Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e203631333137.roa
File: 34352e3132392e33342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: dDQwSnjxHMCt28cAofkPDBsAMbjxirPh/Aj2N6xVyE0=
Subject key identifier: C0:33:E9:08:B4:D9:26:B2:2A:32:46:62:D8:04:9A:40:E5:1E:15:C9
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 0A41A508FA3C48E78246C772176EBF0E8D3866DB
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e203631333137.roa
Signing time: Mon 26 Feb 2024 08:52:49 +0000
ROA not before: Mon 26 Feb 2024 08:47:49 +0000
ROA not after: Mon 24 Feb 2025 08:52:49 +0000
asID: 61317
IP address blocks: 45.129.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 07:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:41:a5:08:fa:3c:48:e7:82:46:c7:72:17:6e:bf:0e:8d:38:66:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:49 2024 GMT
Not After : Feb 24 08:52:49 2025 GMT
Subject: CN=C033E908B4D926B22A324662D8049A40E51E15C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b4:dd:fb:e7:be:08:fb:f7:ea:d7:3c:f9:1b:
2d:1d:58:ce:af:64:93:70:78:69:ce:0b:ef:33:8c:
b3:ae:99:40:9e:d0:63:ea:f3:2c:ad:18:3d:d5:19:
ef:30:6a:61:46:e1:93:37:33:e8:1c:bc:a8:e9:fe:
0b:af:f4:ef:d1:fb:16:ed:0a:37:91:2a:ad:41:cb:
60:72:99:5b:a0:4e:d0:28:42:e8:6d:8a:35:e9:26:
a1:6b:4c:e3:33:4c:26:65:36:e8:f7:10:11:27:21:
ed:4d:c5:c9:91:22:3e:26:51:a6:53:f4:30:58:3a:
74:77:82:9b:aa:0b:6d:c5:7e:33:e5:08:c2:d1:40:
8c:fb:8a:69:82:24:44:d6:9b:aa:aa:1d:58:99:6d:
16:9a:1d:e9:8f:01:9e:1d:7b:29:81:56:ab:03:bb:
30:64:ff:81:20:dc:98:8f:dc:3e:99:41:ba:09:61:
0f:51:69:d0:c1:e6:a0:f0:9c:ac:82:3d:42:93:e0:
a7:e6:ed:ed:4a:4a:37:ec:c2:6b:1e:a0:0f:23:eb:
84:b7:f2:ed:5f:b2:ef:71:76:eb:de:cf:e9:60:40:
1e:48:a3:e5:5d:ea:45:30:ab:f4:48:08:41:dd:3d:
d7:26:cd:3a:09:06:dc:35:c0:79:78:5b:c2:1c:cd:
85:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:33:E9:08:B4:D9:26:B2:2A:32:46:62:D8:04:9A:40:E5:1E:15:C9
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.34.0/24
Signature Algorithm: sha256WithRSAEncryption
35:51:09:4e:af:28:41:43:06:b4:95:c7:4e:55:71:08:e5:f1:
97:91:14:fb:1d:08:05:9c:0f:b1:d0:b1:1d:a8:f5:94:2d:c9:
c1:fa:7d:57:34:00:bc:04:1a:b4:4c:4c:69:11:47:3f:bb:0a:
20:a5:f0:94:ef:c8:36:a7:91:96:db:c7:01:6d:3c:57:5b:9e:
77:0e:2f:93:81:33:4d:64:a1:fd:42:e7:9a:72:c7:f9:89:28:
5d:3f:b0:13:fc:fb:16:21:b0:92:44:43:3d:98:4b:fa:05:93:
81:7c:a4:87:29:0e:8f:17:1d:34:89:bf:53:c2:b5:76:00:d3:
a6:c9:7a:40:c9:e0:31:c4:1d:6e:93:8b:a0:8d:09:8e:a0:ec:
3b:4b:17:db:31:7d:7b:83:74:32:3d:03:f0:22:8f:e5:fe:ba:
87:d1:12:8d:d6:d3:18:15:24:2b:9d:9d:b6:23:41:5d:0e:56:
43:d2:91:64:4e:cd:fd:89:20:49:f6:c7:9c:3c:e9:b8:b0:ea:
e3:b1:2e:63:9f:d8:7e:ec:a9:57:3e:76:73:fb:02:33:e7:85:
bc:c8:23:4f:96:bc:8a:1f:6e:27:81:14:e4:13:0b:00:1c:f1:
1f:65:f2:5e:f3:cd:9a:90:27:03:7f:69:3c:07:c3:ac:40:56:
c0:47:8e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 18 11:46:55 2024 by rpki-client on console-ams.rpki-client.org