Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133392e302f32342d3234203d3e203432393934.roa
File: 34352e39312e3133392e302f32342d3234203d3e203432393934.roa (raw, json)
Hash identifier: vdyJbCfLQfh/k8BnlSXVQsHzFPnYhSmdaa8L7hWQNzE=
Subject key identifier: 7D:E2:7D:8F:BC:B5:84:51:20:D7:F7:20:F8:E3:50:0F:CC:07:63:75
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 427219D9B3AFACE4FB12B67DB7854863A9042F0C
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133392e302f32342d3234203d3e203432393934.roa
Signing time: Tue 02 May 2023 16:10:28 +0000
ROA not before: Tue 02 May 2023 16:05:28 +0000
ROA not after: Tue 30 Apr 2024 16:10:28 +0000
asID: 42994
IP address blocks: 45.91.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:72:19:d9:b3:af:ac:e4:fb:12:b6:7d:b7:85:48:63:a9:04:2f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: May 2 16:05:28 2023 GMT
Not After : Apr 30 16:10:28 2024 GMT
Subject: CN=7DE27D8FBCB5845120D7F720F8E3500FCC076375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:8c:16:43:c3:cf:ad:ac:0a:a1:83:08:55:
ee:6c:7d:cf:b3:1b:ac:6b:e9:9d:bc:a1:26:c6:e7:
8b:28:47:b2:22:9a:5c:43:30:8a:0d:83:ee:19:cc:
8e:66:fe:37:a1:24:2b:74:f3:20:47:a6:cf:9d:4d:
ac:65:f3:f3:62:23:6b:c3:d6:bd:95:bb:ea:ac:53:
6e:49:e6:c5:dc:21:a8:5a:c8:63:82:2c:9b:6c:6e:
f9:7b:e7:5f:2e:37:3f:ae:2b:b7:b6:80:e1:14:3b:
e0:f1:bc:56:8a:64:c5:f2:22:dc:e1:5f:89:8f:ea:
c2:27:08:df:b8:99:a8:09:78:e2:25:43:46:56:35:
6d:92:25:7a:e4:8d:1b:fc:6b:d3:54:60:2d:e3:2f:
26:f1:c5:22:db:2f:cb:ae:55:ec:07:db:36:74:55:
8f:75:48:c9:84:f5:81:9a:b6:f8:9f:c7:3e:03:46:
e3:db:e2:4a:22:d2:a0:b5:40:bf:59:7f:d9:13:5f:
fc:ad:20:12:e1:f8:bb:fa:8f:ea:af:47:09:88:1e:
6f:91:2c:49:28:2a:5a:4f:e0:d7:dc:2d:2e:b7:f0:
5f:0c:e0:d6:da:44:84:9e:7a:8e:f5:1b:ad:58:0d:
40:0a:58:69:2f:82:d6:75:43:db:68:04:87:dd:cd:
ca:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:7D:8F:BC:B5:84:51:20:D7:F7:20:F8:E3:50:0F:CC:07:63:75
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e39312e3133392e302f32342d3234203d3e203432393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.139.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b6:49:b0:98:6d:46:7b:a5:8b:84:32:eb:61:5e:57:2d:a9:
f9:0f:22:a7:51:87:33:29:f5:9d:82:1d:f2:b9:ac:d4:e3:69:
0e:8f:b8:d8:c6:97:17:dc:b3:48:7c:46:2e:23:c1:05:85:b1:
3c:47:4a:90:45:bd:4d:20:ed:62:4c:82:ee:06:47:0b:b6:33:
fa:e7:4b:c5:34:6c:45:95:5e:8d:33:c6:e9:10:7d:af:db:b2:
57:52:fa:ee:19:ac:64:bf:00:05:59:7e:41:d2:71:c4:a4:7a:
1a:dd:4c:4c:40:6a:ff:57:e6:2f:00:2c:c5:c1:b0:87:5c:c8:
98:c5:1b:78:ba:3f:4a:1b:84:8b:d5:ee:49:d6:ee:bd:a3:25:
f6:51:c7:97:04:5d:17:12:23:a1:aa:39:60:7e:3d:26:94:0c:
e0:4b:75:7d:fe:3e:93:4c:40:d4:b1:4d:5a:49:fe:78:e0:00:
08:16:c4:3a:c2:be:1a:91:04:66:7f:7d:3a:bf:9a:dd:53:ac:
a6:33:9f:dc:59:90:31:4c:5f:16:72:71:e1:05:14:0b:5a:e7:
d9:da:5f:37:12:c1:cc:9d:f9:ee:e0:6b:c7:9f:43:1e:29:60:
c5:e5:2d:f4:7a:65:82:09:81:f3:97:4d:9b:a6:ab:f1:6c:d4:
f5:4a:c3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org