Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20323037343539.roa
File: 34352e38312e35382e302f32342d3234203d3e20323037343539.roa (raw, json)
Hash identifier: fZ+ODsrftwglJZCSUNO3kbgOVUy0rW6iiHGLpV5yOLs=
Subject key identifier: 81:49:4B:F2:9C:E0:12:E9:86:12:50:62:65:88:09:6B:30:4D:39:79
Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Certificate serial: 3C6E8BD2EDEB0EDBBBAC86521631A9EEF5420821
Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20323037343539.roa
Signing time: Thu 02 Mar 2023 12:54:54 +0000
ROA not before: Thu 02 Mar 2023 12:49:54 +0000
ROA not after: Thu 29 Feb 2024 12:54:54 +0000
asID: 207459
IP address blocks: 45.81.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:6e:8b:d2:ed:eb:0e:db:bb:ac:86:52:16:31:a9:ee:f5:42:08:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Validity
Not Before: Mar 2 12:49:54 2023 GMT
Not After : Feb 29 12:54:54 2024 GMT
Subject: CN=81494BF29CE012E9861250626588096B304D3979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:62:4f:da:7b:8c:d2:44:66:6d:ca:8a:fd:
52:af:ca:47:4a:ec:23:a5:15:dc:ed:99:3d:b8:a1:
3f:a8:49:e5:fe:91:4c:77:8e:06:35:66:9e:96:5a:
f8:9a:99:45:f9:f9:3b:14:cf:e0:07:99:ab:b3:e7:
2a:9a:c2:1c:50:16:92:36:34:e1:d1:12:ee:41:d7:
c5:ee:9f:d4:a3:80:de:9f:f7:80:c3:f1:fc:9b:49:
ed:aa:07:22:89:81:f5:47:04:4e:23:c4:db:12:99:
b8:56:5b:a0:96:44:5b:82:4c:69:67:27:f7:e9:af:
63:7a:d2:ef:11:d1:50:e0:81:a3:2a:b9:b1:2c:48:
12:71:ba:98:68:b8:4d:c5:f0:f0:01:ed:2f:68:82:
cd:7c:78:af:1e:26:67:fd:27:a0:46:a8:8b:4d:e6:
78:2d:d4:7c:a5:4a:b9:c2:ac:4b:7e:c1:46:fb:c3:
0e:fe:10:f2:dd:db:1a:e3:78:26:6f:e7:69:13:2e:
f6:8e:1c:60:ae:d9:05:54:d7:70:e3:82:6c:d6:ba:
c2:86:93:47:04:7a:43:37:4b:23:6f:3b:7d:99:92:
54:f4:7f:b7:cd:da:3b:65:88:b3:11:20:a0:b0:f0:
9a:72:12:0a:9d:c6:bd:2d:b9:95:16:c5:22:69:07:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:49:4B:F2:9C:E0:12:E9:86:12:50:62:65:88:09:6B:30:4D:39:79
X509v3 Authority Key Identifier:
keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20323037343539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.58.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7f:25:90:f4:57:02:91:f9:fb:cc:50:6d:e0:97:48:82:77:
31:52:c7:45:ff:92:86:f9:b3:10:79:7b:4f:f8:47:23:32:7f:
31:62:f3:2c:86:91:b1:e4:cd:1d:6c:e9:96:52:d0:0b:23:df:
74:8d:29:b4:dd:c7:85:98:8c:7c:04:e8:e6:61:c7:a8:52:ec:
8d:03:67:6c:88:9e:db:51:9d:68:88:88:ba:18:de:cf:03:80:
0d:34:92:85:f2:39:7c:41:62:c7:a1:73:49:60:96:9c:8e:71:
ad:a5:0e:a6:c1:4a:1a:94:de:94:a5:08:4e:a5:8f:3f:21:04:
cd:a3:bd:89:f6:50:94:a3:05:15:1b:e4:82:1a:da:32:fd:52:
e7:03:5d:d9:2d:7d:e8:f6:82:41:f1:4c:c9:8d:8f:b7:5a:d6:
48:c1:0f:ce:b2:c8:ba:6d:92:12:ed:b4:83:74:29:2e:41:45:
27:ba:8e:f5:41:7f:f6:aa:c9:6c:87:4a:fb:68:cf:0c:1b:71:
2d:8b:e3:29:f8:80:f6:08:e0:2d:ca:e8:6f:af:7f:b8:96:ce:
4a:e5:ab:1d:cb:e7:2e:1d:43:72:a4:d0:39:b3:2a:a0:1b:5a:
32:70:a4:23:be:77:b8:5f:57:0d:21:a6:a7:12:b6:53:b7:58:
c4:85:43:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org