Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2033333230.roa
File: 34352e3132382e31342e302f32332d3234203d3e2033333230.roa (raw, json)
Hash identifier: l2Xc2bzYPkF7GnNuHiBK0ONoEObMKUn+f55T15Uxxy0=
Subject key identifier: 04:F4:23:C7:3D:94:03:CD:2E:C8:90:F6:5D:74:B3:C0:97:0F:A2:6D
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 762F502AA51B789698815C5431165A643E674D98
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2033333230.roa
Signing time: Wed 28 Aug 2024 13:05:19 +0000
ROA not before: Wed 28 Aug 2024 13:00:19 +0000
ROA not after: Wed 27 Aug 2025 13:05:19 +0000
asID: 3320
IP address blocks: 45.128.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 00:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:2f:50:2a:a5:1b:78:96:98:81:5c:54:31:16:5a:64:3e:67:4d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 28 13:00:19 2024 GMT
Not After : Aug 27 13:05:19 2025 GMT
Subject: CN=04F423C73D9403CD2EC890F65D74B3C0970FA26D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:63:90:09:76:56:bb:6b:93:3a:94:46:6b:96:
19:ea:38:af:0d:eb:1a:85:ce:d0:a4:5c:5b:5e:c8:
9e:5a:f2:68:3a:31:1a:4e:b8:a5:04:8b:08:6a:e1:
2a:a1:ae:0c:d4:80:ca:96:93:ea:cd:68:6b:4b:d8:
04:a1:da:cc:68:7b:25:25:0f:a2:a1:f6:06:68:87:
78:c2:78:bf:b6:b5:d8:93:80:ec:26:81:f6:bb:9c:
c0:55:3d:82:27:a4:e8:34:d0:bd:74:a4:5b:25:70:
5c:69:b0:e0:df:9a:b9:34:28:61:10:9f:e3:75:30:
7a:31:63:5b:37:93:61:42:b2:30:74:45:fc:d6:eb:
b8:b3:01:d3:7a:50:71:1b:c0:cd:ae:21:40:e0:c6:
5f:3c:61:74:74:0e:0c:fe:cc:78:36:db:4a:ef:06:
bf:75:93:46:b1:14:e9:26:e0:bc:de:3c:42:c7:b3:
d2:09:a1:4c:32:e2:bb:29:32:77:4a:76:af:48:e4:
f7:e7:2e:72:77:04:31:79:be:79:24:2b:0c:65:37:
c3:a3:b5:ce:ce:1c:63:e6:3a:fe:d3:f3:06:bf:22:
4c:f0:01:6c:07:bd:3a:1c:80:98:a7:21:d3:2c:1c:
93:f4:3d:e1:73:6b:9c:fc:f5:7d:a1:e8:b0:95:c0:
0e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F4:23:C7:3D:94:03:CD:2E:C8:90:F6:5D:74:B3:C0:97:0F:A2:6D
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2033333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.14.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:fc:61:64:12:61:a6:37:76:25:13:b3:aa:69:63:e1:6d:bd:
47:a9:75:74:00:0b:cd:93:00:0a:1c:79:6b:ab:94:54:57:12:
7b:df:2f:27:d0:cb:41:df:90:f5:6e:d6:e4:15:4a:9d:8b:17:
c1:ad:3e:85:65:8c:a8:16:7b:ad:be:13:9d:a4:af:a0:fd:24:
5e:e3:a7:e4:a8:be:d9:e9:db:b5:aa:60:1f:78:d9:b7:2c:b6:
c0:d0:2f:97:aa:88:b5:b9:f8:35:23:3f:54:f8:b7:7a:e0:07:
36:af:a7:aa:05:39:c9:ce:4a:f3:ad:c3:27:0d:62:d0:42:29:
aa:ba:36:05:9f:25:d5:dd:95:1a:3b:5e:cb:37:73:a6:b6:fd:
03:1e:f4:37:5a:f5:f8:eb:65:cc:bd:cd:36:65:31:05:8e:35:
03:86:98:ba:cf:15:6f:49:a2:ac:25:66:eb:26:e9:10:e8:73:
ff:95:d4:d5:1f:db:08:22:1e:e0:a7:3a:46:f0:d0:bf:ef:d8:
83:1f:9d:ce:06:ba:64:5e:b2:a1:fd:97:c1:b3:06:89:63:6c:
29:79:e4:c1:0d:e1:82:b6:5c:19:b0:ec:bc:44:0e:97:ce:96:
41:73:e8:e3:1f:48:52:65:8e:34:6e:6e:13:df:de:8f:cc:98:
34:05:82:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 02:16:03 2024 by rpki-client on console-fra.rpki-client.org