Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134392e302f32342d3234203d3e203631313338.roa
File: 34352e38392e3134392e302f32342d3234203d3e203631313338.roa (raw, json)
Hash identifier: 8pknSA2gnY9V+4AHios2T+J8A4JGW+Pvyja5ud/MV/k=
Subject key identifier: E5:0E:2D:B2:76:29:F8:B2:25:EB:48:08:03:A7:81:94:28:20:AE:42
Certificate issuer: /CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Certificate serial: 1139A1142E37A74F3C74491E37FF70E0BEDD3000
Authority key identifier: BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134392e302f32342d3234203d3e203631313338.roa
Signing time: Mon 05 Jun 2023 15:35:58 +0000
ROA not before: Mon 05 Jun 2023 15:30:58 +0000
ROA not after: Mon 03 Jun 2024 15:35:58 +0000
asID: 61138
IP address blocks: 45.89.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:39:a1:14:2e:37:a7:4f:3c:74:49:1e:37:ff:70:e0:be:dd:30:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Validity
Not Before: Jun 5 15:30:58 2023 GMT
Not After : Jun 3 15:35:58 2024 GMT
Subject: CN=E50E2DB27629F8B225EB480803A781942820AE42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:63:90:bf:bc:af:d3:e9:c1:c8:58:f9:e2:b7:
31:4f:df:88:e5:4c:bc:e0:9a:86:dd:d5:12:13:c2:
2f:50:dc:2a:78:34:83:2d:72:a3:2b:55:f9:ad:b7:
00:e9:13:f9:aa:35:c0:b6:5b:40:b5:f4:5b:66:b9:
9c:f4:80:aa:cd:86:be:47:1b:cc:3b:8c:9c:90:61:
85:9c:3a:4e:1f:f4:5f:15:dd:eb:af:23:ba:3b:fe:
ca:72:37:bd:ea:07:79:9f:af:c9:ef:e8:f6:0a:66:
79:6f:47:97:c0:81:4a:56:c0:cc:38:1f:b1:40:71:
11:16:58:7c:55:8a:fc:4a:4d:8c:18:aa:62:e0:e5:
09:7b:b9:28:c8:97:ae:09:54:46:a4:9b:71:84:8a:
85:23:5e:c3:83:04:5b:9f:5a:02:80:4b:4a:bc:54:
6d:8c:ec:ea:fd:e2:41:aa:59:58:82:ff:3d:86:64:
7d:f0:09:b9:43:30:7a:0a:bd:41:23:2b:ae:bd:10:
7b:b4:30:82:68:e0:7e:dd:4e:64:3a:bc:64:6d:ec:
be:8c:a7:6e:39:38:8c:41:05:1d:01:9b:1a:ea:5f:
1f:1b:7a:e4:17:09:f3:45:5c:8a:f3:db:a3:25:a4:
79:db:f8:41:16:c2:f6:27:58:db:13:ec:35:22:0b:
c0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:0E:2D:B2:76:29:F8:B2:25:EB:48:08:03:A7:81:94:28:20:AE:42
X509v3 Authority Key Identifier:
keyid:BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/BCD46DBA34FE6620D72D9E7F576EF7A88A6C961A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134392e302f32342d3234203d3e203631313338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.149.0/24
Signature Algorithm: sha256WithRSAEncryption
62:09:5b:96:2b:a0:fc:9d:c9:7a:5c:7c:7d:a4:7b:83:f7:1b:
e0:49:9e:70:86:10:59:e1:c1:98:0e:db:0c:09:a4:02:75:9c:
39:59:f7:4f:a9:61:60:ae:ea:89:7d:62:d4:a8:99:52:08:2b:
90:82:9f:3c:50:73:e3:d3:59:fe:b5:75:3b:bf:7f:d6:00:a3:
77:72:7f:59:90:a3:35:8a:fb:ff:5f:c1:bb:9b:b2:80:a8:23:
39:29:da:ef:0e:29:6a:2e:43:a6:93:d2:b5:31:a4:c6:bf:3a:
d7:c7:01:3c:cb:bb:6e:01:8d:70:3f:0a:96:f5:e0:86:88:b9:
a5:e4:98:c8:60:ba:02:b1:83:87:e9:51:c0:9e:35:6a:d5:86:
b4:37:22:d6:fd:47:38:fe:0a:86:3d:e0:8a:44:97:9e:c7:7c:
78:7d:45:a8:75:9d:b0:90:0f:59:34:72:a8:9b:8e:b9:36:b6:
5e:c9:e7:49:d8:9c:8e:37:4d:c6:a3:f3:0f:67:0d:24:3b:2a:
e4:52:b2:de:21:b2:24:07:8d:67:23:e0:da:1e:8f:d4:9b:f0:
87:18:9d:57:50:b7:b0:15:39:32:7b:de:13:9b:0c:da:8e:d1:
7a:ce:3d:15:ba:ed:48:50:8b:a5:7c:42:13:22:d0:40:4f:dc:
80:d5:ba:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-fra.rpki-client.org