Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e203136323736.roa
File: 34352e38382e31302e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: YhAJuTZsW5IiCNOipF7YfwJsRB1KMT4g7E9niWWaanI=
Subject key identifier: 68:E1:BF:B9:A9:1F:6F:88:44:56:FF:FE:FD:FD:7D:B9:E1:CC:FD:A9
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 33D42D3C87ABA4B1E57F9629412434833BFF73F4
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e203136323736.roa
Signing time: Thu 03 Oct 2024 09:22:56 +0000
ROA not before: Thu 03 Oct 2024 09:17:56 +0000
ROA not after: Thu 02 Oct 2025 09:22:56 +0000
asID: 16276
IP address blocks: 45.88.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 09:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:d4:2d:3c:87:ab:a4:b1:e5:7f:96:29:41:24:34:83:3b:ff:73:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 3 09:17:56 2024 GMT
Not After : Oct 2 09:22:56 2025 GMT
Subject: CN=68E1BFB9A91F6F884456FFFEFDFD7DB9E1CCFDA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:eb:e2:e0:59:f0:2d:ee:7a:9a:4c:00:d0:ae:
02:a5:18:7c:89:40:5f:8b:20:70:ec:4d:fa:08:dc:
57:e6:6b:ad:46:80:2c:79:5a:60:01:3b:e8:d8:80:
35:47:cf:68:db:40:e6:69:5b:0e:3c:85:0a:aa:a4:
83:21:82:ea:95:95:7e:87:67:fc:a3:f0:d9:32:ab:
42:12:f2:46:7e:bb:d2:d2:9c:7b:c3:f4:d4:00:19:
90:b7:f4:71:5e:a7:ab:e8:ff:aa:e9:cb:ee:8f:8e:
51:3c:57:47:2a:31:a3:6c:6f:2a:f7:81:25:42:b5:
71:f6:41:4e:9c:b5:f5:76:1f:53:0a:87:d8:e6:08:
75:17:2e:f5:0b:06:2e:88:da:79:57:6f:6a:01:9b:
26:34:4e:30:ec:21:01:52:8e:ab:e8:a6:8e:e9:81:
0a:1c:f9:ae:d4:c7:96:88:ba:01:12:e5:f6:66:d3:
30:c4:60:a1:3a:8b:c9:c8:20:b8:74:fa:01:b6:74:
50:4f:42:57:84:95:5b:99:bb:ff:59:93:40:49:83:
7a:5d:dd:92:6c:76:60:ac:03:34:64:29:e1:9f:fe:
b6:44:a4:c6:9e:d7:db:d9:e0:52:d8:e5:d9:d4:43:
64:ae:1b:3d:c4:ea:8a:68:ed:e6:7f:b3:f2:7c:99:
94:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E1:BF:B9:A9:1F:6F:88:44:56:FF:FE:FD:FD:7D:B9:E1:CC:FD:A9
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e38382e31302e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.10.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f6:66:96:bf:7d:33:cd:4a:1c:2d:11:70:dc:f8:d5:d3:95:
56:32:57:55:e3:fa:80:1f:be:16:07:90:1e:69:48:4b:02:64:
9e:19:b4:9b:9f:0b:97:10:18:73:55:d5:51:f3:58:67:6e:2b:
0e:f4:52:68:3e:39:1a:55:7c:37:77:5b:92:64:30:fc:bb:45:
4d:03:75:0b:73:3a:8a:a9:86:55:86:5d:d6:38:7f:9c:72:71:
68:79:3b:05:30:33:a8:b2:9d:4e:09:af:02:0a:ad:00:8b:ce:
85:06:75:7b:05:db:a9:2e:ae:75:05:5b:d4:ea:d1:db:9c:b7:
5f:34:a8:b4:33:55:86:1a:a4:2c:fd:60:ab:c3:cf:0c:70:bd:
87:eb:b0:89:4e:86:e5:cf:79:ea:1f:1b:39:fc:be:2b:b0:70:
da:4f:77:4f:b3:cc:c9:60:eb:19:2a:8c:dd:f9:50:a7:cd:3a:
49:aa:b4:65:99:7e:9b:26:4f:72:66:ef:34:33:a9:61:9e:d1:
c2:4f:cb:e7:6c:5f:86:96:e5:86:43:43:c0:5e:67:bf:a4:80:
a0:44:9f:bf:fb:ba:5b:e6:21:44:e7:42:8a:a4:5d:4c:d2:7b:
c0:64:a3:0e:ed:50:19:7f:19:2d:fd:3e:7e:64:78:a9:5f:a7:
2a:d4:44:f4
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUM9QtPIerpLHlf5YpQSQ0gzv/c/QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl
OTczMjY2ZDAeFw0yNDEwMDMwOTE3NTZaFw0yNTEwMDIwOTIyNTZaMDMxMTAvBgNV
BAMTKDY4RTFCRkI5QTkxRjZGODg0NDU2RkZGRUZERkQ3REI5RTFDQ0ZEQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS6+LgWfAt7nqaTADQrgKlGHyJ
QF+LIHDsTfoI3Ffma61GgCx5WmABO+jYgDVHz2jbQOZpWw48hQqqpIMhguqVlX6H
Z/yj8Nkyq0IS8kZ+u9LSnHvD9NQAGZC39HFep6vo/6rpy+6PjlE8V0cqMaNsbyr3
gSVCtXH2QU6ctfV2H1MKh9jmCHUXLvULBi6I2nlXb2oBmyY0TjDsIQFSjqvopo7p
gQoc+a7Ux5aIugES5fZm0zDEYKE6i8nIILh0+gG2dFBPQleElVuZu/9Zk0BJg3pd
3ZJsdmCsAzRkKeGf/rZEpMae19vZ4FLY5dnUQ2SuGz3E6opo7eZ/s/J8mZQpAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUaOG/uakfb4hEVv/+/f19ueHM/akwHwYDVR0j
BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4
MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s
ekptMC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt
YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzgzODJlMzEzMDJl
MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtWAow
DQYJKoZIhvcNAQELBQADggEBAH32Zpa/fTPNShwtEXDc+NXTlVYyV1Xj+oAfvhYH
kB5pSEsCZJ4ZtJufC5cQGHNV1VHzWGduKw70Umg+ORpVfDd3W5JkMPy7RU0DdQtz
OoqphlWGXdY4f5xycWh5OwUwM6iynU4JrwIKrQCLzoUGdXsF26kurnUFW9Tq0duc
t180qLQzVYYapCz9YKvDzwxwvYfrsIlOhuXPeeofGzn8viuwcNpPd0+zzMlg6xkq
jN35UKfNOkmqtGWZfpsmT3Jm7zQzqWGe0cJPy+dsX4aW5YZDQ8BeZ7+kgKBEn7/7
ulvmIUTnQoqkXUzSe8Bkow7tUBl/GS39Pn5keKlfpyrURPQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:46:16 2025 by rpki-client