Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215181.roa
File: AS215181.roa (raw, json)
Hash identifier: UIYmWpBiqROp5jNv1GFFTgGaQCsxn72492lSRKB71Jo=
Subject key identifier: F4:DE:CD:A6:E4:DB:F6:C1:33:4C:17:AD:6C:7F:0E:DC:97:6C:AA:25
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1CFE5E5BD5927010230AD33ECDB2A3B59BB8E453
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215181.roa
Signing time: Tue 07 May 2024 19:23:01 +0000
ROA not before: Tue 07 May 2024 19:18:01 +0000
ROA not after: Tue 06 May 2025 19:23:01 +0000
asID: 215181
IP address blocks: 181.215.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 20:44:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:fe:5e:5b:d5:92:70:10:23:0a:d3:3e:cd:b2:a3:b5:9b:b8:e4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 7 19:18:01 2024 GMT
Not After : May 6 19:23:01 2025 GMT
Subject: CN=F4DECDA6E4DBF6C1334C17AD6C7F0EDC976CAA25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:80:8e:3c:c8:c0:8d:35:b0:43:93:e6:c9:
d4:98:25:5a:0f:45:1d:de:63:1d:50:dd:44:c7:28:
80:9d:6b:c1:e7:12:82:ce:4b:86:e9:30:37:de:0f:
49:6b:c4:09:89:f4:92:7e:93:e5:82:59:27:c0:43:
18:c0:8b:02:2f:bb:46:1f:ba:12:b8:b7:93:ef:9c:
95:e6:25:1d:7e:5c:c7:a3:30:db:f2:18:28:57:ca:
49:ec:b7:4c:a2:28:9c:e7:ea:a4:24:36:63:3f:2f:
e1:bb:9e:22:31:ed:e5:4a:ec:c5:b5:74:fa:49:dd:
07:17:ff:d3:f0:86:fb:b0:65:ee:cd:31:d3:73:6b:
80:ce:3f:1d:95:ae:18:b4:6e:5c:d8:61:ca:1d:ac:
21:aa:06:7d:d7:03:59:42:34:d4:aa:95:bc:dc:4c:
c1:65:40:9a:59:24:8f:4a:8e:15:b6:2f:75:42:7b:
a9:ab:29:89:f0:8c:9a:d4:bc:6e:9e:d3:29:c6:93:
42:cb:eb:ab:46:b5:64:91:84:97:8a:25:6f:90:82:
56:65:94:09:35:55:9f:65:66:23:c1:b8:47:65:6d:
fb:94:a3:64:1e:04:c7:be:70:9b:54:82:2e:ef:60:
b9:ca:d6:ca:d8:96:71:47:37:e0:94:94:33:ac:0e:
5b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DE:CD:A6:E4:DB:F6:C1:33:4C:17:AD:6C:7F:0E:DC:97:6C:AA:25
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215181.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.225.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:54:19:f1:9d:d6:82:bc:f5:97:71:00:90:3f:60:b7:23:38:
96:4d:da:28:e3:67:7d:0a:c1:2d:b2:c8:df:4d:a3:a9:c7:55:
f9:ec:48:31:a8:9d:6d:4c:f3:8a:0b:03:39:36:db:c0:00:45:
7e:10:9e:c8:e5:fb:fc:94:5a:b0:fc:6e:9b:5c:88:1b:3f:3a:
f0:20:0d:d7:ce:72:e3:5c:6f:4b:bb:eb:04:9a:5f:57:82:87:
e9:a3:d7:30:e0:92:49:36:33:42:58:51:fd:c8:21:6d:50:da:
62:6c:61:17:fc:09:68:fd:f7:d1:80:9d:99:ee:cd:01:2f:df:
7c:fd:eb:3e:a1:59:2a:9a:b1:16:af:08:79:ea:13:04:8f:9b:
14:e6:80:ed:1f:c4:9f:15:75:da:ae:12:39:a6:37:6b:28:86:
c8:13:7c:07:aa:ae:cb:bb:70:95:29:8f:ed:7e:20:90:ef:00:
b5:1f:73:dd:7c:58:b0:a4:41:01:39:dc:96:2c:9a:7a:fe:c6:
29:78:94:a3:74:14:9d:ef:2e:b5:62:0e:da:85:71:7a:aa:a8:
f8:0e:f6:60:89:57:b3:f7:c1:43:02:4c:40:f0:3b:d0:07:94:
c3:1d:9e:80:94:ea:fa:34:7c:83:ca:dd:7d:49:0c:a1:db:03:
ab:72:17:29
-----BEGIN CERTIFICATE-----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Generated at Sun May 19 22:15:57 2024 by rpki-client on console-fra.rpki-client.org