Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e20343030383636.roa
File: 34352e3134362e3130362e302f32342d3234203d3e20343030383636.roa (raw, json)
Hash identifier: CvtkuNfZOR0ndWamPulb68YxCqX8uDmqKXr7iCBnrMI=
Subject key identifier: 32:A5:37:54:78:D4:F5:4E:AC:25:A8:D7:01:27:C6:69:EB:20:09:76
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 7C8EB31D565A154F051E0150ECAE2DBFED8BAAE4
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e20343030383636.roa
Signing time: Tue 11 Jun 2024 09:54:34 +0000
ROA not before: Tue 11 Jun 2024 09:49:34 +0000
ROA not after: Tue 10 Jun 2025 09:54:34 +0000
asID: 400866
IP address blocks: 45.146.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 00:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:8e:b3:1d:56:5a:15:4f:05:1e:01:50:ec:ae:2d:bf:ed:8b:aa:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Jun 11 09:49:34 2024 GMT
Not After : Jun 10 09:54:34 2025 GMT
Subject: CN=32A5375478D4F54EAC25A8D70127C669EB200976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0f:61:ae:66:2a:8c:5c:bd:7b:cd:dc:c6:56:
7c:f3:aa:60:df:bc:78:59:1b:8f:d8:91:b5:df:de:
13:32:69:f3:8d:bf:6d:56:52:2e:ff:ca:da:bc:15:
28:12:6b:6b:77:ae:82:c5:d3:2f:cd:26:7f:bd:c8:
f1:dd:20:2d:35:88:38:f0:18:07:54:01:41:36:14:
ad:ce:c1:e4:92:43:d3:aa:8a:6c:0c:c7:a5:42:22:
93:5c:19:cb:ff:21:43:67:ed:a8:47:6c:4d:d5:6d:
a0:f9:71:0f:03:7e:2c:2e:79:30:06:8d:dd:bd:dc:
c6:a1:81:f1:6c:7f:18:ff:46:1a:33:c6:68:a5:52:
26:fb:84:ea:79:3a:97:fe:44:0a:f6:0e:e7:19:9b:
3c:e0:3b:2f:5a:ab:b1:d4:39:89:c0:35:3c:5f:76:
f1:af:80:9d:dc:bd:c8:ae:ac:de:56:57:9a:fe:79:
40:42:71:b1:08:e7:eb:71:c7:3c:7f:2a:d7:6d:3d:
eb:5e:db:27:6b:8a:a0:e4:0e:6b:94:63:15:96:a8:
69:bb:c8:d7:60:29:c4:42:23:e3:da:75:ed:96:c5:
3a:a7:5f:52:47:a2:78:dc:57:0f:e6:67:6f:af:32:
db:36:ca:df:e1:a6:2f:9e:47:cf:e7:31:1a:85:20:
3e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A5:37:54:78:D4:F5:4E:AC:25:A8:D7:01:27:C6:69:EB:20:09:76
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e20343030383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.106.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:ba:67:31:e5:ee:f8:fb:55:24:cf:a2:ea:3d:93:b3:ee:21:
39:62:68:cc:fb:6c:03:b9:8c:76:f7:2e:0d:32:68:dc:6a:ea:
4a:8a:96:28:4f:b5:83:0b:f8:89:a3:cb:b4:d8:6a:b0:d7:12:
01:87:2f:f6:62:79:42:ef:96:4b:c9:45:02:13:32:52:e2:1e:
22:80:6a:42:e1:17:c9:60:02:37:bc:98:7b:65:cd:a9:b2:c5:
35:4c:d7:d0:8f:a7:ff:72:bb:b7:03:48:5f:48:c7:23:79:14:
f5:3b:42:bf:85:48:99:00:18:60:ad:f2:07:b1:27:dd:43:cc:
59:fb:f8:c3:61:a7:48:10:67:29:48:40:45:13:79:96:7d:c4:
16:4b:93:ef:bc:65:bb:95:b3:23:22:0b:9a:8c:c6:6e:12:89:
65:1b:37:d5:43:84:cf:85:7d:ee:38:ff:96:a4:95:50:b0:fa:
ea:b4:f8:67:88:09:53:5a:57:8e:ae:a6:20:44:c2:9c:4f:e2:
2f:b7:63:a0:c7:e6:fb:d8:a8:10:11:33:07:38:58:00:14:f6:
de:b1:8a:05:6b:9e:af:d3:c6:07:83:6c:57:cd:76:34:ae:dc:
a6:b8:ec:47:53:c3:d6:78:97:80:f5:db:84:fa:33:87:22:10:
70:ab:4f:d4
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUfI6zHVZaFU8FHgFQ7K4tv+2LquQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yNDA2MTEwOTQ5MzRaFw0yNTA2MTAwOTU0MzRaMDMxMTAvBgNV
BAMTKDMyQTUzNzU0NzhENEY1NEVBQzI1QThENzAxMjdDNjY5RUIyMDA5NzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxD2GuZiqMXL17zdzGVnzzqmDf
vHhZG4/YkbXf3hMyafONv21WUi7/ytq8FSgSa2t3roLF0y/NJn+9yPHdIC01iDjw
GAdUAUE2FK3OweSSQ9OqimwMx6VCIpNcGcv/IUNn7ahHbE3VbaD5cQ8DfiwueTAG
jd293MahgfFsfxj/RhozxmilUib7hOp5Opf+RAr2DucZmzzgOy9aq7HUOYnANTxf
dvGvgJ3cvciurN5WV5r+eUBCcbEI5+txxzx/KtdtPete2ydriqDkDmuUYxWWqGm7
yNdgKcRCI+Pade2WxTqnX1JHonjcVw/mZ2+vMts2yt/hpi+eR8/nMRqFID4nAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUMqU3VHjU9U6sJajXASfGaesgCXYwHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzQzNTJlMzEzNDM2MmUzMTMw
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMwMzAzODM2MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAtkmowDQYJKoZIhvcNAQELBQADggEBANG6ZzHl7vj7VSTPouo9k7PuITliaMz7
bAO5jHb3Lg0yaNxq6kqKlihPtYML+Imjy7TYarDXEgGHL/ZieULvlkvJRQITMlLi
HiKAakLhF8lgAje8mHtlzamyxTVM19CPp/9yu7cDSF9IxyN5FPU7Qr+FSJkAGGCt
8gexJ91DzFn7+MNhp0gQZylIQEUTeZZ9xBZLk++8ZbuVsyMiC5qMxm4SiWUbN9VD
hM+Ffe44/5aklVCw+uq0+GeICVNaV46upiBEwpxP4i+3Y6DH5vvYqBARMwc4WAAU
9t6xigVrnq/TxgeDbFfNdjSu3Ka47EdTw9Z4l4D124T6M4ciEHCrT9Q=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:59:38 2025 by rpki-client