Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136312e302f32342d3234203d3e20323036353035.roa
File: 34352e3134362e3136312e302f32342d3234203d3e20323036353035.roa (raw, json)
Hash identifier: h96KCjvCOacN4yc1/Ko1opOACHvQUNktoRFbLd7oClY=
Subject key identifier: 17:03:59:F0:E5:04:38:00:78:86:81:25:A5:EC:D2:FE:58:D5:E5:B6
Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Certificate serial: 3551A12D4CCE4C87D85B94A42DECBFECE1D0349D
Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136312e302f32342d3234203d3e20323036353035.roa
Signing time: Thu 17 Oct 2024 19:45:19 +0000
ROA not before: Thu 17 Oct 2024 19:40:19 +0000
ROA not after: Thu 16 Oct 2025 19:45:19 +0000
asID: 206505
IP address blocks: 45.146.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 00:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:51:a1:2d:4c:ce:4c:87:d8:5b:94:a4:2d:ec:bf:ec:e1:d0:34:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Validity
Not Before: Oct 17 19:40:19 2024 GMT
Not After : Oct 16 19:45:19 2025 GMT
Subject: CN=170359F0E504380078868125A5ECD2FE58D5E5B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6f:09:a0:62:0d:5e:3d:f9:7a:7b:5c:6f:ec:
23:09:b4:f2:c2:16:01:89:c2:82:42:94:08:a0:b9:
69:7f:c6:56:7c:6b:57:1f:c4:40:2c:2a:a7:db:08:
88:f2:b5:01:a8:8a:aa:7c:63:d1:ab:e9:5b:60:29:
41:6f:3a:c7:6e:11:45:f6:aa:00:b9:53:3c:cb:94:
4a:a1:2b:dd:4a:38:ff:6a:5c:b4:9b:01:f0:b7:80:
d4:20:80:0f:8d:ca:b3:0e:17:14:1c:ee:88:ac:80:
70:bb:b1:ad:68:58:39:d6:3c:b3:a6:c7:a2:fa:0f:
ca:1d:59:07:89:5f:2c:b4:73:ea:34:8c:4a:d6:6f:
c0:32:a4:04:75:c8:87:72:7e:04:15:bb:cd:03:0c:
f3:c3:5f:de:7b:02:f4:b1:c3:84:c4:c2:1d:f6:d3:
c8:00:3d:ee:e7:c4:e7:44:a3:dd:aa:d7:0a:53:22:
f5:77:98:17:a1:5d:9a:fe:7e:70:70:96:16:f3:5a:
a1:8c:aa:33:05:d1:46:24:65:18:3b:bf:5b:bf:2a:
b6:b8:cc:d3:81:98:d0:2d:9f:a0:81:10:5f:c5:ed:
33:d4:41:88:a2:57:5d:40:78:20:d2:ce:c2:1b:28:
56:f7:0e:be:72:2e:69:bb:56:0c:b7:84:48:25:67:
de:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:03:59:F0:E5:04:38:00:78:86:81:25:A5:EC:D2:FE:58:D5:E5:B6
X509v3 Authority Key Identifier:
keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136312e302f32342d3234203d3e20323036353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.161.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1e:6c:f4:64:06:26:bf:91:0f:91:a4:ed:c0:80:b5:7d:9a:
28:de:aa:1c:7c:40:f2:3d:82:fd:4a:56:8a:d8:92:a1:8e:c7:
d3:ab:80:b4:2a:00:85:2e:3a:1c:3a:69:6d:a3:f2:b2:82:72:
49:e2:b0:b5:da:2b:92:b9:fc:81:d1:25:58:61:11:d4:2a:da:
b3:db:fb:f4:fe:d1:f3:b1:21:71:ef:6f:ef:a3:59:16:19:ea:
f1:88:29:51:40:79:bc:d7:6c:58:17:4b:79:ec:41:07:cb:34:
e0:a6:dd:8c:8a:b6:4d:27:99:ad:68:0d:8e:d9:d4:e4:88:e3:
0e:ff:b7:cb:a1:25:01:52:b7:f7:89:58:a1:11:a1:60:d3:bb:
4e:8b:da:37:0c:c4:e2:7e:ec:c6:01:5e:dd:71:fa:30:65:2a:
df:8e:3a:98:78:be:6f:52:20:c2:13:d1:73:7b:21:5c:f6:61:
4d:fc:39:d2:52:8d:a9:a7:2d:df:d4:a4:85:6c:89:b1:15:f6:
9d:a0:24:ee:1d:4f:71:54:75:fe:32:26:58:49:5c:02:4c:2a:
c0:c5:cb:a0:a0:02:45:3e:9d:ac:bd:62:75:ed:1c:a7:e7:49:
0c:fa:52:44:d4:41:ba:91:79:1a:06:ce:b7:99:97:40:b5:6e:
23:be:85:cf
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUNVGhLUzOTIfYW5SkLey/7OHQNJ0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm
MjYwNzNjMzAeFw0yNDEwMTcxOTQwMTlaFw0yNTEwMTYxOTQ1MTlaMDMxMTAvBgNV
BAMTKDE3MDM1OUYwRTUwNDM4MDA3ODg2ODEyNUE1RUNEMkZFNThENUU1QjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVbwmgYg1ePfl6e1xv7CMJtPLC
FgGJwoJClAiguWl/xlZ8a1cfxEAsKqfbCIjytQGoiqp8Y9Gr6VtgKUFvOsduEUX2
qgC5UzzLlEqhK91KOP9qXLSbAfC3gNQggA+NyrMOFxQc7oisgHC7sa1oWDnWPLOm
x6L6D8odWQeJXyy0c+o0jErWb8AypAR1yIdyfgQVu80DDPPDX957AvSxw4TEwh32
08gAPe7nxOdEo92q1wpTIvV3mBehXZr+fnBwlhbzWqGMqjMF0UYkZRg7v1u/Kra4
zNOBmNAtn6CBEF/F7TPUQYiiV11AeCDSzsIbKFb3Dr5yLmm7Vgy3hEglZ979AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUFwNZ8OUEOAB4hoElpezS/ljV5bYwHwYDVR0j
BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz
NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K
Z2M4TS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmZlMmIyN2Et
MWVjNS00YWI3LTk3OGUtNmRhOWNmOWYzNzkwLzAvMzQzNTJlMzEzNDM2MmUzMTM2
MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzYzNTMwMzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAtkqEwDQYJKoZIhvcNAQELBQADggEBAAIebPRkBia/kQ+RpO3AgLV9mijeqhx8
QPI9gv1KVorYkqGOx9OrgLQqAIUuOhw6aW2j8rKCcknisLXaK5K5/IHRJVhhEdQq
2rPb+/T+0fOxIXHvb++jWRYZ6vGIKVFAebzXbFgXS3nsQQfLNOCm3YyKtk0nma1o
DY7Z1OSI4w7/t8uhJQFSt/eJWKERoWDTu06L2jcMxOJ+7MYBXt1x+jBlKt+OOph4
vm9SIMIT0XN7IVz2YU38OdJSjamnLd/UpIVsibEV9p2gJO4dT3FUdf4yJlhJXAJM
KsDFy6CgAkU+nay9YnXtHKfnSQz6UkTUQbqReRoGzreZl0C1biO+hc8=
-----END CERTIFICATE-----
Generated at Fri Nov 15 02:01:37 2024 by rpki-client on console-ams.rpki-client.org