Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35372e302f32342d3234203d3e20333935313131.roa
File: 34352e3135382e35372e302f32342d3234203d3e20333935313131.roa (raw, json)
Hash identifier: O/sKEKE/xFqzsTSkSGPb3NqeFT2E7g+J7BYxzhx6ddY=
Subject key identifier: 35:4E:7E:A8:73:69:57:71:78:BD:09:EB:3A:A2:3B:39:9D:89:E8:DE
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 4767B0A82A27715C4EA6C5301ECDCFBC8AE6D3FF
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35372e302f32342d3234203d3e20333935313131.roa
Signing time: Wed 22 Mar 2023 18:13:38 +0000
ROA not before: Wed 22 Mar 2023 18:08:38 +0000
ROA not after: Wed 20 Mar 2024 18:13:38 +0000
asID: 395111
IP address blocks: 45.158.57.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:67:b0:a8:2a:27:71:5c:4e:a6:c5:30:1e:cd:cf:bc:8a:e6:d3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:08:38 2023 GMT
Not After : Mar 20 18:13:38 2024 GMT
Subject: CN=354E7EA87369577178BD09EB3AA23B399D89E8DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ce:65:d6:39:b9:7e:85:2a:6c:ec:a9:7d:d9:
ae:c0:cc:a6:3a:34:0b:3f:e9:80:52:ad:eb:0d:e6:
9d:48:a9:c0:e5:5d:89:c8:57:f5:ab:09:cb:58:60:
bc:df:5a:3b:82:9f:3d:03:70:91:43:df:d7:7a:64:
8b:1a:9c:06:cf:f5:f2:8d:4f:72:5c:bd:c4:bd:78:
32:32:62:f3:d8:05:3c:c8:9b:c4:8e:7c:cb:a4:8f:
54:c0:be:3e:40:56:68:0b:95:2a:c6:27:42:6e:a8:
7a:a1:c1:19:40:35:f6:69:47:a4:dd:71:04:98:f2:
9b:f7:ea:e3:73:7e:71:a6:e5:62:d9:57:3d:24:b4:
94:f8:e3:67:f2:f9:ed:02:08:d0:2b:b4:f7:cc:77:
73:9d:59:c3:d9:3f:5c:96:2e:5a:11:89:a1:41:e8:
9f:ae:11:dc:b5:32:29:11:4c:2c:ef:83:04:3f:b1:
d1:71:6d:71:dd:9a:fe:dd:3c:e2:df:a0:10:6d:76:
a5:d0:d3:09:2c:b6:22:d9:70:4c:af:c5:4d:cb:2b:
0e:de:d9:dd:4a:7b:26:af:4d:88:62:c6:6b:d7:9b:
31:77:4b:5e:d0:fd:2f:89:9c:92:06:54:2d:e8:1f:
05:32:8a:27:83:16:3a:96:cc:0f:5e:c5:a4:db:29:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4E:7E:A8:73:69:57:71:78:BD:09:EB:3A:A2:3B:39:9D:89:E8:DE
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35372e302f32342d3234203d3e20333935313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.57.0/24
Signature Algorithm: sha256WithRSAEncryption
51:fe:d9:b2:09:0e:f8:14:87:36:1d:d3:d7:fc:4c:a1:3b:15:
b1:6f:dd:e5:71:1f:42:87:c1:aa:a8:30:40:36:db:38:12:33:
ce:37:8c:26:b2:06:90:08:9e:cf:c5:3d:3d:a9:5f:3b:94:2d:
ab:6b:49:df:74:13:39:46:f2:68:74:f3:af:8a:39:b1:f6:24:
64:f6:b5:4b:3d:bc:bd:68:b8:b8:c8:69:e2:6b:dd:64:f6:cc:
88:95:1b:2a:25:45:da:2a:e2:95:91:f6:a0:ab:ef:9f:2f:5a:
19:13:1e:d3:d8:19:95:14:69:28:1f:9c:46:50:52:7b:cc:7c:
2b:1c:a5:bf:d3:5a:b3:7a:e3:1a:a4:f6:8b:1b:b6:75:1a:6f:
98:dd:2c:25:45:03:2e:62:ca:74:07:88:0e:f0:2f:cf:aa:04:
ab:bd:6d:81:6f:15:31:58:5b:34:39:59:0d:93:0a:99:fa:4a:
3a:6b:c1:37:ef:b9:07:26:52:9b:59:fd:47:a1:37:47:d0:a2:
09:7f:4b:ac:dc:1c:b7:ba:af:a7:69:d1:1a:0a:e5:38:7c:c5:
32:62:d3:0f:13:24:ed:e3:8f:62:17:4d:d0:b0:09:70:66:33:
e1:8a:bb:f1:cb:63:f8:02:6b:a6:0f:b0:fb:69:5d:63:7e:ab:
3f:53:1b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org