Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35362e302f32342d3234203d3e203633303233.roa
File: 34352e38312e35362e302f32342d3234203d3e203633303233.roa (raw, json)
Hash identifier: lJheSRe8T+twpgCxUFRPKmGkHxghV4iFB6QckpX7ktA=
Subject key identifier: 03:94:64:AA:1C:C1:29:10:CF:21:72:BF:A4:66:89:FF:D8:52:92:5E
Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Certificate serial: 2A7A0FF3FE0ADFBB8578A5101B364BE8C4E974D5
Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35362e302f32342d3234203d3e203633303233.roa
Signing time: Thu 02 Mar 2023 12:54:54 +0000
ROA not before: Thu 02 Mar 2023 12:49:54 +0000
ROA not after: Thu 29 Feb 2024 12:54:54 +0000
asID: 63023
IP address blocks: 45.81.56.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:7a:0f:f3:fe:0a:df:bb:85:78:a5:10:1b:36:4b:e8:c4:e9:74:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Validity
Not Before: Mar 2 12:49:54 2023 GMT
Not After : Feb 29 12:54:54 2024 GMT
Subject: CN=039464AA1CC12910CF2172BFA46689FFD852925E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f6:bc:4a:64:cd:2a:43:49:ac:2d:78:7d:06:
73:de:02:21:1e:8d:d3:55:26:0a:1e:93:4f:e6:48:
09:84:4a:19:93:ce:d7:59:93:ba:7b:13:b1:26:c6:
69:f5:fb:6a:ef:53:a3:6c:d2:fc:4b:f8:69:38:30:
b8:89:2c:62:d1:56:c9:d5:74:14:3b:42:c1:80:2a:
03:6a:7f:bd:68:e1:67:29:06:67:f1:2f:1c:f8:d2:
fe:a5:8a:a9:8e:5d:f8:bf:7e:58:a5:01:98:1a:31:
66:25:b3:40:42:bd:c6:53:63:00:36:68:07:78:c7:
b2:d7:d2:b3:76:48:71:17:a2:bb:ca:58:88:a3:ee:
66:d3:ab:c2:d4:c9:37:d0:7c:fd:15:3a:5a:99:59:
40:1c:64:e3:92:be:d7:f4:52:8a:d7:54:cb:28:7c:
e5:d2:5f:56:65:3c:1c:3b:54:63:ef:e9:9a:39:d6:
8e:53:e2:45:45:63:9c:09:ae:54:f0:6b:34:4c:76:
4c:4e:17:f6:e6:1e:c7:d0:d9:38:dd:d6:95:00:67:
4d:b5:a5:dc:f4:f4:10:a6:1b:67:37:77:f7:93:96:
2f:f8:22:92:e7:c3:18:a6:52:84:07:f5:6c:03:ad:
b9:32:a2:a9:9e:66:e3:19:54:ac:0c:4b:bc:ac:31:
d1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:94:64:AA:1C:C1:29:10:CF:21:72:BF:A4:66:89:FF:D8:52:92:5E
X509v3 Authority Key Identifier:
keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35362e302f32342d3234203d3e203633303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a4:ce:b2:ff:60:61:b2:43:81:69:62:12:25:3f:77:0b:72:
a8:08:26:67:e3:dc:0b:43:c4:cb:ef:18:eb:de:d2:54:f2:af:
c4:d9:06:73:fd:5a:54:0e:9e:27:55:a5:aa:a5:96:53:eb:05:
70:8f:26:25:7d:4f:ac:f5:ac:ab:ac:e0:6e:04:d1:78:bc:e6:
20:2a:57:7b:23:49:5e:da:20:39:32:5f:21:51:9f:53:78:72:
15:fa:c1:9e:22:fb:f7:9d:96:9f:f4:d1:20:88:bb:7b:e4:75:
91:c4:8c:ce:2f:ef:c0:cd:c7:4f:4b:94:f1:81:ab:a1:7c:4d:
be:b5:9c:23:77:88:fa:27:d0:2f:0c:04:dd:5a:20:75:51:2a:
0a:1d:2b:fe:de:00:37:62:9a:06:c8:96:71:49:75:3f:31:38:
16:7d:7c:8b:c6:17:a0:fa:7f:a4:b2:83:70:be:2f:14:27:75:
9b:d3:3f:8c:5b:1a:61:ed:79:0b:a8:03:3f:6f:1a:97:ec:f2:
cd:71:50:ec:b0:83:f4:3a:2f:29:9c:50:b2:3d:07:65:81:ba:
14:3b:19:dd:f6:e2:b3:27:c8:59:03:28:8e:fa:c0:ec:82:af:
e4:82:07:f6:5b:fd:05:b4:a5:09:aa:21:a7:9f:c4:d0:df:17:
89:ef:02:c9
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUKnoP8/4K37uFeKUQGzZL6MTpdNUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy
ZTkwZGRmZTAeFw0yMzAzMDIxMjQ5NTRaFw0yNDAyMjkxMjU0NTRaMDMxMTAvBgNV
BAMTKDAzOTQ2NEFBMUNDMTI5MTBDRjIxNzJCRkE0NjY4OUZGRDg1MjkyNUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv9rxKZM0qQ0msLXh9BnPeAiEe
jdNVJgoek0/mSAmEShmTztdZk7p7E7Emxmn1+2rvU6Ns0vxL+Gk4MLiJLGLRVsnV
dBQ7QsGAKgNqf71o4WcpBmfxLxz40v6liqmOXfi/flilAZgaMWYls0BCvcZTYwA2
aAd4x7LX0rN2SHEXorvKWIij7mbTq8LUyTfQfP0VOlqZWUAcZOOSvtf0UorXVMso
fOXSX1ZlPBw7VGPv6Zo51o5T4kVFY5wJrlTwazRMdkxOF/bmHsfQ2Tjd1pUAZ021
pdz09BCmG2c3d/eTli/4IpLnwximUoQH9WwDrbkyoqmeZuMZVKwMS7ysMdFfAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUA5RkqhzBKRDPIXK/pGaJ/9hSkl4wHwYDVR0j
BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj
Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2
UTNmNC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmYyNDU2N2It
N2E3NC00YzFmLWFhODUtZGQyNGFmNzNjY2JiLzAvMzQzNTJlMzgzMTJlMzUzNjJl
MzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzMzMDMyMzMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtUTgw
DQYJKoZIhvcNAQELBQADggEBABykzrL/YGGyQ4FpYhIlP3cLcqgIJmfj3AtDxMvv
GOve0lTyr8TZBnP9WlQOnidVpaqlllPrBXCPJiV9T6z1rKus4G4E0Xi85iAqV3sj
SV7aIDkyXyFRn1N4chX6wZ4i+/edlp/00SCIu3vkdZHEjM4v78DNx09LlPGBq6F8
Tb61nCN3iPon0C8MBN1aIHVRKgodK/7eADdimgbIlnFJdT8xOBZ9fIvGF6D6f6Sy
g3C+LxQndZvTP4xbGmHteQuoAz9vGpfs8s1xUOywg/Q6LymcULI9B2WBuhQ7Gd32
4rMnyFkDKI76wOyCr+SCB/Zb/QW0pQmqIaefxNDfF4nvAsk=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org