Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38312e302f32342d3234203d3e20383334.roa
File: 34352e31322e38312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: /0B/ADz0gsK4PgwYqfkr+EghIQl5wb4KeACEd+7WVkI=
Subject key identifier: 8A:BB:97:0A:5C:2D:F8:5F:D0:07:0A:64:80:5E:CA:DD:0F:31:53:A4
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 333B8A005AF8367EC019221DC997D262B7BE532A
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38312e302f32342d3234203d3e20383334.roa
Signing time: Sat 06 Jan 2024 00:00:06 +0000
ROA not before: Fri 05 Jan 2024 23:55:06 +0000
ROA not after: Sat 04 Jan 2025 00:00:06 +0000
asID: 834
IP address blocks: 45.12.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 18:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:3b:8a:00:5a:f8:36:7e:c0:19:22:1d:c9:97:d2:62:b7:be:53:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 5 23:55:06 2024 GMT
Not After : Jan 4 00:00:06 2025 GMT
Subject: CN=8ABB970A5C2DF85FD0070A64805ECADD0F3153A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:48:5d:17:4f:e3:33:c0:9b:ed:bb:60:5b:e0:
25:84:cc:75:fb:c1:aa:c3:bb:08:c6:f1:48:d6:c7:
50:2c:4a:48:29:bb:93:c5:6c:ea:aa:fe:8e:81:15:
c2:71:b1:29:e2:64:a8:fe:94:21:c8:4d:85:e8:4b:
a9:0f:75:fc:5c:c0:cb:fd:97:5c:1d:86:68:39:dd:
39:06:14:d4:09:f9:cf:5b:e3:25:89:cb:49:ee:b1:
a2:8e:94:0f:88:39:e5:22:d4:e0:65:e1:7b:ed:2d:
f7:6e:b8:f0:0f:d6:19:7d:2a:3c:e0:27:79:fa:a5:
53:bd:eb:a1:2f:63:42:a7:ed:38:d1:11:f9:8d:d2:
fd:cc:52:5c:21:bd:62:bf:b2:2a:1e:86:f9:fc:f1:
3e:94:8a:90:f6:6f:44:5f:2d:a5:bb:ab:87:d9:13:
4e:49:0e:2f:68:50:4b:c2:54:58:81:23:7f:32:bf:
11:21:a0:35:f1:d2:55:ac:41:6c:c6:1c:67:74:89:
11:2e:a8:66:da:6e:1f:bc:19:cd:69:d9:79:3f:75:
51:18:69:cf:dd:dd:1f:5e:d4:1d:a9:da:86:38:2a:
60:20:a5:73:ff:a8:7b:af:ec:c0:89:f0:54:82:a3:
36:6c:44:a8:98:b4:d3:c6:a2:a3:7f:12:90:4a:4f:
c1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BB:97:0A:5C:2D:F8:5F:D0:07:0A:64:80:5E:CA:DD:0F:31:53:A4
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.81.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:e7:23:cd:dd:6b:c6:c9:83:53:ed:32:e3:12:c5:68:7e:45:
0c:61:33:af:b0:be:28:a0:73:b5:95:1a:ab:08:ee:c9:f8:7d:
a9:14:54:6b:94:9a:cf:d3:6c:ad:47:d2:c6:c1:c3:44:cb:ac:
98:2b:8d:ed:17:50:6f:13:22:f9:be:62:d4:4e:02:dc:18:62:
34:be:4d:5f:d2:54:e0:8d:1e:3e:34:48:0e:7a:36:d6:3a:14:
03:57:ca:ec:b3:f2:e9:96:60:1d:dc:db:0d:02:c4:48:ac:55:
e6:29:e5:bb:da:2c:f6:c4:97:ee:33:9c:04:89:4e:5b:e8:dc:
6d:08:3b:65:b6:97:71:be:8a:3e:47:98:b3:f8:5a:4d:9f:76:
f7:39:6a:58:05:50:ec:36:1a:67:d1:5c:18:16:91:a3:e7:b7:
6c:a4:75:55:84:88:72:c0:6c:ea:db:ef:50:10:62:7e:24:05:
74:8a:58:65:7a:81:32:21:8b:5b:da:eb:2a:66:77:d1:94:2b:
d4:17:bf:84:8d:6b:fa:aa:69:18:d0:94:22:53:50:b3:e4:c2:
a6:cb:a1:83:62:ea:ba:a8:8d:0b:89:ca:1f:1e:2f:ac:97:1e:
bf:0c:4c:77:94:65:44:70:54:16:84:1a:c2:5e:c6:d0:40:af:
6c:dc:64:be
-----BEGIN CERTIFICATE-----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Generated at Sun Jan 7 22:18:00 2024 by rpki-client on console-ams.rpki-client.org