Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20383334.roa
File: 34352e38312e35382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 4dGMKQQFeYODNO8HpzIQUmtk/ZeK7de4pi/r/5EWns0=
Subject key identifier: 93:4F:D9:5B:97:F8:BD:6E:00:90:33:3B:D0:8C:09:5C:C6:36:ED:72
Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Certificate serial: 676AD003B2A3832055F80A678CEDB26A80D7CEDB
Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20383334.roa
Signing time: Thu 23 May 2024 17:52:05 +0000
ROA not before: Thu 23 May 2024 17:47:05 +0000
ROA not after: Thu 22 May 2025 17:52:05 +0000
asID: 834
IP address blocks: 45.81.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 08:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:6a:d0:03:b2:a3:83:20:55:f8:0a:67:8c:ed:b2:6a:80:d7:ce:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe
Validity
Not Before: May 23 17:47:05 2024 GMT
Not After : May 22 17:52:05 2025 GMT
Subject: CN=934FD95B97F8BD6E0090333BD08C095CC636ED72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:98:82:1a:fe:27:69:7f:77:db:f6:86:fc:05:
e3:ff:83:10:16:bd:9d:84:a1:7a:8b:3e:ed:3c:df:
f0:fc:fb:a2:2f:af:7f:c8:6a:89:61:65:1a:6e:8f:
29:df:11:d0:56:93:69:31:71:3a:2e:03:7a:31:82:
42:43:ac:3f:3a:94:14:6b:4c:65:3a:17:12:9d:93:
9c:3b:ea:09:c7:8b:40:3c:c6:7d:41:6f:93:9f:1c:
80:a3:67:c6:fa:4f:9f:c3:a7:54:b3:9c:a7:2e:1c:
fb:6d:d7:68:76:9c:a0:ad:1e:66:b3:71:e7:32:9b:
93:94:42:92:3b:ff:e5:4a:28:85:5a:7a:be:32:51:
e1:7c:57:54:a8:37:a2:f3:0e:b8:5d:99:25:78:e2:
3d:22:11:75:ac:9e:ad:7f:ab:1e:3e:5a:53:ba:12:
d7:3d:e9:db:b4:2c:06:4d:24:81:67:fb:16:3e:31:
d0:37:c0:da:28:2f:ff:ca:11:0f:2a:e7:ea:d2:fa:
87:de:1d:2c:10:d7:3a:9c:a5:08:3a:85:e8:fc:48:
85:9c:b2:a4:a5:34:cf:0c:94:c4:09:14:9c:f2:00:
7d:50:f0:18:38:3e:2c:d6:77:8f:e3:bb:ad:0e:0b:
f2:5b:fa:5c:3c:1b:45:85:1b:15:dc:d7:43:0a:ea:
07:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4F:D9:5B:97:F8:BD:6E:00:90:33:3B:D0:8C:09:5C:C6:36:ED:72
X509v3 Authority Key Identifier:
keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/34352e38312e35382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.58.0/24
Signature Algorithm: sha256WithRSAEncryption
70:19:4a:da:f4:8f:95:15:d4:60:00:ad:13:c9:ae:6d:db:4a:
1e:19:19:e9:a1:6e:f3:fd:3b:06:d3:21:af:2b:ff:5d:3e:1c:
44:61:f7:6a:a0:19:ff:27:a0:f8:7a:f5:d0:d8:f8:60:7b:2d:
d1:74:dd:3b:3e:7f:c9:7b:1b:16:b5:50:ef:ee:96:18:e1:cd:
91:87:ef:cd:37:b2:53:95:04:71:9c:17:df:33:03:8c:16:1e:
a9:c0:82:3b:a2:eb:2e:dd:df:c3:ee:16:b5:45:3d:48:f9:ad:
d7:cc:d4:f9:2f:ef:79:bb:0e:7e:92:b4:5a:7f:ad:6a:c6:06:
5d:10:4c:08:2f:40:dd:17:15:83:db:f4:d2:cb:dc:cb:5b:65:
94:80:07:7f:ed:da:62:49:dc:c7:00:13:6e:19:6e:21:ca:b5:
14:dc:aa:2a:5e:a1:24:7f:28:de:62:5d:f4:e3:52:b1:74:c7:
98:d1:60:bd:7d:04:87:c0:70:72:24:9e:81:c2:29:2d:af:df:
3b:e3:ce:2e:f0:fb:c3:14:82:a6:cd:8f:84:05:72:4f:55:e0:
15:b8:9f:70:15:c5:14:b2:ef:7b:9a:4d:8d:ec:20:c3:87:16:
14:1d:dd:45:a6:c9:3c:d1:bd:21:c9:ee:a0:ca:0c:75:29:f5:
42:39:02:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org