Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e2030.roa
File: 34352e39312e3133382e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: FjN3ze65xc05M4ladP6QBZI3J44VRHaWxhRvW7NiFn0=
Subject key identifier: FE:BD:37:CC:80:74:60:14:97:E3:AE:02:15:FE:C6:06:EA:2F:8C:A8
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 3B53723F1468287032646AA960B1DD572082B22D
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e2030.roa
Signing time: Fri 08 Sep 2023 05:33:12 +0000
ROA not before: Fri 08 Sep 2023 05:28:12 +0000
ROA not after: Fri 06 Sep 2024 05:33:12 +0000
asID: 0
IP address blocks: 45.91.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:53:72:3f:14:68:28:70:32:64:6a:a9:60:b1:dd:57:20:82:b2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 8 05:28:12 2023 GMT
Not After : Sep 6 05:33:12 2024 GMT
Subject: CN=FEBD37CC8074601497E3AE0215FEC606EA2F8CA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3a:69:2f:98:c0:e0:11:7c:88:45:1f:f0:6a:
07:1f:84:36:95:73:dd:85:8b:c9:8d:43:58:65:44:
3b:f1:b2:45:f0:2b:1f:d3:e5:da:d9:e4:94:73:13:
2d:70:04:fe:58:5b:a6:0d:82:27:8e:49:9c:98:d7:
b0:fb:b4:af:df:ba:a5:93:f7:cf:cc:bf:c4:ee:00:
6b:49:14:34:9c:e5:bb:80:a2:d0:14:23:6f:a4:ed:
21:e7:3e:7f:51:24:0a:29:da:df:81:e5:da:ff:6b:
5b:46:37:84:7e:fa:16:60:ef:c0:06:71:a3:0d:b9:
f5:b6:31:14:24:1f:2e:a9:b3:08:11:dd:34:5e:6d:
c6:d4:38:95:31:c2:10:18:78:c3:de:52:fd:7d:2f:
d6:c5:ae:f4:17:08:16:f6:0a:f9:c3:98:90:e7:a9:
a8:4f:b7:6f:5c:9f:fe:9f:a0:a0:04:9a:ae:ee:b1:
27:a6:4b:4b:ef:08:4f:1d:13:63:da:1c:1b:64:74:
2d:bb:4b:f8:ba:ef:99:76:96:62:91:9c:a9:fb:bb:
43:ed:49:42:94:6c:b5:aa:bf:02:7a:6d:e4:9f:a6:
58:17:77:37:44:bd:4e:56:dc:b7:21:57:b9:c9:94:
03:ce:2f:97:7b:4d:61:31:9e:66:43:4c:07:62:3e:
01:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:BD:37:CC:80:74:60:14:97:E3:AE:02:15:FE:C6:06:EA:2F:8C:A8
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.138.0/24
Signature Algorithm: sha256WithRSAEncryption
46:da:fb:e1:80:59:c0:17:31:1b:88:4b:4c:a3:4a:c2:c4:22:
11:4d:e6:c2:e2:08:6b:dc:37:1c:1d:b2:6c:ab:45:1f:92:be:
f2:4f:0e:dd:9e:33:8d:b1:56:f4:0c:79:fa:11:f2:14:35:13:
eb:34:e6:f4:ca:86:78:f4:7f:44:fe:1f:0d:f9:b2:d8:dd:35:
fc:a4:75:5d:13:64:96:ff:19:5c:79:28:69:ea:4c:66:e0:d3:
78:4f:69:9d:79:36:cb:cd:f9:8e:29:58:34:b4:56:39:a9:86:
ad:74:8a:d8:62:03:21:df:53:c4:87:a8:b2:79:bd:ad:e1:6c:
92:12:98:48:b5:ee:b2:52:cf:f8:0a:a7:32:2c:34:a9:b7:af:
e0:11:78:f8:4f:38:6f:6c:6e:6f:bf:2c:53:20:50:51:bd:ca:
65:e6:51:ee:82:59:d0:04:93:cb:80:c4:1e:af:4c:a4:b5:00:
3a:df:c9:77:ed:72:6e:a3:25:44:77:92:70:0b:a4:b3:2e:de:
c1:ad:90:3b:6a:32:86:4f:27:53:bf:29:fe:39:3a:4a:c2:6d:
6c:6f:c0:0e:88:0d:63:91:ca:fb:8b:28:ee:ee:1e:c1:46:b1:
d3:85:91:70:af:26:20:6d:ec:b7:d2:a2:62:68:e8:37:78:79:
59:09:43:44
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIUO1NyPxRoKHAyZGqpYLHdVyCCsi0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3
OWI1ZmQ5MTAeFw0yMzA5MDgwNTI4MTJaFw0yNDA5MDYwNTMzMTJaMDMxMTAvBgNV
BAMTKEZFQkQzN0NDODA3NDYwMTQ5N0UzQUUwMjE1RkVDNjA2RUEyRjhDQTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjOmkvmMDgEXyIRR/wagcfhDaV
c92Fi8mNQ1hlRDvxskXwKx/T5drZ5JRzEy1wBP5YW6YNgieOSZyY17D7tK/fuqWT
98/Mv8TuAGtJFDSc5buAotAUI2+k7SHnPn9RJAop2t+B5dr/a1tGN4R++hZg78AG
caMNufW2MRQkHy6pswgR3TRebcbUOJUxwhAYeMPeUv19L9bFrvQXCBb2CvnDmJDn
qahPt29cn/6foKAEmq7usSemS0vvCE8dE2PaHBtkdC27S/i675l2lmKRnKn7u0Pt
SUKUbLWqvwJ6beSfplgXdzdEvU5W3LchV7nJlAPOL5d7TWExnmZDTAdiPgG7AgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQU/r03zIB0YBSX464CFf7GBuovjKgwHwYDVR0j
BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5
ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t
MV9aRS5jZXIwgaMGCCsGAQUFBwELBIGWMIGTMIGQBggrBgEFBQcwC4aBg3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt
ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzQzNTJlMzkzMTJlMzEzMzM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYI
KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtW4owDQYJKoZI
hvcNAQELBQADggEBAEba++GAWcAXMRuIS0yjSsLEIhFN5sLiCGvcNxwdsmyrRR+S
vvJPDt2eM42xVvQMefoR8hQ1E+s05vTKhnj0f0T+Hw35stjdNfykdV0TZJb/GVx5
KGnqTGbg03hPaZ15NsvN+Y4pWDS0Vjmphq10ithiAyHfU8SHqLJ5va3hbJISmEi1
7rJSz/gKpzIsNKm3r+ARePhPOG9sbm+/LFMgUFG9ymXmUe6CWdAEk8uAxB6vTKS1
ADrfyXftcm6jJUR3knALpLMu3sGtkDtqMoZPJ1O/Kf45OkrCbWxvwA6IDWORyvuL
KO7uHsFGsdOFkXCvJiBt7LfSomJo6Dd4eVkJQ0Q=
-----END CERTIFICATE-----
Generated at Thu Dec 14 00:31:54 2023 by rpki-client on console-ams.rpki-client.org