Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139352e302f32342d3234203d3e20323037373837.roa
File: 34352e3133372e3139352e302f32342d3234203d3e20323037373837.roa (raw, json)
Hash identifier: dl2gtaXwpS6eymHp7VFNOigl2YhawostijBU8VpeMCM=
Subject key identifier: 4E:7E:EC:BB:E8:D2:04:71:0F:EB:E6:A8:2E:FC:05:73:86:75:42:58
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 4E3691F68E5E138A986D13FF7827065777B6D2DF
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139352e302f32342d3234203d3e20323037373837.roa
Signing time: Fri 27 Dec 2024 11:47:22 +0000
ROA not before: Fri 27 Dec 2024 11:42:22 +0000
ROA not after: Fri 26 Dec 2025 11:47:22 +0000
asID: 207787
IP address blocks: 45.137.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Feb 2025 10:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:36:91:f6:8e:5e:13:8a:98:6d:13:ff:78:27:06:57:77:b6:d2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:22 2024 GMT
Not After : Dec 26 11:47:22 2025 GMT
Subject: CN=4E7EECBBE8D204710FEBE6A82EFC057386754258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:76:6b:72:ed:04:4a:76:75:f3:59:52:9e:0a:
56:70:6b:2c:90:40:65:b9:33:eb:e3:99:e2:78:af:
c7:42:5b:a1:27:8f:33:9b:44:c0:e6:08:9f:13:e2:
84:a2:fd:44:f3:dc:1d:30:11:55:94:8a:23:8e:9e:
b4:2e:88:9b:4b:d9:8b:1d:37:7e:8b:e4:1c:8f:0e:
ab:fa:73:41:a8:30:81:e9:6d:a0:79:6e:38:6b:3c:
f2:94:62:95:a1:f6:98:93:4c:50:4b:e2:80:c1:cc:
8a:69:61:8e:04:81:e9:46:4a:33:81:d8:78:ce:54:
2a:8e:d8:e4:70:0e:91:a4:d1:5a:74:09:74:ac:b9:
85:91:33:65:3f:80:36:52:55:b3:a1:ad:ff:64:0e:
b3:56:77:a5:b7:85:0d:40:9c:26:ee:4f:1e:ba:b6:
4c:4f:e3:c5:91:e5:eb:20:71:c2:a0:ff:a1:da:ec:
20:d2:c1:f8:ba:20:1d:ee:6b:57:d6:e1:37:e4:ee:
97:61:89:00:8a:05:a9:88:77:a3:e3:ad:3d:9a:5d:
a9:01:73:35:8e:3e:97:f3:db:d0:ca:88:8c:28:a7:
17:41:1a:63:c5:89:34:24:82:b8:a4:bc:42:29:3f:
bc:66:bc:53:7e:a2:c4:1c:6d:b1:7b:13:bf:19:81:
2e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7E:EC:BB:E8:D2:04:71:0F:EB:E6:A8:2E:FC:05:73:86:75:42:58
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133372e3139352e302f32342d3234203d3e20323037373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.195.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:15:af:1d:94:cb:08:d1:45:1f:dc:9b:df:b5:ef:12:8d:41:
24:0d:e3:56:5e:ce:ea:11:3a:22:1f:39:d8:0c:80:c1:96:e6:
a1:17:f3:ab:34:a7:b3:f7:53:c9:ca:b8:c1:bb:d0:a3:1d:5f:
cf:d9:5a:28:11:9b:60:78:fc:58:14:1b:4e:62:c8:40:c8:4c:
d7:64:8b:81:df:cf:bd:e0:f7:07:c4:97:9d:ac:bc:49:34:a2:
c3:6a:dd:22:4f:9d:ce:3e:89:f6:75:4c:11:12:b8:f4:f2:00:
06:b4:b4:ed:37:6a:8f:b0:31:a7:40:d7:35:6f:f6:99:70:c6:
d9:c6:86:46:ba:dd:70:d8:bd:77:ec:6d:ec:e4:55:34:9e:f8:
b4:39:ab:1b:15:ea:26:b4:cd:1e:99:c7:2a:01:9c:ed:93:7b:
61:de:07:95:98:d9:08:95:09:18:77:62:af:30:4f:b6:3b:f5:
10:34:bc:96:27:f3:43:07:b9:c7:f4:46:49:6c:04:65:2b:8f:
b8:1d:9b:c2:74:99:19:b8:0e:9f:af:90:14:0b:b5:21:97:fb:
b9:ef:63:c4:5d:4a:bc:1e:66:e8:c5:e0:d9:64:d1:9d:95:a3:
b2:57:18:9f:a3:ce:6e:a8:6f:cd:92:b6:90:79:87:60:55:a3:
ea:a2:67:a0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 12 16:17:36 2025 by rpki-client