Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3134382e302f32342d3234203d3e203231383539.roa
File: 34352e38392e3134382e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: 3c0fxMn3W9gh82VNZavnktVGzB/Es0ax2pyEwWJKla0=
Subject key identifier: 58:98:A7:2A:C8:3B:BE:E8:DF:E4:93:0D:76:E2:08:13:0E:FB:42:22
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 5C05CBA9128DFE65D17E5E6141335AE4BD730945
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3134382e302f32342d3234203d3e203231383539.roa
Signing time: Mon 05 Aug 2024 15:39:06 +0000
ROA not before: Mon 05 Aug 2024 15:34:06 +0000
ROA not after: Mon 04 Aug 2025 15:39:06 +0000
asID: 21859
IP address blocks: 45.89.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 00:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:05:cb:a9:12:8d:fe:65:d1:7e:5e:61:41:33:5a:e4:bd:73:09:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 5 15:34:06 2024 GMT
Not After : Aug 4 15:39:06 2025 GMT
Subject: CN=5898A72AC83BBEE8DFE4930D76E208130EFB4222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d8:6d:37:01:25:25:05:67:84:b5:9c:0a:6b:
60:ea:d2:e4:4f:d5:ca:d2:12:97:d3:65:db:c5:a7:
86:99:f0:17:1a:b5:6f:4a:46:b0:44:0c:03:68:07:
64:e4:cf:ce:37:cf:83:82:1d:07:14:4a:d7:88:c9:
5b:96:92:64:63:44:6f:31:d3:1b:d9:9b:08:e9:a4:
1a:56:02:9f:f9:08:7c:63:56:6e:28:b9:80:1f:8e:
82:b2:e0:1d:6d:3d:56:6d:ef:51:98:72:3f:5a:d8:
85:fc:93:ac:76:c7:08:28:d0:29:16:7c:92:bc:e8:
de:97:16:6e:32:c9:6a:04:23:b5:7e:97:a4:d8:10:
e4:cd:4e:46:23:75:d5:02:8f:fe:ef:57:48:70:a9:
af:26:ad:1f:af:c6:b9:fa:7c:a8:2f:48:79:59:e8:
39:b4:43:a1:72:43:03:c4:93:e6:4f:25:de:5b:ca:
1c:2a:34:06:2b:f3:d2:86:01:84:0f:8a:1c:5c:d6:
0b:45:f9:54:fa:bf:f1:5e:22:e0:65:40:3c:78:3d:
fe:5e:f9:a4:6b:73:78:9d:2a:1b:59:a8:95:68:cc:
b9:28:6f:dc:7a:b7:09:a3:4e:f5:b4:5e:4b:72:2d:
9f:8a:69:79:fd:47:5c:16:00:92:35:d8:d4:84:a4:
ff:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:98:A7:2A:C8:3B:BE:E8:DF:E4:93:0D:76:E2:08:13:0E:FB:42:22
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3134382e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.148.0/24
Signature Algorithm: sha256WithRSAEncryption
25:66:aa:d7:b9:1d:1d:b6:b6:d6:f0:16:ec:0c:c2:63:55:10:
71:4e:82:b9:c5:5c:7c:9e:de:a4:3b:38:68:13:31:d0:6c:d0:
d6:f3:28:96:79:a8:9d:0b:e6:57:26:36:4c:d8:b4:80:b3:11:
5b:b2:a7:00:aa:bb:57:25:c6:af:83:c1:11:55:7b:c1:78:b3:
bd:b9:57:1f:30:65:ad:68:45:2a:26:23:5e:b2:ba:46:ba:97:
c0:b6:21:72:ea:d3:35:1e:06:43:74:89:0b:44:e7:29:7f:ae:
2a:51:4b:7b:a1:44:37:57:8a:76:93:b3:c3:f0:3c:ea:3d:09:
bd:08:5a:0c:55:28:09:f5:22:0b:32:4e:62:86:78:2b:26:b2:
5a:5c:a8:29:a8:69:58:f4:c4:16:b3:e4:2f:d9:c1:c8:8f:9c:
9e:24:f6:fd:7c:14:9f:cb:d4:ec:ef:9e:1d:0b:c1:ae:5b:92:
e2:58:65:47:41:74:c9:d6:f3:36:21:01:b8:c5:e4:31:ae:7d:
f0:e6:5d:ca:d4:e5:b9:35:bd:e9:ce:49:0c:a3:05:4c:99:d7:
af:a9:af:7e:f4:23:b8:86:28:fc:f7:81:58:f2:92:f8:97:00:
57:dc:c3:18:c0:84:d1:17:20:78:ac:be:fa:62:38:29:54:5d:
3c:ae:ed:a4
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUXAXLqRKN/mXRfl5hQTNa5L1zCUUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODMwZTA2NDE5ZmM0NmEyODAyZjZmMDNiNzEzNjhhYzdi
YWFmNjRjZTAeFw0yNDA4MDUxNTM0MDZaFw0yNTA4MDQxNTM5MDZaMDMxMTAvBgNV
BAMTKDU4OThBNzJBQzgzQkJFRThERkU0OTMwRDc2RTIwODEzMEVGQjQyMjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC22G03ASUlBWeEtZwKa2Dq0uRP
1crSEpfTZdvFp4aZ8BcatW9KRrBEDANoB2Tkz843z4OCHQcUSteIyVuWkmRjRG8x
0xvZmwjppBpWAp/5CHxjVm4ouYAfjoKy4B1tPVZt71GYcj9a2IX8k6x2xwgo0CkW
fJK86N6XFm4yyWoEI7V+l6TYEOTNTkYjddUCj/7vV0hwqa8mrR+vxrn6fKgvSHlZ
6Dm0Q6FyQwPEk+ZPJd5byhwqNAYr89KGAYQPihxc1gtF+VT6v/FeIuBlQDx4Pf5e
+aRrc3idKhtZqJVozLkob9x6twmjTvW0XktyLZ+KaXn9R1wWAJI12NSEpP/nAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUWJinKsg7vujf5JMNduIIEw77QiIwHwYDVR0j
BBgwFoAUgw4GQZ/EaigC9vA7cTaKx7qvZM4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQtYmE2Ny00OTc5LThkMTItMGVkNDc0OGZj
ODZlLzAvODMwRTA2NDE5RkM0NkEyODAyRjZGMDNCNzEzNjhBQzdCQUFGNjRDRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2d3NEdRWl9FYWlnQzl2QTdjVGFLeDdx
dlpNNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQt
YmE2Ny00OTc5LThkMTItMGVkNDc0OGZjODZlLzAvMzQzNTJlMzgzOTJlMzEzNDM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM4MzUzOS5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1Z
lDANBgkqhkiG9w0BAQsFAAOCAQEAJWaq17kdHba21vAW7AzCY1UQcU6CucVcfJ7e
pDs4aBMx0GzQ1vMolnmonQvmVyY2TNi0gLMRW7KnAKq7VyXGr4PBEVV7wXizvblX
HzBlrWhFKiYjXrK6RrqXwLYhcurTNR4GQ3SJC0TnKX+uKlFLe6FEN1eKdpOzw/A8
6j0JvQhaDFUoCfUiCzJOYoZ4KyayWlyoKahpWPTEFrPkL9nByI+cniT2/XwUn8vU
7O+eHQvBrluS4lhlR0F0ydbzNiEBuMXkMa598OZdytTluTW96c5JDKMFTJnXr6mv
fvQjuIYo/PeBWPKS+JcAV9zDGMCE0RcgeKy++mI4KVRdPK7tpA==
-----END CERTIFICATE-----
Generated at Thu Sep 5 01:33:20 2024 by rpki-client on console-fra.rpki-client.org