Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/34352e382e3137322e302f32342d3234203d3e20383334.roa
File: 34352e382e3137322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: RKLu40NIAidhcr5WR99a5SxOC8CBlJAjOhI6mmdaKHE=
Subject key identifier: 1D:8D:A5:60:6E:72:B3:EC:31:07:54:0F:90:41:88:03:A8:43:8F:C8
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 739EFF150973C8457CBABD8368C699E0F84FFEB3
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/34352e382e3137322e302f32342d3234203d3e20383334.roa
Signing time: Fri 01 Nov 2024 11:08:09 +0000
ROA not before: Fri 01 Nov 2024 11:03:09 +0000
ROA not after: Fri 31 Oct 2025 11:08:09 +0000
asID: 834
IP address blocks: 45.8.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 15:56:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:9e:ff:15:09:73:c8:45:7c:ba:bd:83:68:c6:99:e0:f8:4f:fe:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Nov 1 11:03:09 2024 GMT
Not After : Oct 31 11:08:09 2025 GMT
Subject: CN=1D8DA5606E72B3EC3107540F90418803A8438FC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fa:3f:9b:83:9a:f0:90:2f:d5:4e:91:e2:d3:
af:c7:3d:6b:46:a2:00:34:5e:ca:a9:56:be:4d:3a:
5e:69:f1:4b:18:54:c6:f7:95:07:ce:6e:2d:71:f3:
56:62:d7:3b:48:d1:44:e7:3a:24:7f:08:94:c9:db:
a9:79:e8:77:10:6c:20:22:40:9d:7a:4d:c0:92:85:
13:9c:a9:c9:49:d4:67:6b:1d:80:57:6c:f1:bd:f0:
df:22:a3:20:1a:54:c5:7b:3c:f7:6e:a7:5d:5d:7f:
86:6a:2a:ca:c5:fd:6f:e9:56:20:9c:2a:fa:f4:9b:
88:68:10:e6:15:9e:23:f8:06:c3:e1:3c:66:eb:0e:
7b:89:b9:27:22:46:76:73:31:64:21:a5:f9:bc:af:
bf:12:40:d6:5d:9c:06:0f:c3:37:48:41:0c:f2:4b:
e8:f1:9e:6f:f0:dd:7c:7a:94:99:21:a0:8d:94:c1:
4e:1a:2f:31:f0:af:fd:61:79:56:70:a6:0c:df:0b:
8e:71:20:db:1c:cc:70:99:15:98:35:7f:e5:d9:cf:
cf:e3:c1:61:a4:fd:2e:3f:b3:3f:5f:6f:45:91:b6:
b3:4d:f3:f3:f2:45:ce:85:0e:dd:60:de:f2:b8:53:
47:73:e1:51:ac:20:1e:6b:20:82:c1:ad:ee:9b:96:
5c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8D:A5:60:6E:72:B3:EC:31:07:54:0F:90:41:88:03:A8:43:8F:C8
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/34352e382e3137322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.172.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:64:f3:19:92:89:91:3c:18:d3:60:79:9a:b1:0b:ce:cd:0d:
41:55:fc:66:11:bc:4f:3b:26:06:78:8a:ac:f3:b2:09:0a:f1:
72:03:e7:6e:a6:c6:fc:a7:6d:8c:53:9d:a4:18:44:ae:ad:9f:
7a:fe:30:09:61:69:56:b5:63:6e:e0:0b:88:5c:56:67:f8:22:
fa:a9:44:bf:6c:ff:c0:91:ab:2d:04:75:d6:3b:33:f8:40:cf:
14:23:fd:73:39:2b:6c:8a:dd:74:14:55:bd:e3:b0:c6:c4:29:
1b:02:01:ad:d7:84:9b:b3:6f:54:8f:cc:6c:9d:be:ba:ed:49:
ea:04:b3:19:fd:27:c0:db:4a:21:9a:33:55:aa:9d:79:89:38:
9c:84:65:ce:86:05:c5:12:ad:19:c9:0e:3b:28:20:e5:6f:f0:
e4:96:2f:26:47:b1:70:4e:27:6c:90:56:21:79:10:b5:87:da:
63:dd:2d:48:f5:79:e8:b3:9a:85:cd:88:70:9d:32:09:63:7a:
84:ce:b0:2a:68:2e:19:04:ce:f6:a3:37:66:1b:f4:18:93:7c:
8c:63:5f:ef:63:cf:c3:61:b5:5e:da:44:56:cb:5f:67:38:4c:
9d:82:61:fc:60:e2:20:8d:d6:dc:fe:49:ff:e3:3d:d2:ad:1d:
cd:23:74:57
-----BEGIN CERTIFICATE-----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Generated at Fri Nov 1 18:17:07 2024 by rpki-client on console-ams.rpki-client.org