Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35392e302f32342d3234203d3e20383334.roa
File: 34352e3135382e35392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: MD1SsfzWFPZgQTex+Zss95Z379isIH6X5oBkhaoSx2Y=
Subject key identifier: F2:77:1F:E4:6E:31:7C:01:77:8D:19:22:17:F7:51:42:DC:A6:74:B5
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 137BD956B931B53D729CF9EDFB3267E0C1D22823
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35392e302f32342d3234203d3e20383334.roa
Signing time: Fri 15 Mar 2024 00:02:07 +0000
ROA not before: Thu 14 Mar 2024 23:57:07 +0000
ROA not after: Fri 14 Mar 2025 00:02:07 +0000
asID: 834
IP address blocks: 45.158.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 06:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:7b:d9:56:b9:31:b5:3d:72:9c:f9:ed:fb:32:67:e0:c1:d2:28:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 14 23:57:07 2024 GMT
Not After : Mar 14 00:02:07 2025 GMT
Subject: CN=F2771FE46E317C01778D192217F75142DCA674B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:1c:4e:30:9d:1a:41:ca:87:69:75:36:e5:
97:5d:a2:c2:44:ac:84:c1:65:b3:34:16:d3:ac:73:
3c:82:74:2b:5d:32:37:be:90:cc:a9:db:ea:f4:62:
a7:65:44:74:a7:ab:34:3f:09:26:c2:35:10:10:05:
8e:18:5f:1a:2f:a9:02:48:46:29:d9:c5:83:d3:83:
8a:9e:83:8f:30:97:29:61:da:6b:e4:d1:60:2f:be:
7a:da:a1:c6:e0:88:9f:28:04:a4:a2:89:09:ae:2e:
ee:e6:a7:fd:2c:60:58:df:24:ff:a2:35:0d:7e:99:
37:22:e8:96:4c:23:23:e7:8c:de:19:cb:8a:9d:e4:
58:f3:1c:58:9d:51:07:8d:ec:25:b2:81:6d:20:1a:
b7:3d:11:b3:6b:79:fa:df:95:e8:ff:bf:08:7e:f2:
87:81:cc:6e:51:f9:8a:f8:c8:e3:93:a6:00:40:78:
5e:1c:2a:88:99:70:dd:34:54:b9:8c:f5:51:58:fb:
31:21:6a:71:41:2d:e6:a0:bc:01:05:d8:de:76:d6:
52:1f:ac:c6:dc:c3:f2:c1:08:b0:70:5f:a7:b5:af:
fb:d0:86:79:67:fb:94:12:3f:05:77:ac:d9:46:b4:
29:79:34:10:4e:fd:01:94:24:2a:c7:8b:f8:a3:20:
c2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:77:1F:E4:6E:31:7C:01:77:8D:19:22:17:F7:51:42:DC:A6:74:B5
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:55:51:a1:f4:f8:08:5a:60:10:f2:26:81:f4:8b:d0:4f:30:
6a:2a:12:b3:07:b9:25:ac:9c:3b:49:09:8e:c0:aa:f3:66:14:
76:ca:0f:16:ea:60:77:57:46:b0:96:45:34:ac:3f:7a:8e:f7:
38:33:49:54:74:ea:66:32:e6:a0:21:d5:97:73:20:ee:c3:e5:
0d:2c:07:b0:bc:43:b3:6c:ec:cb:4b:45:a7:04:ff:e0:4f:00:
a9:8d:f7:b1:0d:94:50:c5:ab:9d:66:fa:c9:4e:02:3f:24:bf:
62:f2:5b:01:b0:78:c4:bf:3e:f0:69:02:d0:96:23:10:39:3d:
ea:c3:3c:27:9f:e8:6e:3a:b8:3f:7f:30:1e:07:f4:12:ec:ca:
67:4b:52:58:7a:21:b7:a3:25:93:ca:c0:a9:3b:3b:4c:f1:42:
fa:c2:5c:6c:8f:46:db:38:3e:db:44:40:b0:be:bb:41:80:95:
c6:fa:d6:dd:2b:d5:55:c7:56:0e:c2:75:92:3e:b5:95:fa:e0:
f8:ce:ea:8e:b4:79:68:ae:bc:4a:16:79:29:71:37:4a:31:7a:
e3:ad:37:5f:63:9a:5e:c1:bb:7e:7b:ed:fa:42:8b:19:60:8d:
46:00:f3:97:aa:ce:49:43:9a:54:77:e4:ff:93:27:f0:4c:1d:
18:83:d9:89
-----BEGIN CERTIFICATE-----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Generated at Mon Mar 18 09:20:05 2024 by rpki-client on console-ams.rpki-client.org