Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa
File: 34352e36352e3131392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: SCtwKJuVeDY+3E5LmDOjUFR7BDXb3RpgffPEGyZAh9U=
Subject key identifier: 59:41:23:A8:AA:33:BE:3F:17:1B:E4:93:17:98:AA:2E:93:54:31:BB
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 216B11362B10528B6AB1AABCCD18A5BE614829B7
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa
Signing time: Thu 29 Feb 2024 21:41:33 +0000
ROA not before: Thu 29 Feb 2024 21:36:33 +0000
ROA not after: Thu 27 Feb 2025 21:41:33 +0000
asID: 834
IP address blocks: 45.65.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 16:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:6b:11:36:2b:10:52:8b:6a:b1:aa:bc:cd:18:a5:be:61:48:29:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Feb 29 21:36:33 2024 GMT
Not After : Feb 27 21:41:33 2025 GMT
Subject: CN=594123A8AA33BE3F171BE4931798AA2E935431BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:86:00:b1:74:89:c4:a0:ff:38:0f:80:4a:75:
b4:81:77:df:c3:0c:34:b2:8e:e2:b1:c3:df:2e:af:
4f:89:9d:57:4d:2d:1e:02:33:73:c9:e5:5d:3c:61:
c1:fc:90:05:64:28:3f:3e:6a:32:66:9c:63:25:ef:
91:d8:e0:cd:c4:b2:10:78:0c:b3:2e:e1:9f:76:75:
36:50:06:a1:8b:73:c3:3b:3a:88:c4:5b:82:90:e7:
05:39:1e:b5:3d:00:ea:38:aa:13:99:f5:83:c2:83:
9a:33:6a:0c:f0:b0:2c:87:78:2c:17:ce:a9:24:bc:
3e:88:81:af:61:82:76:2a:d3:c3:b9:27:c6:cd:eb:
bc:6f:e4:20:fe:f5:d1:77:7b:c8:68:b1:e1:d3:2d:
ab:77:b2:78:0d:83:a9:d7:af:51:04:93:3f:13:a7:
f6:66:2e:55:28:43:0f:95:e9:e8:e4:fd:c5:fb:4f:
87:e6:a3:da:87:2e:eb:22:af:cf:91:c8:94:ff:d1:
5a:9b:6f:12:0c:04:df:fa:9d:1e:6d:3f:5b:7d:1c:
54:6c:ac:fb:6f:24:28:42:3c:82:80:16:a5:72:c8:
04:7e:d2:a6:e0:a6:28:67:ec:61:ae:36:ab:00:e6:
a1:69:e6:81:89:2b:07:c6:11:ee:26:a3:6f:6a:39:
dc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:41:23:A8:AA:33:BE:3F:17:1B:E4:93:17:98:AA:2E:93:54:31:BB
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.119.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7a:bb:05:c8:91:e6:4a:12:28:92:43:fc:a9:16:6e:a3:2f:
ed:58:c1:31:78:46:75:7a:25:79:7a:e6:13:d9:0d:bc:5d:5e:
60:28:45:af:64:d3:65:de:55:59:7c:b1:fa:ed:2d:bc:28:bd:
2f:45:83:d5:94:95:fd:57:6f:8a:81:59:88:a4:53:fd:f4:0b:
2a:7d:c8:ec:f0:36:9b:cc:8b:83:d1:e1:70:7f:e4:f2:18:23:
89:a5:b3:57:e4:65:0a:86:7e:78:b4:68:5b:c2:24:18:52:4c:
e1:30:a9:e2:ce:83:e5:29:d2:c4:87:bd:f3:4a:ce:04:f9:b0:
65:37:ed:c4:fb:2f:fd:10:38:a1:c1:29:62:aa:94:4d:ac:a5:
e5:d5:ef:1e:a2:ff:98:e0:4d:ab:77:d0:17:6c:45:92:18:0e:
8f:02:c2:f0:e3:05:77:1c:82:e4:f1:af:f4:60:c2:4b:b9:cb:
c4:e6:99:9c:c1:e0:5b:01:a9:75:38:a1:42:67:36:28:ef:c4:
ca:8d:1a:c4:56:1d:e2:cd:7a:7b:84:cc:1d:4e:22:44:f9:7d:
ea:a4:10:c8:98:86:e3:05:1a:84:23:b6:8e:63:09:8a:f3:d1:
5e:e0:32:bf:14:62:9c:f1:d2:cd:12:53:00:26:3b:d0:26:fc:
ea:67:b5:6f
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUIWsRNisQUotqsaq8zRilvmFIKbcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl
OTczMjY2ZDAeFw0yNDAyMjkyMTM2MzNaFw0yNTAyMjcyMTQxMzNaMDMxMTAvBgNV
BAMTKDU5NDEyM0E4QUEzM0JFM0YxNzFCRTQ5MzE3OThBQTJFOTM1NDMxQkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClhgCxdInEoP84D4BKdbSBd9/D
DDSyjuKxw98ur0+JnVdNLR4CM3PJ5V08YcH8kAVkKD8+ajJmnGMl75HY4M3EshB4
DLMu4Z92dTZQBqGLc8M7OojEW4KQ5wU5HrU9AOo4qhOZ9YPCg5ozagzwsCyHeCwX
zqkkvD6Iga9hgnYq08O5J8bN67xv5CD+9dF3e8hoseHTLat3sngNg6nXr1EEkz8T
p/ZmLlUoQw+V6ejk/cX7T4fmo9qHLusir8+RyJT/0VqbbxIMBN/6nR5tP1t9HFRs
rPtvJChCPIKAFqVyyAR+0qbgpihn7GGuNqsA5qFp5oGJKwfGEe4mo29qOdzVAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUWUEjqKozvj8XG+STF5iqLpNUMbswHwYDVR0j
BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4
MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s
ekptMC5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt
YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzYzNTJlMzEzMTM5
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUF3MA0G
CSqGSIb3DQEBCwUAA4IBAQBVersFyJHmShIokkP8qRZuoy/tWMExeEZ1eiV5euYT
2Q28XV5gKEWvZNNl3lVZfLH67S28KL0vRYPVlJX9V2+KgVmIpFP99Asqfcjs8Dab
zIuD0eFwf+TyGCOJpbNX5GUKhn54tGhbwiQYUkzhMKnizoPlKdLEh73zSs4E+bBl
N+3E+y/9EDihwSliqpRNrKXl1e8eov+Y4E2rd9AXbEWSGA6PAsLw4wV3HILk8a/0
YMJLucvE5pmcweBbAal1OKFCZzYo78TKjRrEVh3izXp7hMwdTiJE+X3qpBDImIbj
BRqEI7aOYwmK89Fe4DK/FGKc8dLNElMAJjvQJvzqZ7Vv
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:13 2024 by rpki-client on console-fra.rpki-client.org