Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e203434343836.roa
File: 34352e3133372e39362e302f32342d3234203d3e203434343836.roa (raw, json)
Hash identifier: 8g06reTZIuqfstR8eNmmSNb1qjs9RDyo1Ncp8vxtMvM=
Subject key identifier: 2A:3E:20:9E:4F:F0:BB:F7:EB:58:D5:19:90:A0:51:AA:19:7E:CB:0D
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 49765C953783842E6B088629E9B7DA92CE5A5DAE
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e203434343836.roa
Signing time: Wed 22 Mar 2023 18:11:50 +0000
ROA not before: Wed 22 Mar 2023 18:06:50 +0000
ROA not after: Wed 20 Mar 2024 18:11:50 +0000
asID: 44486
IP address blocks: 45.137.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 00:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:76:5c:95:37:83:84:2e:6b:08:86:29:e9:b7:da:92:ce:5a:5d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:06:50 2023 GMT
Not After : Mar 20 18:11:50 2024 GMT
Subject: CN=2A3E209E4FF0BBF7EB58D51990A051AA197ECB0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:db:4c:4a:73:30:d4:dd:86:d2:7c:68:dd:f1:
35:b4:07:92:27:e3:5e:8e:d0:30:92:b7:7b:18:5f:
48:8c:21:b7:d5:45:a9:2b:dd:fe:f7:d5:cc:2f:50:
8f:30:ec:ba:02:c9:f4:34:c8:6a:df:0c:dc:54:91:
ec:b7:a5:46:97:0c:5f:f2:69:a9:b0:50:9f:c5:de:
2a:aa:13:87:fd:19:2e:33:55:e5:62:32:c9:dc:9f:
e4:bf:76:c2:ca:1e:23:88:ec:c8:50:46:8f:57:dd:
2c:b0:82:9f:20:13:82:8e:e1:f8:f1:b4:e8:2a:7e:
bc:fc:e2:ba:66:22:12:2d:24:4e:d5:7e:95:84:f1:
1a:27:1a:2c:53:2b:b3:df:9f:57:39:f5:19:fd:e0:
84:bf:1f:7c:a8:51:ac:e0:60:58:ea:3d:35:d7:c2:
66:50:29:05:70:f7:06:43:d2:df:af:ab:b8:fe:f9:
08:1e:93:d6:5f:1f:01:87:d4:a1:a0:e1:7f:ea:4c:
fa:80:95:e6:ab:44:f0:6d:26:09:20:ef:e2:b9:bb:
8d:bf:9c:55:5e:da:17:89:0e:07:e5:5f:ae:63:81:
ef:14:39:68:93:71:71:74:12:1b:e9:fd:b9:2a:72:
38:61:c7:36:98:d1:eb:bc:79:db:9b:7b:40:98:61:
0b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3E:20:9E:4F:F0:BB:F7:EB:58:D5:19:90:A0:51:AA:19:7E:CB:0D
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e203434343836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.96.0/24
Signature Algorithm: sha256WithRSAEncryption
25:fb:5b:5a:76:52:a0:e8:85:f6:07:6a:66:9f:61:1c:e1:68:
c7:28:6d:2f:1d:40:db:bd:e9:cd:e2:6d:d8:38:b2:45:4b:87:
6c:91:31:df:02:f3:3b:07:b2:27:c8:7a:4d:f7:61:6d:94:6f:
72:cc:95:5f:af:b4:1c:95:95:91:bd:08:7c:ed:08:52:da:ce:
a2:18:28:65:31:af:4f:cd:97:9b:f5:2d:dd:38:75:f5:4b:c7:
d8:d1:55:fb:fc:38:1e:49:a4:71:70:5e:d0:b3:b7:b8:46:c8:
63:ea:3e:08:82:c9:cc:1b:fa:8f:69:a5:a9:b2:c6:9f:70:66:
1f:7a:6c:7b:fe:e1:3e:8c:c9:d7:41:09:ba:cd:22:16:76:18:
3d:9a:87:47:94:15:35:f5:eb:5a:6d:b8:55:51:68:56:f0:01:
2d:d5:f5:37:7a:1d:e9:66:00:02:95:f1:42:8a:81:f1:7a:91:
50:54:d3:c4:38:50:b1:73:3b:d1:e9:71:16:38:cc:10:5c:bc:
99:f7:c1:92:70:7c:8e:01:5d:0e:bd:7a:12:c1:14:5b:97:28:
1d:a3:f2:68:45:a0:cd:66:33:cf:da:e2:53:88:6d:72:4e:2a:
db:01:55:06:cb:2e:2f:2f:35:af:f7:03:20:8c:10:7c:d4:fc:
a1:70:28:21
-----BEGIN CERTIFICATE-----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Generated at Thu Feb 15 04:19:11 2024 by rpki-client on console-ams.rpki-client.org