Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
File: 34352e38372e3137322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: RI8h69S63rY+LqAtdsVZzCq1MSXl/TQqZXD3STHOH1A=
Subject key identifier: 2F:38:ED:C9:0A:77:2A:97:5F:EB:DA:A3:40:C2:73:2D:45:FB:0A:ED
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 775C240155FD9FC30FDB20B9BB4B2832456F867F
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
Signing time: Wed 13 Nov 2024 11:02:03 +0000
ROA not before: Wed 13 Nov 2024 10:57:03 +0000
ROA not after: Wed 12 Nov 2025 11:02:03 +0000
asID: 834
IP address blocks: 45.87.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 13:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:5c:24:01:55:fd:9f:c3:0f:db:20:b9:bb:4b:28:32:45:6f:86:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Nov 13 10:57:03 2024 GMT
Not After : Nov 12 11:02:03 2025 GMT
Subject: CN=2F38EDC90A772A975FEBDAA340C2732D45FB0AED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a2:7f:53:ee:95:4e:d3:8e:49:6a:e7:9c:17:
59:54:70:c5:c2:24:ae:68:5d:ec:ac:ed:b7:79:48:
1b:59:c0:0e:94:eb:21:46:ac:8a:2d:aa:b3:19:d2:
12:0c:c3:d5:16:72:38:55:7d:3b:32:ef:5e:f0:8b:
5b:49:71:3b:81:c1:d0:db:9a:9e:b4:fb:4b:ce:09:
d2:1c:10:f5:7a:df:6e:37:8e:2c:87:69:22:b5:20:
1e:42:7f:16:fd:bc:a1:67:2f:c4:2c:48:76:97:06:
20:46:a9:76:9a:8b:54:8b:a6:43:53:01:e0:94:d7:
93:0d:8a:31:ef:51:1d:a6:17:50:07:53:9f:4e:76:
73:6c:57:b2:d3:1d:18:25:12:f9:ed:9a:17:76:04:
3b:08:87:df:6b:d5:77:d9:71:d2:66:e7:1d:cd:86:
32:7f:b6:9f:74:fa:4e:31:c6:53:05:47:e3:50:57:
2b:77:0c:ed:d8:f6:c7:8f:70:41:52:64:d7:91:69:
10:0a:f3:8b:d1:f1:37:06:f8:9f:2f:d4:af:5d:b5:
8c:c1:5b:96:db:ea:c8:fc:2c:90:ad:a3:f5:ed:e0:
28:8a:4f:ac:52:4f:55:a4:2f:e6:f7:44:1f:2b:3c:
c4:8f:6c:87:2e:22:aa:39:b0:da:83:70:55:d3:f2:
77:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:38:ED:C9:0A:77:2A:97:5F:EB:DA:A3:40:C2:73:2D:45:FB:0A:ED
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.172.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e2:a3:3c:d4:c3:38:c0:0b:dc:2f:45:fb:50:79:bf:d4:d4:
4c:6f:be:c0:61:23:c1:a6:9f:e8:b1:61:a5:ff:5f:48:c9:ed:
22:8a:d4:d3:a6:3e:e5:d7:47:d1:32:37:fe:38:89:1e:a8:95:
d5:91:55:cc:76:f8:f5:ab:c2:ef:04:bb:5d:38:c6:91:80:d4:
1b:4a:17:c3:be:ff:6a:ed:60:fa:3b:39:4e:3a:b3:3e:4d:3c:
54:e7:52:f1:25:e8:d5:3e:2e:47:19:20:ea:49:d7:5c:a8:50:
0b:54:73:b4:93:47:0d:78:fe:f9:52:4c:4a:b6:e5:ee:9d:d8:
2f:21:bc:d7:79:59:18:52:ef:0a:ea:aa:fe:bf:c4:e8:ea:48:
23:6a:ef:83:2e:d8:e9:95:c5:32:19:43:7e:9b:5e:82:37:ab:
44:15:42:76:ea:39:8c:f5:75:c5:2a:14:83:43:89:9c:25:b2:
46:8e:7d:3a:5c:5e:71:76:f8:53:aa:81:74:b4:2f:0d:cc:aa:
1b:28:5f:bb:4a:68:6e:f3:b9:16:45:69:a1:8e:ac:de:63:15:
ed:e9:0b:5f:89:d8:8c:b7:87:4f:75:c8:03:18:d8:75:d5:60:
92:b8:53:d7:bb:a7:7a:b9:73:4a:8e:b5:90:a2:b4:e0:47:53:
fc:9a:3b:25
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUd1wkAVX9n8MP2yC5u0soMkVvhn8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3
OWI1ZmQ5MTAeFw0yNDExMTMxMDU3MDNaFw0yNTExMTIxMTAyMDNaMDMxMTAvBgNV
BAMTKDJGMzhFREM5MEE3NzJBOTc1RkVCREFBMzQwQzI3MzJENDVGQjBBRUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcon9T7pVO045JauecF1lUcMXC
JK5oXeys7bd5SBtZwA6U6yFGrIotqrMZ0hIMw9UWcjhVfTsy717wi1tJcTuBwdDb
mp60+0vOCdIcEPV63243jiyHaSK1IB5Cfxb9vKFnL8QsSHaXBiBGqXaai1SLpkNT
AeCU15MNijHvUR2mF1AHU59OdnNsV7LTHRglEvntmhd2BDsIh99r1XfZcdJm5x3N
hjJ/tp90+k4xxlMFR+NQVyt3DO3Y9sePcEFSZNeRaRAK84vR8TcG+J8v1K9dtYzB
W5bb6sj8LJCto/Xt4CiKT6xST1WkL+b3RB8rPMSPbIcuIqo5sNqDcFXT8neRAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQULzjtyQp3Kpdf69qjQMJzLUX7Cu0wHwYDVR0j
BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5
ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t
MV9aRS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt
ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzQzNTJlMzgzNzJlMzEzNzMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVesMA0G
CSqGSIb3DQEBCwUAA4IBAQCZ4qM81MM4wAvcL0X7UHm/1NRMb77AYSPBpp/osWGl
/19Iye0iitTTpj7l10fRMjf+OIkeqJXVkVXMdvj1q8LvBLtdOMaRgNQbShfDvv9q
7WD6OzlOOrM+TTxU51LxJejVPi5HGSDqSddcqFALVHO0k0cNeP75UkxKtuXundgv
IbzXeVkYUu8K6qr+v8To6kgjau+DLtjplcUyGUN+m16CN6tEFUJ26jmM9XXFKhSD
Q4mcJbJGjn06XF5xdvhTqoF0tC8NzKobKF+7Smhu87kWRWmhjqzeYxXt6QtfidiM
t4dPdcgDGNh11WCSuFPXu6d6uXNKjrWQorTgR1P8mjsl
Generated at Wed Nov 13 16:39:59 2024 by rpki-client on console-ams.rpki-client.org