Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e203437353835.roa
File: 34352e38312e35382e302f32342d3234203d3e203437353835.roa (raw, json)
Hash identifier: YPVZrNxpKhvicNij/zn/owE9DVFJ5ZpCRcz7qgswkzE=
Subject key identifier: 70:5A:A4:F3:A2:45:49:5F:82:69:FA:66:4E:6F:15:C6:57:38:A8:31
Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Certificate serial: 2B76BB4D67536EC6A358A76A48E222D187AAC490
Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e203437353835.roa
Signing time: Wed 17 Apr 2024 11:49:35 +0000
ROA not before: Wed 17 Apr 2024 11:44:35 +0000
ROA not after: Wed 16 Apr 2025 11:49:35 +0000
asID: 47585
IP address blocks: 45.81.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 10:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:76:bb:4d:67:53:6e:c6:a3:58:a7:6a:48:e2:22:d1:87:aa:c4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Validity
Not Before: Apr 17 11:44:35 2024 GMT
Not After : Apr 16 11:49:35 2025 GMT
Subject: CN=705AA4F3A245495F8269FA664E6F15C65738A831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6b:59:4d:24:60:00:d4:e7:ce:69:3b:8f:75:
1d:bb:e2:39:39:20:f5:50:10:83:64:fb:83:7c:21:
76:37:c9:f8:cc:de:9f:61:80:62:1c:14:9c:6f:68:
46:e6:1d:a0:c0:41:fb:38:f2:a9:64:8c:c1:94:c6:
c6:3f:dd:f8:54:e0:44:a0:7f:2c:ee:35:ba:96:d4:
43:32:b8:fd:60:ee:e1:ad:28:ff:67:16:48:f7:d0:
36:8c:61:82:62:5e:97:73:30:d8:dc:26:31:61:b8:
35:d6:1a:0b:10:dd:9d:1e:ab:df:4d:55:bb:88:96:
93:99:2d:e7:67:ae:df:60:c7:3c:4c:74:c4:ce:c1:
de:8c:ed:9b:8a:4b:bb:20:74:76:9d:c5:62:33:5e:
28:f2:73:c8:9a:ab:b8:be:46:5c:d5:a0:fa:c0:ef:
38:c0:0e:23:71:bb:8e:4c:ed:47:01:ef:42:9b:cb:
0a:6c:05:23:22:0c:48:eb:c6:b5:b1:3c:73:8d:7c:
5a:c5:74:4e:3f:e6:e0:7b:46:88:9d:a9:7f:80:3e:
3b:69:a8:49:33:4d:d3:5c:ab:a3:48:65:20:80:f3:
f4:3d:2a:1d:b4:0b:fd:ae:1f:29:51:f1:f3:19:46:
58:bf:04:06:56:5d:90:7e:28:76:fb:b7:75:bc:3f:
a4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5A:A4:F3:A2:45:49:5F:82:69:FA:66:4E:6F:15:C6:57:38:A8:31
X509v3 Authority Key Identifier:
keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e203437353835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.58.0/24
Signature Algorithm: sha256WithRSAEncryption
66:00:9f:79:aa:94:54:bd:f9:42:2a:72:b7:e4:34:ec:c5:5b:
5a:97:90:d8:c2:20:b1:82:1c:38:86:f3:d4:a5:47:37:58:b4:
f6:c5:02:c5:75:20:a1:bb:cb:8a:84:81:fd:d6:bd:7a:f2:c3:
d8:b9:0e:c5:8a:cc:5a:0f:a7:0f:2e:3c:7a:c0:cb:2f:2b:70:
53:7d:61:28:fd:7e:be:55:66:98:73:84:bd:0a:e8:1c:40:a5:
af:00:42:05:f7:43:4d:c8:a6:d0:bb:ff:0a:e8:77:e7:44:8a:
24:66:59:cd:92:3a:b1:5f:34:5c:a1:c9:70:83:19:63:04:aa:
33:8b:4e:bf:03:b1:07:94:c8:5e:dc:d8:26:88:5e:58:a0:3f:
a0:c4:5c:ae:ee:ab:c1:16:f1:bb:b1:a0:86:0c:4e:2e:66:6b:
15:ff:90:36:88:af:e0:2b:33:90:dc:23:28:06:25:d7:c6:ec:
0a:22:a4:da:e8:49:af:96:59:ae:ec:ff:4f:d0:94:f3:d6:eb:
0d:4f:0d:00:12:82:03:30:25:14:ae:b6:f4:ec:64:71:85:4c:
2c:8f:b4:af:24:66:d4:c4:69:1b:62:49:a3:2a:d0:1e:0c:21:
95:77:f1:5d:1c:e9:90:dc:1c:cd:a0:a5:62:c9:24:b0:c7:70:
09:fc:b2:2f
-----BEGIN CERTIFICATE-----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Generated at Thu May 2 13:56:35 2024 by rpki-client on console-ams.rpki-client.org