Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS34872.roa
File: AS34872.roa (raw, json)
Hash identifier: R6OWFRdaXPITWEk1dOZReijsvHvk0BFDFElUMl+EKqQ=
Subject key identifier: 34:BE:78:07:DE:E7:FC:EE:1D:A6:94:A0:4D:D8:BB:F7:73:C7:74:82
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 7B99A7D1EA3EBC03BEE5DCAEC7FA00FD4261BD81
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS34872.roa
Signing time: Sat 13 Apr 2024 19:30:15 +0000
ROA not before: Sat 13 Apr 2024 19:25:15 +0000
ROA not after: Sat 12 Apr 2025 19:30:15 +0000
asID: 34872
IP address blocks: 91.199.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 09:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:99:a7:d1:ea:3e:bc:03:be:e5:dc:ae:c7:fa:00:fd:42:61:bd:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Apr 13 19:25:15 2024 GMT
Not After : Apr 12 19:30:15 2025 GMT
Subject: CN=34BE7807DEE7FCEE1DA694A04DD8BBF773C77482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:22:a2:c4:a2:bc:df:d7:7a:43:29:e1:84:bb:
c5:44:7b:56:e9:4d:fb:cf:44:1f:48:70:b5:a5:b7:
50:f3:e3:d8:0f:ac:2c:36:ce:f2:5c:a8:93:9c:7d:
f3:85:af:ce:e2:ab:da:14:72:74:5b:fb:db:a7:17:
77:2e:37:d5:ae:aa:9a:e0:0f:c8:05:bf:87:95:66:
9b:1c:d6:1b:16:33:92:f3:0b:ea:91:8c:aa:22:90:
ef:73:cd:70:5d:ce:ef:9b:03:c0:ef:be:ea:74:86:
d2:6d:9b:45:3e:8c:e8:9f:1b:9b:78:3d:06:c3:9a:
f1:c5:26:71:a6:40:3a:47:ab:cb:0b:9f:ea:b2:fa:
d5:ec:10:f2:7c:59:0a:af:7b:d2:c5:d7:a8:af:e1:
07:50:ba:e0:30:c8:35:a9:06:d3:be:de:e5:ec:31:
f6:17:06:ad:c7:d7:5f:33:95:22:2c:14:a7:76:78:
75:2b:67:ea:42:2e:3e:89:33:55:af:c3:af:83:12:
51:ca:d1:2e:af:25:e8:d5:1d:b2:da:9a:6f:89:4d:
36:88:99:a4:82:6f:82:a9:96:30:72:9e:a5:12:3a:
7a:56:cf:6e:0a:06:26:ac:32:ae:fc:10:a6:33:0f:
cc:04:42:67:a2:49:79:b7:e1:19:ff:ff:35:3d:cd:
39:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BE:78:07:DE:E7:FC:EE:1D:A6:94:A0:4D:D8:BB:F7:73:C7:74:82
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS34872.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
42:81:ee:66:67:da:f2:09:2a:f0:6d:d0:79:0e:dd:03:9e:8d:
ad:d7:bf:94:2e:e7:35:1d:11:76:70:a9:01:1c:ca:a2:60:25:
94:ea:ad:2e:23:bc:20:30:cd:a4:11:03:68:1e:d5:cb:c0:b9:
a2:2c:5e:6c:51:f4:2d:22:3f:9d:07:ec:e7:73:91:c7:22:dc:
3e:ed:ca:0d:1a:90:d2:ae:3b:e2:89:01:5e:91:40:2b:6b:86:
56:db:c4:fb:e5:35:ad:cc:c5:d7:cf:c1:60:ad:26:a8:26:59:
8f:29:ec:56:35:41:f7:48:84:b2:f8:e2:da:b1:96:0f:02:5a:
01:39:61:d0:77:0e:73:10:fd:bc:2a:4e:40:9c:a8:3b:90:6c:
0f:b0:60:75:6b:b1:2c:9d:8e:9c:bf:1d:95:c7:d7:db:90:a5:
30:31:37:ac:2e:dd:65:23:1b:90:7b:b0:3f:0c:92:b0:b1:8c:
28:55:6d:69:9b:ba:d9:89:e9:68:51:c0:5c:53:35:51:19:ce:
39:fb:84:6e:dc:31:00:2c:3d:f7:f4:52:51:6e:02:a1:dd:c8:
d4:de:c6:29:36:f4:dd:b7:33:54:cf:b3:2d:f5:ed:ad:34:87:
fd:93:70:37:d8:f1:f3:de:a1:75:5b:03:eb:72:13:15:b7:92:
0b:6f:66:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:03:08 2025 by rpki-client