Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
File: 34352e3134382e3134302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: C0HQkO0cdoLToYNOHt0itkjBPcbjQ4fOBPwqzeHSl94=
Subject key identifier: 44:F2:EC:11:B9:55:52:16:96:25:F7:FE:52:AE:4B:4D:D2:3C:22:05
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 71F36931DBAA67D0FB164F9660F87D9DB9990AC6
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
Signing time: Sun 23 Feb 2025 00:02:34 +0000
ROA not before: Sat 22 Feb 2025 23:57:34 +0000
ROA not after: Sun 22 Feb 2026 00:02:34 +0000
asID: 834
IP address blocks: 45.148.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Mar 2025 21:15:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:f3:69:31:db:aa:67:d0:fb:16:4f:96:60:f8:7d:9d:b9:99:0a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Feb 22 23:57:34 2025 GMT
Not After : Feb 22 00:02:34 2026 GMT
Subject: CN=44F2EC11B95552169625F7FE52AE4B4DD23C2205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b1:76:b3:b8:26:73:35:09:0a:c0:65:57:d8:
66:79:07:be:4e:c3:d1:6a:7d:e3:e0:82:31:77:9d:
f3:d2:66:46:c1:25:1a:83:68:28:7f:5d:60:9f:1b:
11:6a:73:26:d4:63:8b:aa:00:71:02:7f:c4:a0:3c:
0a:98:50:5c:f1:94:69:10:34:f9:fa:3c:21:d0:49:
54:9d:d5:04:3f:56:63:ab:f7:40:e9:63:d3:61:33:
7c:0d:74:75:f2:82:17:b9:e3:56:a1:8c:e4:bd:a0:
68:d0:63:e2:fc:5f:ac:14:89:ee:d2:6a:ad:ee:28:
b5:80:6d:bc:d1:0e:50:ce:77:97:43:79:67:87:65:
6b:38:0f:89:eb:85:05:4c:75:95:3c:19:34:1e:4f:
8b:9d:8f:2c:20:7f:d5:b5:df:35:73:e4:9e:68:34:
8f:c1:a0:03:2f:38:3d:43:89:bf:b2:8f:c3:b4:58:
41:9e:e8:db:ef:47:89:c5:ea:c1:c3:18:73:71:c4:
73:e5:57:2e:b3:43:a0:80:92:8e:0d:0b:cb:58:74:
e2:98:c2:ee:de:9d:70:fc:47:c3:74:27:83:cf:9b:
16:f9:9b:7c:9c:69:de:16:ab:57:9f:02:6f:a4:07:
e7:15:ca:a8:8b:70:58:55:26:29:14:69:63:5c:09:
0e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F2:EC:11:B9:55:52:16:96:25:F7:FE:52:AE:4B:4D:D2:3C:22:05
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.140.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:f4:17:0b:9c:c1:3f:29:2c:50:b5:b0:38:c0:dc:ce:88:06:
74:96:95:51:0f:85:e6:e9:e6:81:e3:8d:25:ce:18:92:5f:25:
e4:d3:ca:60:d3:e0:1c:2c:ae:3e:68:d5:e8:9c:5c:c8:05:7f:
c8:df:bc:5a:7d:d1:ff:29:57:2e:23:f3:db:4c:04:47:b2:81:
40:92:1a:41:17:4e:9a:51:8d:94:87:09:61:98:e0:2e:b9:5a:
a7:bb:88:ce:a7:3f:50:9d:31:b2:a5:b0:92:08:da:32:04:48:
6b:49:77:55:f1:dd:ae:61:c5:b7:c6:50:9e:96:8b:18:57:ce:
14:7d:c7:3b:53:41:a2:c4:e7:e9:4e:b6:83:0e:4a:98:92:ee:
4b:2c:96:7b:e9:aa:80:64:ef:10:b0:4f:99:52:03:9e:ba:65:
dd:08:fb:96:3b:87:fa:f4:80:b5:df:7f:05:e7:df:ba:fd:a3:
c8:2e:50:0c:14:90:48:e5:85:c5:b2:24:2a:cd:a3:c7:ae:b1:
f0:f2:36:28:73:e9:ba:99:da:2b:86:15:f5:a5:bd:c3:ef:1a:
33:cf:64:21:55:62:2e:8d:a7:f1:ce:05:22:fd:3a:3a:03:2a:
ce:f2:db:f0:57:1a:34:b0:db:ca:9a:fc:e8:5a:82:0b:35:ea:
4c:6d:14:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:49:59 2025 by rpki-client