Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20383334.roa
File: 34352e39312e3133382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: XSjxz4pvXra2+rLwYFhSNySw/CedYbHIW5eeffx1/cI=
Subject key identifier: 76:69:74:75:66:3D:B0:AD:2D:35:C2:1C:4E:B8:18:19:6F:CB:59:EF
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 637EB5C24362C9056FC87273765DC693E55AE493
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20383334.roa
Signing time: Tue 27 Aug 2024 00:03:05 +0000
ROA not before: Mon 26 Aug 2024 23:58:05 +0000
ROA not after: Tue 26 Aug 2025 00:03:05 +0000
asID: 834
IP address blocks: 45.91.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 01:54:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7e:b5:c2:43:62:c9:05:6f:c8:72:73:76:5d:c6:93:e5:5a:e4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 26 23:58:05 2024 GMT
Not After : Aug 26 00:03:05 2025 GMT
Subject: CN=76697475663DB0AD2D35C21C4EB818196FCB59EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:1f:38:c4:df:46:ab:0e:f7:4e:67:e3:e3:
f5:6c:ac:24:26:2d:5c:76:88:26:55:c4:c7:a8:28:
76:fb:92:3b:3b:02:22:46:29:3f:01:36:5a:c0:70:
83:3f:5c:e9:a5:5d:b6:b2:78:d9:54:a4:e4:4c:30:
be:33:9a:29:ac:93:41:23:17:ad:f9:34:90:7e:9b:
69:ef:0d:2c:9f:cb:0f:ec:38:f0:01:99:a1:dd:d3:
d3:08:c3:5b:3b:ac:5d:6a:c9:98:d7:25:7f:61:f7:
ac:f2:96:59:a2:06:2c:09:2c:07:48:6b:ae:26:5a:
37:c1:1c:fe:5d:14:95:7f:a3:fa:a5:48:4b:cb:87:
6b:14:15:4e:1b:24:e5:f7:71:51:b3:1d:b5:29:06:
01:9b:bd:d8:a3:1b:f0:66:af:86:45:91:dc:ef:44:
fc:f7:ac:2d:37:18:ad:10:96:90:2e:03:d8:4c:6c:
97:d6:c1:5f:65:28:6f:26:91:89:e8:fd:62:79:0f:
be:f5:da:97:b6:fe:81:02:44:e5:54:f3:23:a5:69:
cd:dd:12:a6:bb:da:c1:27:9f:6d:81:00:34:52:04:
9d:6e:d3:d0:25:6b:1e:02:3d:23:50:84:50:27:82:
05:4e:5b:f3:60:87:61:fc:4a:5b:a1:15:8a:2a:ca:
a8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:69:74:75:66:3D:B0:AD:2D:35:C2:1C:4E:B8:18:19:6F:CB:59:EF
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:94:9d:72:3b:a7:7b:3d:24:49:c9:06:22:05:2b:0d:ef:23:
f0:2f:ed:6d:5d:c7:ad:aa:c4:2a:5d:20:76:a0:a6:74:d7:40:
4b:db:6c:c4:10:2f:0c:d5:69:a1:d4:a9:0a:5d:e5:2e:8b:fb:
32:f8:80:2f:83:06:49:35:3b:74:8d:c8:24:ee:1e:a0:27:b5:
44:c8:cf:b7:e9:43:52:73:32:a8:c7:ef:fa:fa:93:ed:c9:da:
98:d9:84:13:11:d8:46:15:c0:46:62:24:fd:7e:71:8c:b8:9d:
b8:cc:91:22:d0:20:42:cb:18:70:20:e1:26:ed:4f:0c:4a:10:
08:48:d0:8c:1d:3d:5e:55:a4:ad:42:71:83:9c:93:ed:61:7f:
85:99:06:8e:1b:a9:21:df:c6:e2:75:fe:8d:72:1e:21:68:7a:
4d:a9:12:fc:2c:13:64:ab:94:68:a1:7c:b8:80:68:85:2f:91:
72:fb:aa:90:a5:81:7d:ba:f6:c3:87:62:80:23:36:ac:36:9c:
fb:b9:6a:e9:ce:69:22:e0:db:5e:75:ac:62:ec:4a:9f:a2:12:
82:2d:8b:38:53:65:8c:39:86:29:72:ab:3f:52:47:f7:59:3c:
5c:28:26:7f:94:42:9f:05:66:33:e2:75:9f:8a:d6:b8:73:ee:
cb:14:45:54
-----BEGIN CERTIFICATE-----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Generated at Wed Aug 28 04:47:14 2024 by rpki-client on console-ams.rpki-client.org