Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e203130373533.roa
File: 34352e39352e3231322e302f32342d3234203d3e203130373533.roa (raw, json)
Hash identifier: y/A5wcuVo3+t7F4O+5IzMfV7+wIc9puTy6ZFgAwpZcg=
Subject key identifier: 32:27:87:C8:18:0C:C6:75:75:41:53:DA:FF:9B:9E:2C:48:24:6C:50
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 31AEEB305C4C960F7ED6799AC677450B96CF347D
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e203130373533.roa
Signing time: Tue 23 Jul 2024 00:20:46 +0000
ROA not before: Tue 23 Jul 2024 00:15:46 +0000
ROA not after: Tue 22 Jul 2025 00:20:46 +0000
asID: 10753
IP address blocks: 45.95.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Nov 2024 10:59:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ae:eb:30:5c:4c:96:0f:7e:d6:79:9a:c6:77:45:0b:96:cf:34:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jul 23 00:15:46 2024 GMT
Not After : Jul 22 00:20:46 2025 GMT
Subject: CN=322787C8180CC675754153DAFF9B9E2C48246C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e5:1d:19:b1:4e:71:59:18:fc:3b:14:e1:ac:
30:36:f5:68:6b:4a:0f:36:0b:09:4c:e6:bf:e6:c3:
a7:5b:d1:43:8b:10:ba:b5:fa:9f:b1:a2:2e:a8:97:
84:b0:4d:d0:47:5f:2f:8b:88:3e:11:db:7a:ac:cf:
df:fd:3e:3d:81:c2:72:95:1c:f2:90:87:91:4f:c5:
bd:b9:4a:d7:ae:01:0c:59:91:68:e3:54:a5:ef:84:
9e:4a:72:7a:e6:e2:3d:99:69:72:10:63:49:a5:c2:
0f:6b:a4:86:35:be:06:93:c0:e8:da:c1:cb:38:f2:
4d:66:4d:65:9c:e7:21:d2:72:39:35:61:b2:d1:7c:
0f:6f:79:c1:38:2f:74:ba:d2:58:5b:da:f1:68:47:
1d:31:1c:8a:39:15:be:62:ec:1e:20:28:f8:50:de:
b4:2e:eb:1b:13:9e:d7:54:ed:df:4f:fe:7c:c0:e3:
d4:4c:50:fe:42:70:bd:c7:04:32:44:78:b4:a7:81:
34:92:b7:5c:3c:95:b0:54:d9:3a:77:30:cc:35:01:
b6:9a:b6:ed:4c:0f:65:86:07:36:81:71:16:e7:0c:
53:aa:39:9b:a1:0c:82:a4:b6:5f:e4:86:18:f0:8d:
c9:fb:0f:eb:8a:ba:ed:45:70:2e:37:d6:40:5e:50:
1e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:27:87:C8:18:0C:C6:75:75:41:53:DA:FF:9B:9E:2C:48:24:6C:50
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e203130373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:af:73:7e:01:94:81:fe:9a:a6:87:77:83:66:35:0e:af:f7:
38:a4:2f:e7:90:9f:6a:2a:cd:87:9f:f0:f4:06:3f:c7:c7:fb:
2f:ab:18:87:cf:7f:2a:61:76:b7:bf:0e:52:ec:84:9d:61:df:
69:10:8d:5c:5b:3b:51:0b:ff:46:ca:40:69:4e:4a:41:ca:d1:
67:5a:ba:2b:d1:25:f1:0d:b7:e7:e8:09:3f:e3:f3:eb:9a:29:
4a:dc:1c:19:46:88:a2:ca:4d:59:b7:98:18:a1:e3:c1:2f:95:
f6:72:b4:96:dc:75:40:2e:2a:b3:6d:8e:75:4a:a7:84:dc:7e:
77:0e:fc:75:58:2f:72:aa:1d:45:6e:5c:64:e3:a2:54:e4:04:
1b:c5:46:00:ee:f6:28:7d:53:10:95:95:2b:7b:0b:8b:52:d8:
51:4b:31:9e:e5:3a:3b:62:9b:51:37:51:7c:9a:05:b7:a2:0e:
ec:0b:ad:58:19:50:98:46:ee:1c:a9:0c:1f:04:9c:ad:a6:04:
b2:05:c8:f8:9a:11:9c:73:53:37:7f:f3:39:eb:55:fe:19:53:
e3:99:d9:2f:81:d8:6f:2a:63:ea:9a:b8:bb:a0:6a:05:b6:7c:
21:76:aa:27:5c:87:c9:33:32:47:84:33:59:16:b5:7c:40:b8:
2a:fa:ac:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:23:53 2025 by rpki-client