Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e20383334.roa
File: 3231332e3133392e37362e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: WoZPaTVOUzEQMg3/mJO8jfexlJ9ZKcx/c4TbO0woitY=
Subject key identifier: 63:CC:D2:A1:DB:4E:2A:AF:C9:25:7E:5E:C4:BF:F7:7C:01:E8:E4:8C
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 09F6FC70783F3F4D0EA575BAB22317F271DD5DCD
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e20383334.roa
Signing time: Sun 31 Dec 2023 00:00:05 +0000
ROA not before: Sat 30 Dec 2023 23:55:05 +0000
ROA not after: Sun 29 Dec 2024 00:00:05 +0000
asID: 834
IP address blocks: 213.139.76.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 06:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f6:fc:70:78:3f:3f:4d:0e:a5:75:ba:b2:23:17:f2:71:dd:5d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Dec 30 23:55:05 2023 GMT
Not After : Dec 29 00:00:05 2024 GMT
Subject: CN=63CCD2A1DB4E2AAFC9257E5EC4BFF77C01E8E48C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:70:13:52:72:6d:c7:3e:5a:0b:07:2a:51:
ba:2a:dc:bc:e8:b8:92:e9:cd:07:33:19:05:16:e0:
26:49:2c:4a:a1:89:90:0c:65:8e:35:59:a8:9f:60:
d1:62:b0:c3:4a:ec:e2:9b:03:a6:90:33:ad:55:41:
26:8d:c4:5c:11:26:e7:ac:f0:a8:6e:6c:48:09:67:
65:2d:9e:57:bf:93:76:3b:5c:b0:c2:3d:0b:49:c5:
0c:c7:4f:39:58:3c:08:05:98:eb:ee:83:40:74:f4:
e0:27:cb:5e:8f:f6:f6:b3:8c:4c:70:95:b0:ff:9f:
51:70:f4:14:36:ef:96:8d:f3:f4:d0:f0:7a:4f:d8:
dd:ed:14:fb:f4:22:45:e8:1b:02:9f:50:69:fb:1f:
de:e1:07:59:6a:d3:01:ff:da:2c:5b:62:fe:48:9b:
c3:37:f8:71:3b:a3:e0:b2:99:51:af:ea:e8:0f:85:
ef:43:0b:01:ec:f2:49:8b:97:5f:de:ad:79:1f:04:
67:d6:7f:42:28:01:b5:91:5e:d1:a6:90:e0:6a:e0:
4f:43:6c:ca:79:89:b0:18:87:e8:18:0d:49:75:df:
2b:83:6c:11:df:44:9f:1e:9a:99:61:29:7c:b3:48:
9e:af:ef:f5:8d:c2:06:7c:d9:90:ba:bb:15:5e:c1:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CC:D2:A1:DB:4E:2A:AF:C9:25:7E:5E:C4:BF:F7:7C:01:E8:E4:8C
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.76.0/23
Signature Algorithm: sha256WithRSAEncryption
91:0a:6c:ea:45:d6:64:20:05:8e:1e:76:51:35:f8:9c:7e:9b:
51:93:d3:aa:36:df:7b:d7:d1:1a:aa:29:ed:f1:2c:c6:05:69:
21:ba:99:a3:d8:33:4d:71:db:b7:31:9a:66:64:ac:8a:a8:9f:
11:6e:41:45:73:e7:55:48:f4:a4:53:65:fb:d2:d2:72:ca:2f:
eb:b4:12:77:d9:d7:df:6d:77:b0:f8:f1:3d:83:e7:b0:49:2f:
80:c4:5d:c1:21:db:f2:21:b5:3e:d4:35:a2:db:4c:f1:8c:07:
d1:5f:49:82:60:04:6c:eb:af:02:3a:17:65:71:fe:34:41:ce:
42:13:99:39:03:ae:fb:bc:95:b1:8d:4c:4e:0c:8b:df:28:85:
fb:a8:39:f5:35:7a:2d:b8:40:62:2e:ba:c0:e1:e5:50:a9:7d:
0f:9f:bd:17:26:2a:f0:05:37:35:2f:e7:bc:58:69:a9:56:ff:
ca:93:22:ba:c3:c7:37:7e:9d:e0:e7:9f:e0:39:0b:3a:67:c0:
c3:b7:9d:af:ba:7c:6f:75:e8:83:a8:3b:f8:4f:24:a3:dc:9c:
b2:8c:19:8b:9f:3b:58:7b:03:0f:da:9c:92:e0:21:38:09:b5:
dc:c6:e6:e9:9d:e4:e2:20:4a:ae:1c:c5:5d:cd:ad:da:e6:3d:
02:af:54:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 8 08:09:03 2024 by rpki-client on console.sobornost.net