Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38332e302f32342d3234203d3e20383334.roa
File: 34352e31322e38332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: wrzsvHlMGP9WqNK9Y8pLKsN33jZE3NWmJwhy6iCLCkA=
Subject key identifier: 3C:34:DE:57:09:52:34:78:0D:E3:D7:5E:D1:E6:A6:C8:9F:1A:60:3B
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 360133A387C62AF00E1454FAC326E6D12C957DD0
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38332e302f32342d3234203d3e20383334.roa
Signing time: Sat 18 May 2024 00:02:46 +0000
ROA not before: Fri 17 May 2024 23:57:46 +0000
ROA not after: Sat 17 May 2025 00:02:46 +0000
asID: 834
IP address blocks: 45.12.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 08:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:01:33:a3:87:c6:2a:f0:0e:14:54:fa:c3:26:e6:d1:2c:95:7d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: May 17 23:57:46 2024 GMT
Not After : May 17 00:02:46 2025 GMT
Subject: CN=3C34DE57095234780DE3D75ED1E6A6C89F1A603B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:99:1c:5b:58:4d:bb:90:a5:94:43:d2:0a:
c4:05:78:ce:c6:1b:19:04:65:b4:8a:a9:cf:f1:ea:
de:55:c4:6c:4e:42:8a:96:cc:6b:23:ed:65:d3:72:
e5:ab:48:04:2b:64:34:24:34:cb:b6:b3:ed:5f:49:
81:44:26:21:07:ab:c8:eb:f6:d0:d2:72:9b:1f:03:
24:90:ba:df:27:74:0c:01:7b:a9:42:55:0c:13:3f:
bc:ef:3d:49:5c:0b:44:56:1f:f5:44:d2:90:e1:0c:
ff:ae:93:dd:73:96:57:38:74:11:5b:34:64:ee:e4:
e0:ea:4b:0b:a6:89:d7:eb:81:c8:0f:52:db:3d:a8:
77:4c:d4:63:8d:be:76:fa:4c:ae:3a:3e:3e:d0:9d:
22:78:8a:a1:90:77:5c:02:f2:9a:3d:75:4e:7f:23:
9e:c2:2d:4b:da:05:95:ca:2d:2c:39:c1:88:62:fe:
13:b4:b0:41:f0:98:a8:c4:c1:4f:0c:ba:4d:1f:22:
22:29:a5:96:46:10:32:1e:7e:e7:38:26:47:81:66:
46:e8:a6:08:65:c3:93:dc:7f:68:7a:e5:27:a9:86:
7d:17:79:65:f8:a7:5a:b6:e5:9d:9e:45:b7:f3:27:
f6:9c:8e:e8:61:53:b0:cd:e0:80:44:8b:dc:93:db:
c7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:34:DE:57:09:52:34:78:0D:E3:D7:5E:D1:E6:A6:C8:9F:1A:60:3B
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e31322e38332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.83.0/24
Signature Algorithm: sha256WithRSAEncryption
63:03:ff:4e:d6:33:04:a9:f1:14:fe:0b:91:05:57:ec:e3:84:
f8:b0:21:51:14:c6:d7:e5:37:f9:f6:56:2c:f7:11:b4:5e:a0:
87:59:df:23:a9:ab:53:c6:39:a3:0b:3f:42:78:ca:db:fe:2f:
bc:4c:f7:cf:59:ba:c3:25:85:23:a7:b5:b9:ca:37:f4:29:a0:
3d:c3:da:74:0b:82:94:4b:41:3d:e0:9d:ce:82:c0:96:3d:01:
db:d9:e2:33:8a:7e:91:f1:13:a3:b4:a0:e0:3b:8e:68:d4:6c:
6d:29:9c:da:98:98:33:46:7e:6e:c3:99:72:5c:2b:80:7b:6c:
83:59:c5:5a:59:7c:17:06:92:74:4e:b3:46:29:eb:b2:61:71:
f7:9b:f5:7e:38:5b:b7:ec:89:65:88:d3:8d:45:40:52:ee:ba:
22:48:45:6d:81:04:f8:73:ea:3e:cb:3a:b5:04:f7:e7:b9:53:
5a:9a:22:79:83:66:a5:33:e3:db:f8:d2:c4:68:76:7c:45:78:
df:48:0b:9e:34:16:5e:eb:36:aa:16:73:63:64:82:7b:1a:cc:
d7:a0:14:5a:40:81:13:90:b6:fb:48:06:ae:70:55:53:25:ae:
9f:0a:79:3d:0f:80:09:6b:1d:a3:2a:0b:f1:8e:98:5c:cd:a7:
12:ce:ae:ee
-----BEGIN CERTIFICATE-----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Generated at Sun May 19 09:37:30 2024 by rpki-client on console-ams.rpki-client.org