Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20383334.roa
File: 34352e3133322e39392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: bTpTaFKPPdt3TqeOYCE1Yh/ZxJ/YTuG2Z42q0+0XTaE=
Subject key identifier: EC:14:EE:DF:B5:0E:1A:EF:E9:6F:01:1D:41:09:A6:D0:CF:5A:FA:29
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 2A0B0F6AE28D8FB55FF3CF9522A85752E3BDF6A8
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20383334.roa
Signing time: Fri 27 Sep 2024 10:42:56 +0000
ROA not before: Fri 27 Sep 2024 10:37:56 +0000
ROA not after: Fri 26 Sep 2025 10:42:56 +0000
asID: 834
IP address blocks: 45.132.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 09:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:0b:0f:6a:e2:8d:8f:b5:5f:f3:cf:95:22:a8:57:52:e3:bd:f6:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Sep 27 10:37:56 2024 GMT
Not After : Sep 26 10:42:56 2025 GMT
Subject: CN=EC14EEDFB50E1AEFE96F011D4109A6D0CF5AFA29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:36:c9:2a:e2:9d:c3:99:5b:1b:d0:b9:6f:
ca:97:8b:dd:ba:57:e0:48:1e:60:0b:7b:1f:47:f2:
a9:56:25:d9:35:95:68:37:7d:ec:a8:ec:4f:6b:ac:
3c:b8:21:c4:6e:59:ed:64:8a:8d:86:61:f4:8b:36:
b4:e0:53:c6:c9:39:83:e5:3d:fa:7a:6f:7f:42:1a:
a1:2b:95:06:e3:27:05:e0:f7:b2:c6:6f:be:a1:af:
a5:31:af:a4:1e:10:74:fb:5a:df:f2:60:83:47:1d:
ab:85:e3:19:b1:96:39:59:7a:51:77:40:c2:05:78:
eb:f9:70:08:ea:3a:8f:1d:3e:4b:46:92:62:ef:55:
8f:51:64:fc:72:22:c0:e5:b6:a0:91:65:6a:7a:01:
be:c7:4e:84:b2:55:64:73:1d:74:24:42:e2:5a:0b:
8e:01:b1:28:98:5c:3e:25:6f:03:01:1b:56:ad:7a:
95:76:4d:de:26:cd:dd:27:95:6a:f1:a2:61:5c:df:
a7:25:4a:df:40:84:aa:f4:ca:9a:74:b2:00:ef:5b:
92:f5:f7:48:d6:aa:61:8e:38:78:e6:e7:45:be:2e:
b3:d0:2b:8c:f8:31:9e:c6:3f:e9:8d:cf:34:73:29:
2b:fe:b3:62:bf:10:d3:eb:b2:8b:e7:17:64:aa:34:
15:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:14:EE:DF:B5:0E:1A:EF:E9:6F:01:1D:41:09:A6:D0:CF:5A:FA:29
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.99.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:9f:13:d2:80:ce:10:1c:3f:d6:ed:b8:4e:63:bf:82:e1:05:
89:b8:b4:8f:19:fc:09:89:4b:c2:00:6e:89:5d:fa:62:13:69:
23:ab:28:29:8a:5a:13:18:2e:05:38:d2:cb:a7:39:50:e5:97:
f1:e5:ac:a5:9c:ac:32:bc:58:c5:23:8e:ab:27:0e:02:11:31:
5c:21:c0:4e:8e:a8:47:62:77:14:65:bf:89:c8:67:b0:a1:1e:
6a:59:d5:24:0d:99:5e:fd:8d:b5:7c:b7:df:0d:23:5c:51:8f:
58:f4:1d:d7:cf:dd:61:fd:19:a1:60:76:99:ab:42:2e:df:46:
73:55:60:68:d5:5f:a5:9a:5a:25:2d:7a:90:5e:77:a4:b9:9f:
ca:f8:34:07:fe:8f:12:a8:71:b8:be:0b:36:ff:c4:eb:d4:e4:
7c:13:73:cb:db:a9:9a:fd:7a:82:80:22:37:d9:ce:9d:3b:08:
19:ef:50:f6:6f:05:3c:8f:c4:34:97:d2:e6:62:3f:a5:fa:7b:
9b:f9:6d:75:4b:c2:ae:e3:2d:be:5b:e7:ac:9f:0d:e5:d7:ce:
a5:ba:96:2b:91:e7:90:da:97:09:69:b9:fd:b7:57:9b:b4:ab:
8b:d3:35:10:0c:92:e4:e7:89:c2:a6:b1:61:77:c9:af:df:32:
3a:48:1e:05
-----BEGIN CERTIFICATE-----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Generated at Thu Oct 3 10:49:54 2024 by rpki-client on console-fra.rpki-client.org