Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e20383334.roa
File: 3231332e3133392e37342e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: UP2BjhN9FfaTkTm4ypnrJfrEMELvmDccn4elmZNMV/g=
Subject key identifier: BD:07:7F:4E:42:25:99:EB:7C:01:D2:C7:B7:C1:38:9F:96:3E:45:BE
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 71BACE2BE7E52B759A96C8F1C9900112CB367A97
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e20383334.roa
Signing time: Sun 24 Dec 2023 00:00:07 +0000
ROA not before: Sat 23 Dec 2023 23:55:07 +0000
ROA not after: Sun 22 Dec 2024 00:00:07 +0000
asID: 834
IP address blocks: 213.139.74.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 06:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:ba:ce:2b:e7:e5:2b:75:9a:96:c8:f1:c9:90:01:12:cb:36:7a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Dec 23 23:55:07 2023 GMT
Not After : Dec 22 00:00:07 2024 GMT
Subject: CN=BD077F4E422599EB7C01D2C7B7C1389F963E45BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:de:9e:c9:4f:3f:6d:26:6b:4c:d3:0d:c0:7f:
8b:94:b3:54:e4:3e:30:46:b4:17:0f:11:ab:df:e2:
47:2d:9d:46:6b:21:8e:d9:56:82:49:ed:5b:34:ca:
78:35:ca:af:4d:82:92:a7:03:2b:fa:80:66:2c:6d:
95:f9:18:36:21:22:09:79:60:a6:28:31:50:d0:ae:
ac:8d:98:e1:b9:41:ac:82:46:de:a7:54:c8:67:5b:
44:cd:bc:29:2c:00:d4:13:17:f1:91:fd:de:9f:c8:
29:e9:ce:9a:67:cd:9a:6c:48:dc:e5:43:5a:35:b3:
7f:b5:f2:b2:a8:3f:3c:ad:47:c4:20:f1:db:bc:fb:
0c:d0:fa:91:13:76:dd:c7:96:01:cf:7b:2e:51:a0:
f1:f8:d7:42:52:81:73:4c:31:cc:de:03:59:f7:9b:
b0:fa:bd:1a:5c:98:7b:92:44:46:fb:2c:b4:43:21:
6e:c8:36:b4:cd:e2:63:f8:90:04:70:0d:12:b7:3d:
75:a0:c5:e9:0a:b5:a9:31:e2:b0:81:d9:39:5e:9b:
17:20:57:91:0b:65:81:ac:4c:f8:ad:21:dc:c7:b8:
49:1d:49:2a:ee:38:4e:ac:7d:e1:ff:4d:5d:15:ae:
1e:5d:4b:b2:9b:51:c4:5c:e3:cf:c0:bc:e6:e9:ce:
8d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:07:7F:4E:42:25:99:EB:7C:01:D2:C7:B7:C1:38:9F:96:3E:45:BE
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37342e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.74.0/23
Signature Algorithm: sha256WithRSAEncryption
35:eb:d1:9d:98:44:9f:03:9f:6b:83:47:6a:4d:1c:f2:8d:b7:
d0:70:1f:ca:64:8a:42:0d:22:58:f9:53:c1:c5:f1:43:56:58:
42:61:37:e4:f4:e4:3a:55:3f:da:36:8e:59:ac:ba:3e:c7:2c:
cd:b2:51:0c:ce:34:4a:5e:a6:f9:7c:b8:d1:3b:11:2b:d6:9b:
3e:26:d5:2d:4f:b1:d8:52:42:c1:20:9b:5e:9a:43:7f:31:d5:
90:b9:9c:94:cc:4d:fa:2b:71:9c:f3:3f:22:11:bf:a9:1f:bc:
31:77:47:91:fd:c7:c8:e4:04:ac:46:0a:46:14:e7:6d:4a:34:
c6:f4:8c:23:fb:f1:5d:ec:a1:d4:e5:d6:4c:e3:3e:e6:c7:ca:
93:9e:05:20:a4:c7:0a:d3:7b:7b:60:11:4e:5d:b4:d7:0c:6b:
1c:40:5f:43:65:36:36:db:cf:01:47:1b:55:aa:2f:f0:f5:a8:
d9:46:9d:1d:ac:2c:b3:e4:bf:5f:a8:22:27:92:06:33:df:8c:
5c:85:49:5b:83:3f:54:de:f5:ce:5e:89:8c:44:b8:f6:b0:19:
a6:25:cd:fc:a7:09:e5:c6:75:7a:83:ec:7e:65:c9:90:6e:91:
31:8f:fb:7d:ee:7a:dc:c7:15:93:7d:39:ee:ae:9a:99:a6:98:
2e:c4:96:79
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUcbrOK+flK3WalsjxyZABEss2epcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yMzEyMjMyMzU1MDdaFw0yNDEyMjIwMDAwMDdaMDMxMTAvBgNV
BAMTKEJEMDc3RjRFNDIyNTk5RUI3QzAxRDJDN0I3QzEzODlGOTYzRTQ1QkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm3p7JTz9tJmtM0w3Af4uUs1Tk
PjBGtBcPEavf4kctnUZrIY7ZVoJJ7Vs0yng1yq9NgpKnAyv6gGYsbZX5GDYhIgl5
YKYoMVDQrqyNmOG5QayCRt6nVMhnW0TNvCksANQTF/GR/d6fyCnpzppnzZpsSNzl
Q1o1s3+18rKoPzytR8Qg8du8+wzQ+pETdt3HlgHPey5RoPH410JSgXNMMczeA1n3
m7D6vRpcmHuSREb7LLRDIW7INrTN4mP4kARwDRK3PXWgxekKtakx4rCB2Tlemxcg
V5ELZYGsTPitIdzHuEkdSSruOE6sfeH/TV0Vrh5dS7KbUcRc48/AvObpzo3BAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUvQd/TkIlmet8AdLHt8E4n5Y+Rb4wHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM3
MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHVi0ow
DQYJKoZIhvcNAQELBQADggEBADXr0Z2YRJ8Dn2uDR2pNHPKNt9BwH8pkikINIlj5
U8HF8UNWWEJhN+T05DpVP9o2jlmsuj7HLM2yUQzONEpepvl8uNE7ESvWmz4m1S1P
sdhSQsEgm16aQ38x1ZC5nJTMTforcZzzPyIRv6kfvDF3R5H9x8jkBKxGCkYU521K
NMb0jCP78V3sodTl1kzjPubHypOeBSCkxwrTe3tgEU5dtNcMaxxAX0NlNjbbzwFH
G1WqL/D1qNlGnR2sLLPkv1+oIieSBjPfjFyFSVuDP1Te9c5eiYxEuPawGaYlzfyn
CeXGdXqD7H5lyZBukTGP+33uetzHFZN9Oe6umpmmmC7Elnk=
-----END CERTIFICATE-----
Generated at Mon Jan 8 08:09:03 2024 by rpki-client on console.sobornost.net