383730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.153.232.0/24
Signature Algorithm: sha256WithRSAEncryption
33:82:1f:b1:e3:8f:8c:da:12:36:57:ca:fb:da:99:b3:3f:bb:
82:ab:ac:55:1c:78:c2:d4:2d:f7:ba:b5:96:42:ec:aa:a7:ea:
3a:dd:60:40:f4:39:9b:cc:c3:3a:2d:0b:e7:8f:26:ba:07:16:
8a:54:ed:5a:3e:37:b6:9a:3c:4b:5a:03:60:d3:30:44:42:24:
29:a0:c5:52:5e:1b:de:12:1a:bf:c7:e6:d4:99:ba:bd:53:70:
06:06:21:e2:a3:5c:f6:07:81:a3:b0:1d:16:5b:58:ee:1c:5f:
a5:35:e0:6d:73:f2:1c:3d:4f:73:aa:73:50:66:ce:4c:68:9c:
84:6b:51:a5:32:b8:fc:d5:a8:ef:b0:31:4f:eb:c2:53:a9:8c:
a7:a7:db:92:7f:3a:b8:36:84:7b:02:3e:8a:20:4e:bf:f5:4c:
76:d9:54:13:e6:bf:01:13:52:f7:91:8c:26:70:e4:21:5c:74:
6b:83:20:5a:11:46:a4:ea:de:60:a3:10:b7:ce:06:8d:55:d1:
06:29:c9:55:45:18:5b:05:a5:ac:48:d9:4a:35:0a:b6:04:4f:
c5:0e:e9:89:bf:66:0d:c1:c1:66:c8:7c:59:b9:da:f1:f1:d3:
2a:58:28:43:6f:f7:56:58:53:2e:ec:a0:de:5d:23:0f:2c:0a:
73:b7:a8:4d
-----BEGIN CERTIFICATE-----
MIIFzTCCBLWgAwIBAgIUbroLnlLMxE/WCEu0aTSFu8abFegwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZm
OTQ1ZTA3MzNmYzQ5YzJlNGMwHhcNMjQwMTAzMTYwNDMxWhcNMjUwMTAxMTYwOTMx
WjAzMTEwLwYDVQQDEyhEMkYyOUUwNjhEMzcyMzgzQzY4MzdGM0ZCQzI3N0MxQTBE
MkIxNDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt14ezLt342Zf
FXC7KZpsPSJAubQUdj1lX1Y1HctmnlnTH5s8i0NeaqqEBp68haNn2XmaViO0z5NV
LijW5HfA74b3t+Rqj7RJ7MVB/uy8cJhyoegM3w9+XB42bjaYAH6G5eOIwyK6tl5x
I3DMfHFPvCjjifZGQC6CB5H/dgjxZGqnQxe1+1ELubABOW8gJZY2/pPJMEsz21vb
ap7zcXSdtHqa0P+p+NdQh25RFf+ejmotzcFESSUSYJWvzrNuU34S5cY0SnUScmvF
wF+96c54o8XUh+hKbUAAY2Cd1eGNAog/6DEy0UZ9/MimdG5MsMkc81v3iBF+L8b4
/pTJ0UHSswIDAQABo4ICzTCCAskwHQYDVR0OBBYEFNLyngaNNyODxoN/P7wnfBoN
KxRlMB8GA1UdIwQYMBaAFNdJg8H6ugzBVm8GAa/hFCPhG1FxMA4GA1UdDwEB/wQE
AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu
cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5
LTRmYWVhNGIxYmMxMi83L0Q3NDk4M0MxRkFCQTBDQzE1NjZGMDYwMUFGRTExNDIz
RTExQjUxNzEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy
c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0
YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt
NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iMTUwZTk4ZC04MGU5LTQ1ZjYtYmM2My02
YjQwYTNkNTllOWMvNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZmOTQ1
ZTA3MzNmYzQ5YzJlNGMuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH
MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5LTRmYWVhNGIxYmMxMi83LzMyMzMyZTMx
MzUzMzJlMzIzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNzM4MzczMC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEABeZ6DANBgkqhkiG9w0BAQsFAAOCAQEAM4IfseOPjNoSNlfK+9qZ
sz+7gqusVRx4wtQt97q1lkLsqqfqOt1gQPQ5m8zDOi0L548mugcWilTtWj43tpo8
S1oDYNMwREIkKaDFUl4b3hIav8fm1Jm6vVNwBgYh4qNc9geBo7AdFltY7hxfpTXg
bXPyHD1Pc6pzUGbOTGichGtRpTK4/NWo77AxT+vCU6mMp6fbkn86uDaEewI+iiBO
v/VMdtlUE+a/ARNS95GMJnDkIVx0a4MgWhFGpOreYKMQt84GjVXRBinJVUUYWwWl
rEjZSjUKtgRPxQ7pib9mDcHBZsh8Wbna8fHTKlgoQ2/3VlhTLuyg3l0jDywKc7eo
TQ==
-----END CERTIFICATE-----
Generated at Sun Mar 17 14:37:40 2024 by rpki-client on console-fra.rpki-client.org