Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e20383334.roa
File: 34352e3133372e39362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: LctJ4Aoe64hFprT6vwuV8VhVfwaOIgAfI9XA0rameMg=
Subject key identifier: A1:D4:D4:F9:99:3C:DD:A3:C4:07:3B:D4:E7:70:38:D9:D3:9D:E2:E0
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 2D616EBF64664920CF661810BC0C3ECC5512BB19
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e20383334.roa
Signing time: Mon 01 Jul 2024 10:09:17 +0000
ROA not before: Mon 01 Jul 2024 10:04:17 +0000
ROA not after: Mon 30 Jun 2025 10:09:17 +0000
asID: 834
IP address blocks: 45.137.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 21:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:61:6e:bf:64:66:49:20:cf:66:18:10:bc:0c:3e:cc:55:12:bb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 1 10:04:17 2024 GMT
Not After : Jun 30 10:09:17 2025 GMT
Subject: CN=A1D4D4F9993CDDA3C4073BD4E77038D9D39DE2E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:51:ec:63:11:0f:df:cc:15:f0:77:e5:ba:
2d:fe:cc:bb:98:d9:db:b7:43:cf:27:1d:73:20:23:
01:e1:97:e8:0c:84:00:e2:e5:55:28:09:56:d4:aa:
f6:68:b7:93:01:0a:8f:ee:62:db:c6:d9:8b:e5:dd:
2f:bb:e4:39:af:d1:3a:c0:ef:8a:7e:b7:32:1e:1c:
56:82:69:3b:1e:05:fb:c2:dc:5f:6f:a8:57:3c:47:
ac:aa:e4:bb:ce:dd:85:73:d7:67:1d:ec:7f:13:88:
36:8b:c9:3e:37:3c:7b:32:10:e1:82:84:20:dd:9b:
a1:25:5a:2f:ea:4b:44:de:f2:4d:f3:82:96:99:7e:
94:d1:90:ca:05:5b:68:87:15:85:61:a6:f9:33:2c:
24:63:49:39:7a:5c:4e:b6:52:34:30:1b:a0:90:e0:
ef:53:68:e2:4a:9e:de:6d:49:12:d0:75:89:ae:0f:
d5:6b:f4:d8:c2:fe:b3:c8:a1:73:fe:ec:fd:a3:d2:
42:2d:16:8f:5b:1b:4b:8d:fb:83:17:39:67:18:f5:
0f:49:32:91:3d:9a:bc:9d:b7:f7:29:c9:a8:d2:ec:
6b:ba:1d:c6:dc:f4:b3:26:f0:73:6f:93:a6:ea:28:
06:5a:3d:60:21:ee:83:ff:ab:26:71:3c:e8:67:6a:
94:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D4:D4:F9:99:3C:DD:A3:C4:07:3B:D4:E7:70:38:D9:D3:9D:E2:E0
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:35:30:4d:65:8d:e6:a5:c5:59:f8:a0:8f:0f:c2:72:8c:1c:
1e:29:b4:08:e0:5e:53:fe:d5:51:48:a7:21:f3:9f:6b:ec:d1:
cc:2b:b7:d4:bd:ba:3a:05:c9:58:8f:29:c1:db:9d:be:07:95:
5c:6c:ab:38:11:f8:37:29:e4:71:e4:c5:ec:fe:9d:54:9b:07:
27:84:fd:c1:b1:d0:05:eb:1c:08:73:09:6e:bb:0a:aa:d9:5c:
38:56:c8:bd:0a:fd:fc:c5:ed:88:f0:e1:39:16:78:2c:0d:63:
96:ac:9a:48:45:7d:39:0d:d5:98:a7:ea:3e:c9:4e:df:e2:9d:
f5:66:e9:f1:70:8f:42:bb:74:ec:13:63:a2:31:e8:79:a7:98:
b7:60:89:6c:81:40:c1:d4:63:c5:6c:d5:3c:9e:7b:89:8b:3b:
b8:7a:1b:6d:95:6e:2d:e6:c5:86:a8:52:ec:65:b5:3b:f3:a4:
10:6c:75:75:aa:76:0f:99:b1:78:2c:57:a6:ed:d7:8d:1a:89:
79:f9:f2:f2:49:c6:ec:e5:0e:0d:a6:36:80:9e:ac:bb:36:23:
3b:73:1c:c3:e8:b8:f7:89:db:76:de:e9:cc:1a:9e:0b:2c:2c:
d8:2a:c5:af:ca:bd:ca:58:65:79:6d:b6:42:4b:8e:88:3c:f4:
85:ef:58:6b
-----BEGIN CERTIFICATE-----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Generated at Wed Jul 3 22:04:06 2024 by rpki-client on console-fra.rpki-client.org