Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS398704.roa
File: AS398704.roa (raw, json)
Hash identifier: l01rG87que2s/FIzskvt7kitiBFleUKxqpgsJxdx53M=
Subject key identifier: 97:E7:00:A1:62:AB:CE:A3:20:B3:0B:32:A9:C6:12:F7:DB:51:3A:D0
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6063A65B0B574A4EEF3E15295BB289406772F630
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS398704.roa
Signing time: Thu 09 May 2024 13:29:03 +0000
ROA not before: Thu 09 May 2024 13:24:03 +0000
ROA not after: Thu 08 May 2025 13:29:03 +0000
asID: 398704
IP address blocks: 181.215.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 10:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:63:a6:5b:0b:57:4a:4e:ef:3e:15:29:5b:b2:89:40:67:72:f6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 9 13:24:03 2024 GMT
Not After : May 8 13:29:03 2025 GMT
Subject: CN=97E700A162ABCEA320B30B32A9C612F7DB513AD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:33:c0:70:a1:8d:6c:d4:fd:af:f0:3a:4d:f0:
0b:80:ba:ac:7a:3d:d6:8e:df:0a:13:3a:c4:64:aa:
d7:97:2d:b8:cc:6f:20:b1:fb:5d:f8:c5:41:11:22:
ec:73:1f:88:17:05:24:93:01:51:a5:99:32:1b:b3:
76:19:d1:35:7a:f1:40:d9:16:53:54:2c:d3:fb:ca:
02:7b:74:d6:22:75:6b:73:f4:21:fe:7c:c1:61:a6:
a7:ec:69:5f:a5:8a:8b:98:ef:53:84:3c:a6:72:3e:
f7:cc:91:6b:0f:96:03:4e:c0:45:ff:c6:bc:ec:98:
79:72:dc:40:5d:27:a5:b7:1c:26:3a:14:7e:f5:be:
ac:7a:77:60:85:ae:74:70:ff:f0:d2:ae:ea:e1:0b:
6a:99:1b:4f:c4:48:07:46:6a:5f:ad:1f:cf:01:21:
af:5f:71:2a:e2:8f:da:33:d4:0b:91:00:a6:da:44:
c6:9a:9d:d3:61:9d:02:34:2f:c8:3a:76:30:e7:c9:
5d:91:35:9b:43:17:4c:90:27:6d:05:10:40:5d:ce:
72:d2:8a:fb:49:2b:58:df:78:ec:d9:38:b5:75:30:
68:e2:20:3f:45:02:d7:05:c9:a1:ea:5b:ff:23:a7:
40:a5:72:51:4e:ab:cc:14:fa:76:1a:42:05:e8:bd:
0a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E7:00:A1:62:AB:CE:A3:20:B3:0B:32:A9:C6:12:F7:DB:51:3A:D0
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS398704.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.26.0/24
Signature Algorithm: sha256WithRSAEncryption
79:6d:26:38:6c:38:56:7c:0e:07:33:51:61:4d:30:a0:cb:8b:
ea:29:e9:7a:bc:b8:d1:09:3b:c6:31:00:e5:16:08:c1:bc:ce:
4b:df:e1:08:83:35:d2:46:74:86:c1:f3:5c:3c:7e:ad:e8:25:
fd:90:79:9c:bd:2f:ef:df:99:5a:44:c5:bc:69:6f:be:5e:49:
16:ad:d2:7d:1c:92:87:d7:6c:54:8d:2d:c6:8e:c1:08:4f:82:
84:bd:dd:4f:b5:ef:c1:25:b0:9d:fb:2d:40:c0:5a:53:70:66:
06:af:35:b6:bd:48:a5:65:b2:ad:2a:5e:b4:fb:f8:86:7f:ba:
b3:bb:66:8a:a9:09:1c:ed:3c:48:98:ca:a4:48:f1:e4:c9:bf:
7e:4a:ed:15:b3:21:4b:ab:5d:b9:39:c3:bb:7a:b6:77:40:96:
be:8f:56:fb:b9:52:06:9e:81:6f:af:0e:f9:4b:56:c7:31:6c:
b2:96:95:2e:b1:8f:37:36:38:59:5b:13:9a:2b:6e:33:aa:bf:
6f:ce:cf:71:43:8e:a8:d9:29:70:96:5f:4d:0a:7e:04:78:df:
36:3f:c9:d7:53:fb:23:35:af:83:f2:fd:23:92:16:96:31:78:
39:b2:67:44:8a:9f:73:82:3d:0a:24:cf:28:60:10:18:2e:75:
da:62:46:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 13:27:30 2024 by rpki-client on console-fra.rpki-client.org