Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e20383334.roa
File: 34352e3133322e3231362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: +2A/kHdI963noOVXwUj7HoNMv+pQtSd5bTz4sq8Q88w=
Subject key identifier: C2:B1:64:3D:6C:FA:C1:12:47:E3:BB:F0:45:B0:A7:C4:7C:C8:09:67
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 64543A333B249A75AE4D626320753353D621A516
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e20383334.roa
Signing time: Fri 01 Nov 2024 00:02:03 +0000
ROA not before: Thu 31 Oct 2024 23:57:03 +0000
ROA not after: Fri 31 Oct 2025 00:02:03 +0000
asID: 834
IP address blocks: 45.132.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 19:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:54:3a:33:3b:24:9a:75:ae:4d:62:63:20:75:33:53:d6:21:a5:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Oct 31 23:57:03 2024 GMT
Not After : Oct 31 00:02:03 2025 GMT
Subject: CN=C2B1643D6CFAC11247E3BBF045B0A7C47CC80967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:52:a8:f8:46:c0:bb:c0:e5:be:a9:55:14:b9:
71:23:ba:80:6d:db:ff:b1:a0:f8:27:81:10:df:d0:
2f:55:8b:5b:f7:46:72:f1:20:a8:d4:0b:75:fe:d0:
50:6c:60:45:27:57:67:64:71:9c:07:0d:4f:67:13:
a5:31:7f:a5:f5:7a:0c:47:70:83:c2:37:49:70:c6:
23:39:36:83:21:3e:69:48:d2:0c:45:ce:ef:13:9b:
b1:80:61:22:36:9b:35:a5:42:82:95:7e:b4:0c:69:
5a:41:d1:12:54:86:7b:d6:42:bb:dd:db:ec:d5:12:
11:1d:3b:00:37:14:b0:db:b3:ca:e2:eb:cd:45:d8:
18:34:e3:60:c2:07:41:5e:63:e8:1f:ad:d2:76:9d:
bb:23:13:a1:ba:37:08:26:8a:4d:20:9f:6d:86:b9:
60:02:d1:40:df:3d:f4:3d:33:83:71:46:21:23:0a:
3f:24:de:2e:85:59:9a:b1:5d:49:42:b7:92:56:f1:
fb:c2:8b:fe:7c:25:e0:55:ec:5d:1a:f4:d7:4f:25:
c6:83:19:ac:90:50:15:29:dc:60:1d:5c:20:7d:98:
d4:7b:23:fc:d2:48:22:eb:f8:14:44:b2:32:43:b9:
d8:ea:c9:2c:86:0c:59:62:ba:57:94:f5:18:f2:51:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B1:64:3D:6C:FA:C1:12:47:E3:BB:F0:45:B0:A7:C4:7C:C8:09:67
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.216.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:38:0b:59:4b:5f:ef:9e:2b:55:ff:f5:a5:62:8d:cf:f2:83:
f2:f3:45:6c:c4:7c:e7:51:d5:05:9a:af:3e:3c:c5:e1:02:c6:
59:26:98:32:92:ac:f4:e6:b4:7a:69:95:65:02:8a:8c:eb:29:
38:3c:6e:01:04:59:49:c2:2a:0b:a5:47:4d:62:07:96:18:24:
8c:5e:2f:ef:17:b4:38:fd:54:27:04:56:3a:77:08:4d:86:71:
fc:96:c3:aa:eb:2b:51:0d:c3:53:95:a5:17:43:1d:c6:52:3f:
16:7c:03:e8:3b:6f:1c:de:bb:84:b0:4f:d5:25:82:fb:56:42:
b7:78:28:ce:ac:d6:f5:ee:df:3d:15:59:88:14:24:8c:be:54:
17:5a:16:d9:61:33:92:be:dd:9a:ab:ac:c5:4d:93:2c:bb:4c:
d2:2b:17:5a:cc:ab:cc:6b:43:74:c8:1e:49:5f:8c:66:ff:b3:
b6:b5:6d:99:85:e9:7a:11:e9:62:f7:bf:0f:7e:68:01:a6:d3:
6a:a8:4a:c3:22:03:7d:64:6f:6b:0c:83:7e:4c:d3:7b:13:e3:
14:e1:ae:43:0b:d5:ac:ba:4c:a0:21:04:2b:fe:d7:ec:f9:6e:
94:fe:44:41:7a:b8:95:01:1c:ee:d0:f9:ed:08:f0:6d:af:23:
b4:46:95:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 20:49:42 2024 by rpki-client on console-fra.rpki-client.org