Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
File: 34352e38372e3137322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: DRc1dMOykKN3GPjv9sYRquEkXl5/Xc7dsiMkRGuGyS0=
Subject key identifier: CD:E9:5F:B8:45:6E:E8:4A:CF:07:64:08:4A:AF:5B:1A:8B:25:F0:43
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 78C17AE3D2EC63DA84B72B4EF1300AF2A9A930F3
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
Signing time: Fri 28 Jul 2023 10:30:06 +0000
ROA not before: Fri 28 Jul 2023 10:25:06 +0000
ROA not after: Fri 26 Jul 2024 10:30:06 +0000
asID: 834
IP address blocks: 45.87.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:c1:7a:e3:d2:ec:63:da:84:b7:2b:4e:f1:30:0a:f2:a9:a9:30:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 28 10:25:06 2023 GMT
Not After : Jul 26 10:30:06 2024 GMT
Subject: CN=CDE95FB8456EE84ACF0764084AAF5B1A8B25F043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:89:71:e0:43:29:4b:45:99:53:38:c1:20:9c:
13:6f:5d:d3:bf:81:c5:c1:d5:f9:39:04:32:29:e1:
d2:c3:82:68:df:0d:64:f8:a6:f4:a3:71:04:42:e2:
57:c5:9a:27:f0:95:2a:00:40:27:0e:0e:3c:42:4a:
57:76:4a:15:54:b1:dc:7f:16:88:ef:cb:67:ff:b5:
9d:f4:f9:21:a0:e9:1e:a1:ac:f7:53:b9:9d:1c:1d:
56:76:74:4b:7e:c8:01:b3:46:6d:aa:10:8d:43:e3:
be:c8:41:a0:c5:13:16:10:2e:97:9e:db:49:99:a0:
d0:e8:8a:14:e1:7c:28:85:30:22:83:b9:96:d6:18:
15:74:04:15:0b:df:7d:2c:e0:38:20:c6:63:29:c8:
7d:2b:b8:88:45:bb:5a:10:64:98:ba:91:c5:4e:df:
44:1b:80:90:7a:d8:bc:85:b4:91:4b:7b:47:78:7e:
f5:8d:1a:b2:44:ff:a3:76:ea:4a:57:a2:30:ed:97:
5f:58:e9:8e:a2:18:38:d2:a9:d2:01:b5:35:61:04:
fd:92:d3:62:3d:19:7d:62:cc:52:ef:01:89:89:18:
d5:63:75:17:c2:dc:c3:73:97:9c:8d:89:b6:9c:95:
f0:46:50:6f:c4:8d:2a:ac:fd:b5:8f:e2:3d:1a:21:
c7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E9:5F:B8:45:6E:E8:4A:CF:07:64:08:4A:AF:5B:1A:8B:25:F0:43
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.172.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:38:50:97:03:ff:82:0d:c6:4c:3e:f1:a7:f8:a0:a3:06:8a:
8f:37:7e:1d:39:48:b0:2a:09:a6:4d:43:ef:a4:3e:23:f3:d3:
92:6b:ec:aa:e6:a2:26:f5:b0:bf:5b:fa:02:e3:b1:06:28:5d:
24:1b:14:fc:67:48:a2:63:3e:61:b3:a1:94:47:6c:dc:32:72:
86:c8:a9:a4:ba:9d:69:cd:2e:5c:08:5b:5f:36:45:90:2b:ae:
67:0f:44:67:3f:db:92:68:a5:03:2c:55:d4:80:c6:28:68:1b:
49:ba:06:52:6e:3e:13:7d:fb:d9:d4:8c:9d:f9:5f:cc:27:f0:
e7:d4:1a:b0:be:93:57:88:49:c5:69:a5:78:9e:79:d7:37:35:
94:92:8a:3c:26:57:1d:6d:9e:79:5b:9e:f9:87:e7:f6:d3:e4:
7e:ab:aa:76:74:04:fe:b7:6a:c7:1e:b2:fe:55:50:bc:b8:62:
6e:6c:a8:13:96:e0:2d:7c:55:a9:df:a5:63:2a:db:6f:da:20:
dd:86:5b:0d:44:f8:df:2c:bb:79:d2:79:45:13:20:b7:78:9d:
2a:d3:31:e4:33:11:a9:9c:87:0c:eb:35:14:9b:bd:23:ff:67:
8a:a3:a0:27:5a:5d:27:0a:1d:c1:79:5c:53:a8:01:0a:ef:b7:
f9:26:bd:17
-----BEGIN CERTIFICATE-----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Generated at Sat Aug 12 05:28:25 2023 by rpki-client on console-ams.rpki-client.org