Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS197537.roa
File: AS197537.roa (raw, json)
Hash identifier: /gGsejXeKZddYZAgMh6O51PfuC7sagCEBtLYP0Hlowc=
Subject key identifier: CC:2F:17:8C:9D:85:5B:B2:E2:BB:D6:BE:C0:F3:F9:AD:61:F4:D9:27
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5AC98D62334F2BE10DCC69AC5EDC90490CA10D89
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS197537.roa
Signing time: Fri 24 May 2024 20:30:20 +0000
ROA not before: Fri 24 May 2024 20:25:20 +0000
ROA not after: Fri 23 May 2025 20:30:20 +0000
asID: 197537
IP address blocks: 140.233.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 10:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:c9:8d:62:33:4f:2b:e1:0d:cc:69:ac:5e:dc:90:49:0c:a1:0d:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 24 20:25:20 2024 GMT
Not After : May 23 20:30:20 2025 GMT
Subject: CN=CC2F178C9D855BB2E2BBD6BEC0F3F9AD61F4D927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:48:b5:78:15:62:d5:33:d8:39:3d:38:21:09:
3f:24:18:e6:a9:d4:e0:b2:51:c3:bc:0d:99:09:32:
76:42:df:20:80:e8:e4:e2:73:13:1b:28:78:34:e5:
85:e5:19:94:81:ac:68:62:f3:4d:fc:49:8d:0c:d4:
40:97:f1:7a:75:2c:3c:52:9a:8b:c9:fd:a5:53:11:
33:c9:33:cf:55:f7:ff:e1:27:04:65:d7:6a:2e:65:
91:cd:9a:81:b3:2e:da:ff:8f:dc:b2:ae:83:5d:66:
90:26:14:7d:83:a5:bb:d3:46:95:79:d1:6d:9b:e5:
f1:71:b2:c6:04:e7:ea:6a:f0:82:66:e8:a9:be:c3:
25:cb:cf:89:47:da:73:df:55:41:f2:75:c7:3e:b4:
63:e3:1e:65:26:07:96:e6:e2:40:9c:56:ad:d5:39:
f0:61:ad:43:91:78:0b:f3:c8:15:8b:b0:93:15:b9:
2e:b0:ac:1e:4c:f5:b2:6a:15:99:ee:29:79:ac:ea:
12:25:57:ad:b8:d9:c7:6a:1b:58:d7:9b:e9:e8:c3:
d0:8f:c7:c9:6f:22:1c:60:4e:ac:52:8f:5e:ea:84:
59:08:d1:85:f7:5d:59:b1:f1:8b:2c:92:4f:dd:11:
f3:bf:32:c1:d7:0b:6e:73:c3:a3:11:99:c1:ac:de:
b2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:2F:17:8C:9D:85:5B:B2:E2:BB:D6:BE:C0:F3:F9:AD:61:F4:D9:27
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS197537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.190.0/24
Signature Algorithm: sha256WithRSAEncryption
12:34:64:b9:25:2d:4b:11:19:ef:ca:ad:c7:30:62:6f:69:a9:
b5:70:5c:35:3e:24:b0:26:89:66:93:b2:bc:bb:40:c6:8d:bc:
ca:9e:77:17:9a:96:95:62:f4:df:9a:f9:8e:49:65:c5:03:45:
f8:fb:1c:13:fc:0f:00:7a:7e:5e:a1:61:31:09:96:fd:f8:4a:
d2:95:85:fe:d1:f1:20:49:4b:23:a8:82:aa:f5:bf:83:b0:5c:
c1:a9:07:6b:14:6f:53:ee:9a:ee:9f:d8:6d:c8:33:f6:51:80:
13:c8:1f:56:1b:1b:3f:dd:8b:40:9f:75:85:15:2f:70:c9:0d:
39:2e:50:1b:06:5e:3b:74:b1:ed:3c:3f:4b:57:1a:44:5a:46:
4a:1d:0e:2e:99:fa:0f:28:ca:fd:d7:d2:11:b6:c0:d2:81:f7:
1c:01:09:cb:8f:2b:28:ef:90:a5:28:1e:01:87:c3:54:28:d6:
eb:ba:9d:d9:4c:2b:76:cf:06:63:50:7d:81:74:64:d6:f9:57:
48:82:d9:18:35:f1:b8:12:38:d2:b7:23:23:48:ab:fc:a1:1d:
dc:47:c7:b1:5c:19:6e:bc:b1:bf:57:fc:8f:2b:dc:5d:d9:88:
23:13:22:9f:91:0f:bf:df:a1:59:4b:bc:24:ff:b8:da:34:58:
37:61:30:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 15:11:19 2024 by rpki-client on console-fra.rpki-client.org