Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20313337343039.roa
File: 34352e39352e36362e302f32342d3234203d3e20313337343039.roa (raw, json)
Hash identifier: F9OtNS9cGC20iN+zFIfvNSv0LS1JEcUdbCeaJ4GOOek=
Subject key identifier: 51:0D:03:59:DB:29:38:A3:AC:E0:17:0A:4C:BB:B0:81:F0:A7:9F:A4
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 1CA440E75A02CDAEBA87CB54A0A2183E8163F33B
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20313337343039.roa
Signing time: Tue 20 Aug 2024 12:08:25 +0000
ROA not before: Tue 20 Aug 2024 12:03:25 +0000
ROA not after: Tue 19 Aug 2025 12:08:25 +0000
asID: 137409
IP address blocks: 45.95.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 03:56:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:a4:40:e7:5a:02:cd:ae:ba:87:cb:54:a0:a2:18:3e:81:63:f3:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Aug 20 12:03:25 2024 GMT
Not After : Aug 19 12:08:25 2025 GMT
Subject: CN=510D0359DB2938A3ACE0170A4CBBB081F0A79FA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:48:34:10:c4:e3:c8:d1:26:9f:b3:43:bd:05:
a3:9f:b7:5f:53:47:3d:df:a8:04:eb:ce:dd:4e:1d:
24:eb:91:c7:39:b7:01:c0:d2:c9:45:f1:3f:a6:27:
ac:d4:57:7f:6a:fa:55:ec:95:57:d0:7a:e7:98:2c:
bc:e8:ce:2b:0c:cf:13:c0:ba:84:b4:9d:f0:92:24:
42:85:34:f6:01:59:a6:df:2a:cc:88:d8:a0:f8:c2:
74:22:7f:6f:3a:06:4f:e7:00:f4:1b:35:42:4d:27:
c3:9f:5c:ed:ed:c6:44:fa:ae:19:fd:7b:f6:2c:29:
e8:8d:17:47:88:2e:76:1d:84:46:ec:c4:ee:4c:ba:
f2:2a:c3:f5:08:b1:b8:28:06:b6:ba:30:0d:6a:0a:
12:9d:94:8f:9f:82:f8:24:d9:7a:d8:a8:ad:88:7d:
85:ba:b2:48:2d:4c:94:ac:5f:9a:93:c4:39:d1:9a:
52:db:64:0e:fb:d6:74:18:34:49:2c:b4:c0:d1:ff:
7b:28:4d:fe:e8:a8:50:df:a4:ff:a3:63:a4:45:e3:
67:27:af:73:18:35:da:41:09:19:85:8f:c4:5a:a3:
8a:25:c2:3b:cf:a8:9d:0b:9d:ad:18:1b:82:69:89:
19:61:e3:22:88:e5:a0:db:c2:b5:1d:cf:8b:85:a7:
aa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0D:03:59:DB:29:38:A3:AC:E0:17:0A:4C:BB:B0:81:F0:A7:9F:A4
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e39352e36362e302f32342d3234203d3e20313337343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.66.0/24
Signature Algorithm: sha256WithRSAEncryption
28:66:3f:da:fc:01:9b:20:80:12:f7:0c:1d:77:a1:a1:c0:83:
af:3d:b5:e3:22:74:77:6f:14:ba:93:05:67:ee:89:34:05:0c:
58:b4:1c:5f:89:cd:fc:f0:0a:13:e5:61:ea:1d:a5:4b:38:22:
71:78:0e:08:8f:d2:7f:98:aa:2d:31:26:86:32:17:14:82:60:
ea:89:bd:6a:cc:9b:9d:35:60:dd:9f:c2:78:9a:a6:ae:90:c0:
ec:2f:0e:fb:5d:ec:5f:ab:be:c2:ce:c7:41:c7:20:41:78:28:
8d:d0:09:cd:28:22:ef:c1:40:ed:69:81:4d:fd:ca:ce:f2:af:
1a:40:3b:fc:75:96:a5:1a:fb:1d:b1:bf:eb:ad:58:1d:1f:ce:
b3:b2:dc:c7:bd:a7:cd:55:e0:37:ea:96:88:5d:b4:c1:f5:5b:
85:b6:ce:34:2a:56:08:3a:50:5a:e3:4a:2f:7b:85:e6:27:63:
b3:99:58:69:3f:4c:8e:50:54:b5:79:09:06:cc:98:02:42:57:
e0:e9:e6:1a:09:27:20:e9:86:bb:13:00:3b:40:64:2c:62:87:
2d:ca:f7:83:5d:fc:92:e0:ad:09:ea:f2:bd:3d:76:36:3c:85:
96:57:fe:79:76:64:71:94:8b:08:47:17:45:22:1a:9d:9a:2c:
a5:2a:24:0e
-----BEGIN CERTIFICATE-----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Generated at Thu Aug 22 06:46:01 2024 by rpki-client on console-fra.rpki-client.org