Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
File: 34352e3134382e3134302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: uRmASLrv6Cbn0r8E1PuFVNUD0MMVnx2u+8pqFaYu+V0=
Subject key identifier: B6:BB:8F:61:53:6B:B8:50:30:55:9D:5F:3D:D1:44:5A:32:8D:88:36
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 345880E9FDE8406A262E5F508CC9F50034FF937F
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
Signing time: Thu 23 May 2024 10:07:00 +0000
ROA not before: Thu 23 May 2024 10:02:00 +0000
ROA not after: Thu 22 May 2025 10:07:00 +0000
asID: 834
IP address blocks: 45.148.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 13:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:58:80:e9:fd:e8:40:6a:26:2e:5f:50:8c:c9:f5:00:34:ff:93:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: May 23 10:02:00 2024 GMT
Not After : May 22 10:07:00 2025 GMT
Subject: CN=B6BB8F61536BB85030559D5F3DD1445A328D8836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:ef:27:af:47:af:8c:b5:9c:d1:6e:48:48:
be:8b:20:5d:9d:d4:66:af:b5:fd:86:8a:17:29:52:
ce:a6:ee:25:33:8e:47:d6:5a:0a:db:f2:67:7d:c1:
0d:fa:5d:1b:dc:a6:d0:86:16:64:e2:1e:7c:b0:d4:
98:ef:46:99:82:0e:e6:82:73:d1:e6:43:4d:6c:9d:
bf:79:45:2d:61:39:49:07:bc:43:55:17:90:71:5d:
18:dd:c5:5a:49:8f:42:65:d9:f1:0b:1e:3c:9e:8e:
7f:6c:ab:18:07:97:19:fa:b3:f4:87:b3:0c:cc:ac:
b4:8f:a7:1d:d1:7b:8e:23:d3:b9:1f:d3:77:9a:2f:
c6:77:4a:2a:ec:6b:df:0b:5d:d9:2e:cc:b2:03:32:
ef:33:b8:50:72:40:78:8e:d5:b3:9d:e2:68:ab:3b:
55:b2:7d:7f:8d:f3:9f:09:4a:62:58:83:d9:a9:d6:
4b:b8:26:7f:b4:5a:e3:2d:fa:bb:e3:d2:ec:ce:ff:
60:9f:bd:b3:22:00:49:a3:bc:c9:09:df:eb:ba:6d:
07:09:68:19:f7:30:ba:02:94:cb:33:ac:54:3b:1b:
f6:1b:a2:a3:bb:6f:23:55:86:e9:1a:9c:f2:aa:df:
f4:9c:8a:6e:9f:5f:cf:61:ac:fa:88:c3:c1:f4:56:
2f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BB:8F:61:53:6B:B8:50:30:55:9D:5F:3D:D1:44:5A:32:8D:88:36
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.140.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:50:00:25:e7:fd:3e:d4:06:b8:a2:aa:1e:f5:8d:fd:06:e2:
72:ed:c2:10:71:b9:29:ab:61:2e:30:35:48:8c:09:64:21:57:
d5:43:ff:7b:b5:cb:95:a2:9b:c1:28:e1:23:4c:df:22:ab:2c:
40:83:d3:50:42:91:cd:bb:92:94:2b:b8:56:8e:16:a6:57:73:
61:3c:d0:f4:59:f4:94:8d:cf:7b:af:db:75:6e:80:50:ed:39:
ec:2a:dc:d2:4a:60:e8:54:4a:8f:df:61:a8:b7:ff:c6:53:4b:
dc:46:80:1c:5a:88:fb:8b:52:45:86:bb:fa:16:b1:75:87:d6:
18:8c:cd:29:a4:e0:e6:b5:ff:b5:47:38:2f:52:b6:53:e7:88:
37:07:6e:8b:20:de:7f:f0:38:d3:6a:66:53:86:96:00:30:d7:
52:0b:f1:df:f2:9b:36:d7:73:e3:89:78:27:ee:66:14:70:8b:
8d:4e:90:b4:a7:84:5e:fd:0b:43:3f:69:62:c3:20:9c:49:ca:
50:ae:8e:bb:2e:4f:19:b4:c2:09:2d:9d:7f:6d:d5:48:3b:7f:
91:9e:fd:00:c5:f3:33:b8:54:b7:67:e6:64:24:4e:e5:17:49:
e5:51:1e:51:7c:86:6f:43:cc:9e:96:97:52:25:09:fa:58:d6:
1f:07:7b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:01 2024 by rpki-client on console-ams.rpki-client.org