Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20383334.roa
File: 34352e39352e36362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: qMeeDoxK4AV+5TrUijXo9yyBYR+urJGQvNmrjemyX1g=
Subject key identifier: 2B:C2:30:BD:60:C8:3E:CA:EF:8C:09:F0:7C:B9:3F:12:93:4E:33:99
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 2D8FEE8BFD6952A363525DB3AE35444156683078
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20383334.roa
Signing time: Tue 19 Mar 2024 10:03:52 +0000
ROA not before: Tue 19 Mar 2024 09:58:52 +0000
ROA not after: Tue 18 Mar 2025 10:03:52 +0000
asID: 834
IP address blocks: 45.95.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 18:54:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:8f:ee:8b:fd:69:52:a3:63:52:5d:b3:ae:35:44:41:56:68:30:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Mar 19 09:58:52 2024 GMT
Not After : Mar 18 10:03:52 2025 GMT
Subject: CN=2BC230BD60C83ECAEF8C09F07CB93F12934E3399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c7:f9:37:91:24:d4:c3:41:49:8a:5b:0b:50:
fa:d8:69:e5:dc:a6:53:e9:51:5f:5c:da:95:7b:00:
f2:75:40:2e:c0:7a:77:14:12:42:11:f0:1a:f7:38:
bf:46:da:71:e4:6b:de:20:c0:42:8e:ea:53:98:cc:
69:02:10:47:9b:e0:26:cb:c9:8b:cb:d4:9c:5d:f3:
50:a0:63:fb:09:34:51:8c:49:e1:e2:b2:ac:79:15:
1b:cc:fc:30:8e:74:ee:12:2d:15:3e:24:64:df:44:
10:c2:ff:cf:67:7f:0b:1c:e2:07:16:3a:3a:93:38:
a6:eb:ff:91:df:f8:0d:56:45:34:ad:df:8c:53:db:
dd:33:60:c3:b9:4f:14:f1:31:21:ee:d9:6d:bb:36:
38:f8:79:90:be:98:06:d0:84:6f:dd:e4:bf:03:82:
81:ea:02:03:78:09:12:56:20:ee:e5:59:df:c6:fb:
7e:4a:25:88:fb:70:91:2b:61:d1:fb:25:54:56:79:
cc:49:70:8d:10:9f:e8:c2:ba:74:c8:36:f0:8c:27:
75:74:f7:39:71:bd:cd:29:f5:d2:8f:cf:65:62:8e:
e7:e6:41:6a:e2:48:8d:df:cf:6d:29:02:5f:84:cc:
23:40:dc:24:00:4c:1a:4c:d9:47:65:a9:71:e0:d0:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C2:30:BD:60:C8:3E:CA:EF:8C:09:F0:7C:B9:3F:12:93:4E:33:99
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.66.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a1:ef:02:b2:59:42:80:a9:69:dc:2b:03:09:83:7d:13:6f:
69:66:c4:3c:16:73:78:e9:ca:3c:4c:bd:0b:2e:c2:71:61:28:
7d:af:03:f0:95:6e:94:fb:17:7e:1e:06:5a:e6:c2:34:8c:53:
c5:0f:ee:4a:7a:ba:1b:8c:41:c5:04:99:b3:d8:26:f8:c3:9c:
d2:23:e3:8f:78:40:dd:7f:67:9a:72:d4:3a:38:88:0d:88:31:
a5:07:39:9e:75:a6:18:94:cc:d4:12:f4:08:ae:f7:52:e9:a5:
de:18:f7:e2:19:51:35:f0:9a:42:e5:b6:03:5b:6e:65:a0:a0:
84:46:76:80:c3:41:65:e1:b6:54:2f:9b:e9:f9:21:33:42:40:
7f:ca:5e:6d:2a:cc:c2:6e:78:36:ec:7d:c6:e4:f2:5d:95:ec:
69:4f:65:e0:60:e3:4f:4d:d1:6b:97:a0:ff:c6:ec:9d:8a:6a:
52:67:39:86:44:13:c9:5b:0e:c3:1a:8b:2e:b1:67:c5:33:0e:
6c:92:fc:33:3e:e0:8e:2a:f0:f8:37:02:c5:d0:d5:50:2d:a8:
d9:b5:38:8c:d7:be:80:1b:b5:e5:db:06:84:8b:b0:24:b2:22:
52:74:97:02:c5:30:1e:32:b2:f5:38:10:9d:09:eb:fb:03:d1:
f2:99:bf:8c
-----BEGIN CERTIFICATE-----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Generated at Tue Mar 19 23:07:32 2024 by rpki-client on console-ams.rpki-client.org