Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38312e302f32342d3234203d3e203130373533.roa
File: 34352e39352e38312e302f32342d3234203d3e203130373533.roa (raw, json)
Hash identifier: mi4g3Dm7329ZbN4MQ4XQY07lDU7Q/UIpKiWenhyJuaI=
Subject key identifier: 8F:DC:09:9D:E2:B0:79:12:D0:71:C0:01:BC:51:6F:16:AA:80:18:AD
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 3D306C04CF6D937666BE34630296A0CA133521DA
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38312e302f32342d3234203d3e203130373533.roa
Signing time: Wed 27 Nov 2024 11:43:11 +0000
ROA not before: Wed 27 Nov 2024 11:38:11 +0000
ROA not after: Wed 26 Nov 2025 11:43:11 +0000
asID: 10753
IP address blocks: 45.95.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Dec 2024 10:53:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:30:6c:04:cf:6d:93:76:66:be:34:63:02:96:a0:ca:13:35:21:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Nov 27 11:38:11 2024 GMT
Not After : Nov 26 11:43:11 2025 GMT
Subject: CN=8FDC099DE2B07912D071C001BC516F16AA8018AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:be:01:19:27:52:4f:d9:98:69:b0:fe:1a:0d:
eb:96:97:3a:7f:a0:ac:55:86:de:d8:8c:b6:ba:0b:
7e:6c:eb:8a:7e:fa:14:bb:1d:23:e8:8c:a4:02:4e:
c1:76:00:a5:4c:62:86:50:65:c8:c8:62:e6:d4:8d:
14:67:00:0f:18:e1:5b:71:28:c5:a3:6f:29:be:31:
64:46:eb:ed:44:02:93:48:5f:12:e7:ab:f5:23:31:
43:a2:5f:e3:f9:f5:57:5e:84:94:e3:fa:66:82:1e:
3e:39:cb:62:6f:cb:da:27:27:90:fc:3f:65:46:ca:
01:3a:16:97:8c:f0:4b:b5:ac:df:3a:f1:ac:45:bc:
57:f4:18:60:53:d3:fe:07:b4:12:f4:4b:39:4d:b3:
ae:d0:b1:c3:52:c2:32:f8:2f:98:80:50:62:d3:ed:
1b:fa:54:7a:8c:2b:7a:88:91:1a:88:b7:0e:a2:be:
6a:48:ae:c1:28:46:29:e4:37:4d:14:f2:eb:45:6a:
89:08:98:a7:7e:60:14:44:93:09:06:4b:73:23:b5:
86:75:14:a8:ba:94:5b:30:62:8f:05:a9:54:bf:19:
f0:ca:38:fe:bb:99:a0:2f:97:24:45:c6:0e:e6:9f:
bd:71:41:67:02:9d:5f:7f:f3:99:bb:49:88:a2:79:
f5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DC:09:9D:E2:B0:79:12:D0:71:C0:01:BC:51:6F:16:AA:80:18:AD
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/34352e39352e38312e302f32342d3234203d3e203130373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:26:87:f7:00:ff:4d:b5:98:81:15:22:87:05:46:a8:4d:03:
ae:55:c9:2e:40:9e:6b:64:45:7f:5c:e1:9f:0b:02:14:ea:87:
34:9e:45:36:da:b4:63:00:77:71:11:7d:d8:68:5f:b2:b3:fb:
3d:c2:83:28:a1:0d:21:c1:bc:ba:fd:4f:08:f7:7f:7d:ca:a5:
99:fc:b6:a5:3b:12:4a:5c:80:08:a5:09:ec:36:44:06:95:48:
93:ad:db:d3:4a:bc:32:b0:f6:b7:50:65:08:59:cc:05:70:ee:
16:76:a7:d5:8d:b4:99:04:0b:52:fb:a7:cc:63:4c:b2:f7:20:
18:1c:2a:0b:17:dc:40:ee:b8:e0:3a:6b:d7:4b:68:e9:1a:53:
fd:9e:cf:26:85:a9:47:1a:da:57:b1:42:f3:15:fe:e8:36:b5:
be:9e:4d:c2:0c:7c:2e:05:98:ee:9c:dc:12:5a:6a:1c:01:a5:
a0:21:50:5d:4d:4f:74:f5:6d:b6:8b:51:3a:ef:c0:c1:d9:a6:
e8:99:bc:75:4a:1d:b0:7d:66:af:bc:d2:88:88:f8:16:4b:23:
a9:aa:5e:76:02:07:24:9f:a9:cc:14:ee:c4:78:0e:c0:b4:9e:
25:6a:a0:ac:64:1d:25:5a:bc:4e:5d:0f:1e:4b:4f:34:59:ee:
03:c9:26:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:21:22 2025 by rpki-client