Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e20383334.roa
File: 3231322e32332e3231392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Kj2BHWj/3fT8tSYAw29e9JDYWANcdv0zsS+Cpdddp9I=
Subject key identifier: 52:FC:57:ED:5A:82:20:15:45:A2:4C:8F:CC:1F:6A:04:29:25:CA:DD
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 6FE8097AD252EFEA373B51CF51DDC8BEB9FD83FE
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e20383334.roa
Signing time: Tue 10 Sep 2024 00:00:18 +0000
ROA not before: Mon 09 Sep 2024 23:55:18 +0000
ROA not after: Tue 09 Sep 2025 00:00:18 +0000
asID: 834
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 06:13:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:e8:09:7a:d2:52:ef:ea:37:3b:51:cf:51:dd:c8:be:b9:fd:83:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 9 23:55:18 2024 GMT
Not After : Sep 9 00:00:18 2025 GMT
Subject: CN=52FC57ED5A82201545A24C8FCC1F6A042925CADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:69:7b:a0:37:d4:70:0b:fd:5f:ef:93:07:d5:
fe:c5:8f:0b:36:43:76:64:0d:ce:d0:87:f0:e9:c4:
34:31:70:df:1d:a7:86:f7:d5:96:e0:f3:68:8d:90:
ef:ad:28:74:c3:56:52:64:2f:ea:c4:f1:fb:fe:81:
fa:dc:21:19:9b:8f:2c:49:1b:78:43:3d:70:5f:dd:
6f:08:e0:69:30:5e:fd:28:79:7c:0d:98:b3:f9:cf:
3b:58:04:79:0b:eb:c2:ff:f4:e5:75:68:2e:94:49:
b7:6f:51:15:e5:91:6a:f1:c9:ae:61:16:8e:4f:59:
ff:b7:12:a1:04:52:4a:a5:ca:46:bd:7d:fe:03:6f:
0b:0b:45:c6:3a:fd:66:69:3a:0c:01:02:a6:da:fe:
e5:8a:09:40:e6:a6:09:00:3b:3c:b5:79:0c:c7:53:
86:06:bf:80:a1:c9:9c:ec:90:11:e8:2f:94:54:70:
d4:29:17:3f:f3:e9:3f:3d:a4:43:50:82:d8:35:bf:
ee:ec:46:3f:cb:14:2d:24:b6:87:93:e6:e9:9d:14:
5c:c7:cc:3f:a3:22:ce:36:48:22:53:ba:20:af:9e:
cf:08:e6:de:54:f1:2d:ad:93:e9:b6:d3:86:8c:0c:
6c:5d:61:c8:88:5c:05:52:91:5e:fc:3f:1c:09:29:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:FC:57:ED:5A:82:20:15:45:A2:4C:8F:CC:1F:6A:04:29:25:CA:DD
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3231322e32332e3231392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
46:12:50:d5:27:c3:f8:18:75:59:13:5e:31:3b:25:6e:2e:92:
41:c1:f6:8e:87:cf:63:bb:4c:79:4a:94:89:2f:46:8c:06:c7:
f4:74:d4:9b:c6:59:fc:2c:01:7d:45:22:a1:b2:ac:e3:a9:4c:
67:19:18:a2:8b:b8:ea:36:e8:1e:20:3b:db:da:b9:2f:97:12:
5c:5f:5c:7e:4d:d5:00:0c:a5:59:05:e1:c3:98:9d:d0:6e:8f:
33:19:86:57:5c:13:bd:22:7f:b3:f8:9e:88:e5:bf:3f:85:4f:
96:de:ba:0c:3b:84:f7:cc:f2:7e:47:f5:26:27:1d:25:88:8f:
bb:52:40:5c:4f:33:f0:5a:a4:b7:8f:b9:6e:bf:08:16:41:3b:
38:04:b3:74:1f:e9:14:24:d3:7e:9f:49:17:a1:50:c8:f8:8f:
36:b6:17:ec:20:90:ba:4f:f5:72:b6:ff:9f:8b:ce:76:66:7e:
e7:a2:41:62:94:44:bf:88:31:10:8f:fa:d5:26:19:44:3b:07:
c4:dd:39:91:ac:a4:ae:56:65:38:3b:1d:7c:45:ac:e3:98:d6:
05:ea:91:11:ad:1c:d2:e7:61:df:f6:ad:46:9c:d3:f3:5f:8a:
ba:9b:a1:41:5b:8c:ce:35:29:cb:39:ff:dd:db:15:6a:ca:c2:
8d:01:05:cc
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 16 07:38:34 2024 by rpki-client on console-fra.rpki-client.org