Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20383334.roa
File: 34352e39352e3231322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: YqsvEAbClTYgkb+kF2noWvVi2avODgMx+j5r7OTSZaY=
Subject key identifier: 1B:E6:30:F6:A4:40:E3:F2:73:59:69:2D:CB:2A:CB:CF:D5:6E:1C:58
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 7525638BACA7885A0F7BBEBFCF8270A08755EEAA
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20383334.roa
Signing time: Tue 23 Jan 2024 00:00:02 +0000
ROA not before: Mon 22 Jan 2024 23:55:02 +0000
ROA not after: Tue 21 Jan 2025 00:00:02 +0000
asID: 834
IP address blocks: 45.95.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 07:20:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:25:63:8b:ac:a7:88:5a:0f:7b:be:bf:cf:82:70:a0:87:55:ee:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jan 22 23:55:02 2024 GMT
Not After : Jan 21 00:00:02 2025 GMT
Subject: CN=1BE630F6A440E3F27359692DCB2ACBCFD56E1C58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:85:da:b3:6d:89:45:f0:fa:e5:2d:7b:2e:eb:
6b:d6:13:be:dc:29:ce:2f:36:18:35:33:1d:c0:77:
90:a9:b6:e1:81:f2:c8:61:0c:bc:49:a4:13:13:26:
5c:bc:56:95:82:21:ac:0d:f1:4a:77:76:e1:de:7d:
b4:c8:6b:05:22:03:c7:3d:d1:67:8b:7b:43:a1:03:
94:94:04:a3:a5:21:9b:14:10:93:0c:bb:58:04:d7:
80:b9:63:32:4a:c2:de:fa:44:9a:e2:ff:27:ec:31:
a7:3e:5e:b7:4e:48:72:26:9f:bb:9c:9c:0c:d6:e2:
eb:3b:35:e3:45:af:77:13:d8:27:dc:99:71:b4:7b:
7f:7b:d7:94:62:40:d9:eb:ff:f0:bd:a8:fc:bb:2e:
d6:78:3d:6b:b9:0d:60:1c:c7:03:81:51:fb:fc:bb:
99:2e:25:98:ae:04:64:8a:ae:df:88:5b:45:0c:f3:
e5:a0:68:42:15:70:54:27:8c:55:31:a4:3d:c1:a6:
47:1a:62:a3:3c:c6:70:11:c8:5d:5f:e9:b6:1e:a8:
0b:f2:6a:f9:f6:4c:06:1f:7d:93:f9:71:21:9e:5a:
9b:af:cc:3d:ce:c6:98:a5:7d:db:9c:be:7a:22:d0:
51:b3:26:3a:aa:ce:1c:09:45:5e:1a:01:68:29:17:
c3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E6:30:F6:A4:40:E3:F2:73:59:69:2D:CB:2A:CB:CF:D5:6E:1C:58
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
83:06:c3:18:a3:d5:01:d6:c7:af:d7:5e:78:b1:cc:eb:57:0c:
10:ee:20:1e:49:53:4a:ee:59:54:93:68:68:e9:91:0b:d6:69:
dc:be:cc:cd:6b:d1:03:17:dc:25:54:6d:bd:96:31:85:ad:ef:
86:5c:f8:c3:c7:f7:ea:cc:31:f3:f6:e0:9b:c7:87:cb:eb:e6:
d7:b6:a8:28:03:11:0e:a4:b1:e9:3f:ab:52:5d:dc:fc:8c:ad:
d1:1d:2f:6f:e9:f3:b2:90:5d:94:74:9b:10:40:b1:c2:db:cc:
88:6a:8b:7e:ed:75:ba:4b:de:79:17:92:26:0f:31:0d:b9:16:
1a:10:9d:0f:a0:03:96:72:a1:d3:dc:01:fd:b2:f3:b9:5f:b1:
c8:12:ed:cc:e4:b0:f1:98:6a:9c:f9:1f:3c:71:7c:02:72:68:
8f:66:a1:9b:e1:f1:f0:c1:c8:9e:22:5e:cc:1d:3b:57:fa:09:
39:1f:4d:a2:f5:9a:2b:69:ff:87:d9:a4:5b:b4:27:2b:3d:70:
89:19:12:94:90:d1:b8:e3:11:06:0e:88:3f:c1:28:6b:f3:f0:
74:60:b0:eb:3e:dd:57:3f:75:30:58:cc:cd:4d:44:ff:a7:02:
24:d2:af:4c:50:c5:c8:08:91:29:01:25:14:ee:58:87:6f:ce:
6c:58:45:30
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUdSVji6yniFoPe76/z4JwoIdV7qowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTk0MjBlNmM2ZjI0YjBlNDIyZGE3ZmU3ZTQyMGVmNTAz
NTRmNDVjNjAeFw0yNDAxMjIyMzU1MDJaFw0yNTAxMjEwMDAwMDJaMDMxMTAvBgNV
BAMTKDFCRTYzMEY2QTQ0MEUzRjI3MzU5NjkyRENCMkFDQkNGRDU2RTFDNTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCehdqzbYlF8PrlLXsu62vWE77c
Kc4vNhg1Mx3Ad5CptuGB8shhDLxJpBMTJly8VpWCIawN8Up3duHefbTIawUiA8c9
0WeLe0OhA5SUBKOlIZsUEJMMu1gE14C5YzJKwt76RJri/yfsMac+XrdOSHImn7uc
nAzW4us7NeNFr3cT2CfcmXG0e39715RiQNnr//C9qPy7LtZ4PWu5DWAcxwOBUfv8
u5kuJZiuBGSKrt+IW0UM8+WgaEIVcFQnjFUxpD3BpkcaYqM8xnARyF1f6bYeqAvy
avn2TAYffZP5cSGeWpuvzD3Oxpilfducvnoi0FGzJjqqzhwJRV4aAWgpF8MFAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUG+Yw9qRA4/JzWWktyyrLz9VuHFgwHwYDVR0j
BBgwFoAUqUIObG8ksOQi2n/n5CDvUDVPRcYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAtMDg1NS00MWYyLWFjNDYtNTlhMmU5OGRh
NzM2LzEvQTk0MjBFNkM2RjI0QjBFNDIyREE3RkU3RTQyMEVGNTAzNTRGNDVDNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FVSU9iRzhrc09RaTJuX241Q0R2VURW
UFJjWS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAt
MDg1NS00MWYyLWFjNDYtNTlhMmU5OGRhNzM2LzEvMzQzNTJlMzkzNTJlMzIzMTMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV/UMA0G
CSqGSIb3DQEBCwUAA4IBAQCDBsMYo9UB1sev1154sczrVwwQ7iAeSVNK7llUk2ho
6ZEL1mncvszNa9EDF9wlVG29ljGFre+GXPjDx/fqzDHz9uCbx4fL6+bXtqgoAxEO
pLHpP6tSXdz8jK3RHS9v6fOykF2UdJsQQLHC28yIaot+7XW6S955F5ImDzENuRYa
EJ0PoAOWcqHT3AH9svO5X7HIEu3M5LDxmGqc+R88cXwCcmiPZqGb4fHwwcieIl7M
HTtX+gk5H02i9Zoraf+H2aRbtCcrPXCJGRKUkNG44xEGDog/wShr8/B0YLDrPt1X
P3UwWMzNTUT/pwIk0q9MUMXICJEpASUU7liHb85sWEUw
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:10 2024 by rpki-client on console-fra.rpki-client.org