Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e382e3231392e302f32342d3234203d3e203339363030.roa
File: 34352e382e3231392e302f32342d3234203d3e203339363030.roa (raw, json)
Hash identifier: zXMnYAvWB3kTSVlcRXHAf+zVpggWUpCCy6VqyzfXFmc=
Subject key identifier: C5:6A:F2:88:DA:CF:AB:F7:FF:1E:87:9B:97:E8:AA:D4:21:47:E5:A3
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 2C16600E63C2D12D7189A7DC7A0A24F1E285934D
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e382e3231392e302f32342d3234203d3e203339363030.roa
Signing time: Wed 11 Oct 2023 06:50:17 +0000
ROA not before: Wed 11 Oct 2023 06:45:17 +0000
ROA not after: Wed 09 Oct 2024 06:50:17 +0000
asID: 39600
IP address blocks: 45.8.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 00:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:16:60:0e:63:c2:d1:2d:71:89:a7:dc:7a:0a:24:f1:e2:85:93:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Oct 11 06:45:17 2023 GMT
Not After : Oct 9 06:50:17 2024 GMT
Subject: CN=C56AF288DACFABF7FF1E879B97E8AAD42147E5A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4f:91:cf:4c:2e:26:48:c6:9d:ee:e4:0d:73:
1c:0c:b0:45:0b:26:88:e5:2f:b6:3d:33:6f:6f:4a:
40:a1:51:ec:14:35:0a:c3:52:3c:d9:19:be:c7:fc:
a5:71:90:fe:cb:fd:ba:c3:0b:39:80:82:c9:cd:66:
99:60:1f:ff:92:6d:11:38:43:f7:ab:1d:98:05:14:
73:9b:bf:55:16:cc:8f:d1:d4:6d:32:76:38:fa:dd:
11:b1:2a:2e:35:2e:72:69:6b:a9:6a:30:b8:98:bf:
35:d0:c4:5f:a2:5d:3e:bc:dc:38:aa:ca:33:ef:48:
eb:5f:bf:f8:cd:62:80:e0:b1:9c:f3:3e:1b:53:44:
83:21:77:4b:73:7c:51:20:42:79:33:3e:61:70:f4:
22:5f:84:60:77:55:22:31:0a:1e:44:0e:e3:46:46:
40:da:26:53:41:4c:fc:53:20:80:de:bb:9c:31:aa:
d4:9e:6e:6c:8d:b8:bd:e3:e6:01:c2:ac:08:31:10:
ec:37:16:62:97:bc:4b:46:a2:79:5c:72:86:f3:87:
57:fc:8b:ce:01:0c:49:58:bb:b6:ff:e9:78:eb:e0:
21:dd:71:f2:52:1d:5d:b1:70:d5:f9:d8:d5:5d:63:
9e:5e:ea:97:9a:ba:ae:4e:fc:af:8b:69:d3:30:00:
1f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6A:F2:88:DA:CF:AB:F7:FF:1E:87:9B:97:E8:AA:D4:21:47:E5:A3
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e382e3231392e302f32342d3234203d3e203339363030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.219.0/24
Signature Algorithm: sha256WithRSAEncryption
95:9d:66:33:f2:20:a0:55:bb:b2:92:64:6f:af:2b:e6:91:e9:
1e:d4:a9:b7:45:ec:ff:b8:40:dc:f6:cb:59:26:e5:a1:ab:98:
6e:01:b6:b3:ba:51:53:dd:99:b2:5b:8c:d1:fb:f5:af:ad:03:
2f:aa:eb:aa:ff:8e:9e:45:98:3e:c1:80:49:45:7a:99:76:03:
fb:4f:bc:e2:09:03:e9:d2:12:14:33:0c:5b:2b:f6:1b:41:a4:
f1:d4:d6:89:af:c7:a0:2c:88:dd:f4:cf:ea:e9:11:25:97:19:
ad:60:bd:33:6b:b5:b9:3d:49:10:b4:eb:6b:1b:e8:10:cd:7b:
7f:f6:57:64:d9:52:62:e1:ba:63:44:e9:ea:92:c8:bc:7b:6b:
56:d8:7a:3f:dc:9e:4d:d6:8a:aa:16:35:aa:05:7e:5f:b6:43:
fc:4f:a2:b2:ae:1b:fa:13:ac:3b:ad:53:08:d2:0c:1a:8b:11:
93:51:ab:0c:36:da:88:e0:d7:cc:e7:2a:8b:99:f1:e2:54:4e:
58:45:9f:60:1e:b4:df:28:ab:e3:62:68:3d:9b:66:ea:59:a0:
c3:1c:2d:97:cc:30:70:7e:07:26:7f:b8:0f:b6:80:c6:50:b0:
14:41:18:4c:84:83:25:16:47:49:84:02:bd:2c:07:fe:20:6c:
11:d1:42:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:56 2024 by rpki-client on console-ams.rpki-client.org