Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2039303837.roa
File: 34352e3132382e31342e302f32332d3234203d3e2039303837.roa (raw, json)
Hash identifier: nFN6GxdOPGrNKCTNdyWnH0k1nM/jC+jgRiYaznK8hEI=
Subject key identifier: ED:91:72:2C:F7:00:BC:FF:D7:3F:CA:87:CB:C5:FA:B7:72:D4:3D:2B
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 4A22B6B422CDEDAD36DF86FC8BD99B89825D3EB8
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2039303837.roa
Signing time: Wed 28 Aug 2024 13:05:19 +0000
ROA not before: Wed 28 Aug 2024 13:00:19 +0000
ROA not after: Wed 27 Aug 2025 13:05:19 +0000
asID: 9087
IP address blocks: 45.128.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 00:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:22:b6:b4:22:cd:ed:ad:36:df:86:fc:8b:d9:9b:89:82:5d:3e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 28 13:00:19 2024 GMT
Not After : Aug 27 13:05:19 2025 GMT
Subject: CN=ED91722CF700BCFFD73FCA87CBC5FAB772D43D2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:f2:20:e0:93:1d:7e:ba:be:0a:19:2d:c6:
5a:e6:44:43:22:54:1a:77:4d:9e:37:e1:50:fc:6e:
c7:b5:af:fe:89:64:58:ee:ea:6a:b8:62:7b:c6:6f:
db:7a:e8:4f:72:2c:c8:f0:43:ce:bf:41:6e:dc:3e:
79:82:10:5e:9f:15:41:e5:48:3c:56:ab:76:eb:e4:
ee:1d:b2:63:5d:d3:20:4a:e8:6b:f4:d7:89:08:44:
ee:c2:f3:38:ac:d2:41:f3:14:8f:73:4b:3a:34:a8:
2f:5e:0a:44:67:dc:fd:ec:4f:1d:9a:98:aa:d6:e1:
b4:7d:e5:ff:9b:9c:a3:19:1a:3d:3d:7c:0d:5e:3d:
26:23:2c:39:52:45:e0:45:c5:1a:a2:9f:6c:8c:0e:
37:93:2b:ec:9b:e5:b3:7e:bb:8f:de:54:a3:e3:3d:
f7:98:13:4d:16:1b:9a:29:02:39:9f:7c:e6:bd:10:
c2:52:a0:ec:35:5c:65:03:81:4a:eb:94:4d:fe:6d:
4c:76:fa:7d:44:fc:25:c3:05:2a:3d:bb:e7:3f:64:
0d:41:bd:d5:a6:85:03:7a:dc:0a:b0:f8:54:66:c8:
40:fb:ac:40:eb:69:64:39:23:2e:62:ac:52:08:89:
c5:c4:fb:6b:80:b8:0b:4e:73:a9:3f:79:aa:ca:bb:
3f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:91:72:2C:F7:00:BC:FF:D7:3F:CA:87:CB:C5:FA:B7:72:D4:3D:2B
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31342e302f32332d3234203d3e2039303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.14.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:88:b4:29:e7:87:25:96:99:03:49:9e:b3:78:0d:e4:fd:2c:
d1:bf:8b:0c:ee:13:af:96:44:26:8c:83:d2:1f:1d:8b:94:88:
ac:ba:6b:10:f8:d2:73:99:c2:6b:b5:b7:f2:e9:a5:bd:76:df:
a0:30:47:83:fa:cc:e9:3a:00:d8:e8:cc:78:01:08:f1:e5:ee:
ea:f2:86:bb:b1:61:dd:88:67:2c:22:70:3a:83:46:ee:94:9b:
2d:2f:2c:a4:f2:40:a3:78:5e:68:c9:92:0e:15:64:83:dd:8a:
5c:1d:42:5b:b2:30:af:f0:74:a3:82:bf:c0:17:3f:fd:71:35:
49:be:17:bd:da:31:fd:b2:d7:b2:f7:4a:a4:f8:3e:a5:d5:58:
6c:3d:fd:e5:a0:96:43:2c:78:43:0a:be:4d:3a:4d:9c:8e:41:
f8:66:24:b2:c8:f4:4b:27:1c:85:a4:10:87:d9:41:d5:3a:ce:
eb:af:d3:10:d5:04:c8:f1:ca:f7:4f:60:7c:e8:8a:ad:be:93:
6c:ea:7a:68:71:f2:66:71:8b:1c:3e:99:b8:9d:c4:5f:4b:73:
74:e6:bb:85:1f:ef:3c:4d:be:26:e2:53:b3:46:65:b2:55:2b:
1a:96:5b:34:f9:92:00:5a:91:53:eb:5e:bf:1e:83:1d:6f:c3:
76:49:62:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 03:31:15 2024 by rpki-client on console-ams.rpki-client.org