Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20323134373139.roa
File: 34352e3133322e39392e302f32342d3234203d3e20323134373139.roa (raw, json)
Hash identifier: VHhbqikfaeEZ3Bg3X1ziY8X3wF6wjQdGdSGb8w4u3MA=
Subject key identifier: 9E:D8:C2:7B:50:53:C5:AD:30:65:7E:3C:C8:71:5B:B1:CE:57:89:8C
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 0D41A509C4AFD73C94313C16E2FA07FCD28DD0BC
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20323134373139.roa
Signing time: Mon 26 Aug 2024 14:28:51 +0000
ROA not before: Mon 26 Aug 2024 14:23:51 +0000
ROA not after: Mon 25 Aug 2025 14:28:51 +0000
asID: 214719
IP address blocks: 45.132.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 10:40:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:41:a5:09:c4:af:d7:3c:94:31:3c:16:e2:fa:07:fc:d2:8d:d0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Aug 26 14:23:51 2024 GMT
Not After : Aug 25 14:28:51 2025 GMT
Subject: CN=9ED8C27B5053C5AD30657E3CC8715BB1CE57898C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:41:e7:61:e6:ba:d4:93:a5:fe:ff:80:e5:66:
f8:e6:bb:a3:4b:71:65:75:03:b0:b3:b9:80:ed:99:
9c:ae:3f:0a:ea:58:dd:9e:09:50:da:ad:75:71:fb:
b1:30:27:20:c1:ac:af:e0:cd:77:27:50:2e:d1:a9:
ba:d3:e4:24:72:95:fe:b3:09:c3:25:ba:d4:8a:b0:
9a:c1:35:ea:2d:6f:ab:06:ed:bb:f9:92:dd:88:9d:
76:3f:0f:40:12:e9:0a:39:47:59:8a:72:4b:c8:9c:
fb:ee:91:e9:ff:0a:2e:a0:fc:00:5f:4d:aa:73:d9:
20:39:0a:7c:87:7f:d4:d3:b0:01:f7:23:ac:c5:3c:
b2:bc:c7:a0:02:3f:33:2e:fe:e1:1e:70:c7:10:74:
b6:da:70:0b:df:d3:5f:3a:f0:dc:e2:05:6f:9e:12:
04:0f:d7:53:df:a3:79:f5:f1:34:49:e6:fe:8b:09:
8c:ca:d8:81:68:03:1f:5d:e1:80:98:e8:20:c6:48:
11:6e:72:92:21:97:05:48:bf:b5:77:c2:56:62:50:
77:09:fd:ad:b2:11:5c:af:d5:f4:da:45:b1:74:91:
7c:94:b6:53:62:f2:1d:ce:61:c3:10:2d:a5:93:52:
d6:c1:1d:16:30:48:82:c2:ec:63:89:78:48:d3:e6:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D8:C2:7B:50:53:C5:AD:30:65:7E:3C:C8:71:5B:B1:CE:57:89:8C
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20323134373139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.99.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:cc:f2:77:e7:95:76:10:cc:65:2c:03:45:79:54:aa:d3:1d:
cf:e0:85:c0:d6:d7:80:8e:6e:71:ba:e6:f7:2f:bd:f8:66:51:
5c:8b:32:58:f4:93:b0:ca:40:54:7c:cf:c5:3a:c2:39:26:a8:
63:bf:58:ca:01:e4:9a:b7:d1:43:b4:41:b9:db:af:f7:03:69:
68:df:d1:e8:35:54:c4:f3:50:26:90:2a:95:d1:84:8a:9b:c0:
27:fb:32:86:11:61:65:d0:57:e3:9c:f2:69:9a:3a:e5:25:d8:
48:a2:9f:18:72:89:a8:93:57:9b:0e:5c:cf:9e:1b:71:35:dc:
65:1a:70:de:ef:82:11:46:d7:14:29:93:40:91:b1:d7:4b:42:
5c:a5:78:59:5b:cc:13:86:4a:77:62:a1:d2:ff:57:75:75:08:
b2:6a:11:90:91:22:a2:b9:61:a7:e1:b9:bd:4a:be:ce:c9:ef:
f8:39:a3:07:06:36:f2:60:88:01:f1:15:f9:a5:c9:e4:83:e3:
e9:47:85:14:13:06:05:87:29:32:f6:04:a4:b8:8e:04:12:3b:
43:c3:b5:2f:be:2b:8f:e1:e2:cf:a6:35:83:35:8e:dc:26:31:
f6:f2:7f:f2:fe:be:74:25:76:93:46:e5:a3:2c:d8:b4:f6:d2:
47:a3:98:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:57:57 2025 by rpki-client