Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS1239.roa
File: AS1239.roa (raw, json)
Hash identifier: qR4g3lOSeW65zwsk+V/5Py2B7IRMe9T3Dm3wTsRkH+0=
Subject key identifier: AD:9C:31:2E:AA:36:EA:E4:97:8E:A4:E3:59:64:89:70:10:32:E2:7B
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 510D5E97E3EAEC752E247D5954DF33A337018675
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS1239.roa
Signing time: Fri 01 Dec 2023 00:00:11 +0000
ROA not before: Thu 30 Nov 2023 23:55:11 +0000
ROA not after: Fri 29 Nov 2024 00:00:11 +0000
asID: 1239
IP address blocks: 191.96.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:0d:5e:97:e3:ea:ec:75:2e:24:7d:59:54:df:33:a3:37:01:86:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 30 23:55:11 2023 GMT
Not After : Nov 29 00:00:11 2024 GMT
Subject: CN=AD9C312EAA36EAE4978EA4E3596489701032E27B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:08:a9:8f:76:da:d9:7a:f2:11:3e:70:53:
97:96:47:18:e5:58:e7:ee:7e:1a:46:bd:7d:a5:ea:
64:d2:42:9e:25:19:85:0c:47:d4:bb:eb:fe:ad:7a:
ee:7a:3f:cd:65:8d:6d:e5:00:01:e2:16:70:3d:b1:
07:cf:fa:76:4a:f6:3f:b8:10:38:f9:36:ad:18:f2:
3f:d4:d7:58:db:a4:e8:49:4f:80:49:82:05:07:fe:
8c:42:4f:53:49:c2:31:d7:52:dc:1f:a9:06:52:99:
85:f4:ee:ad:2e:9d:11:4f:1b:66:c2:20:52:54:93:
fc:2b:9f:d4:60:43:bd:08:2d:cc:be:44:59:8e:82:
cc:e7:9d:df:d5:39:4a:19:2a:75:95:a6:9b:56:12:
de:70:d1:7b:3e:e1:9b:bd:27:43:ab:ee:c9:98:89:
fa:94:3b:58:cb:95:38:9d:a5:8f:fb:cb:23:0b:72:
e8:84:e2:91:bd:90:65:c7:6f:bb:c3:a4:11:b1:94:
7a:b0:73:93:ab:1a:a3:bf:ce:ee:f3:70:1e:53:08:
84:43:0a:96:a4:a7:df:b1:3e:44:f8:70:f2:b8:1c:
a5:c3:f0:5e:8d:8c:df:ce:84:01:03:68:5f:61:19:
be:a4:2e:ce:b5:4e:e7:3e:bf:bd:8b:17:b1:26:04:
d3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9C:31:2E:AA:36:EA:E4:97:8E:A4:E3:59:64:89:70:10:32:E2:7B
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS1239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:4a:37:fd:4c:53:ba:ed:95:84:43:3c:9c:85:2b:07:86:95:
4b:b7:9e:9d:0e:8d:6d:d4:1f:b0:19:53:f9:6a:50:69:75:d1:
aa:f8:17:fe:75:78:a0:a8:5d:3e:67:48:0a:22:e2:a7:33:ec:
a3:5a:67:d7:79:07:5d:8e:e0:ed:73:ab:ce:e4:83:63:09:18:
60:94:aa:fa:74:8c:18:d7:c8:7e:2f:c6:11:9f:2f:67:c3:e9:
e2:90:42:f6:4f:fa:86:27:f7:8b:b1:55:3a:05:99:98:b1:5d:
1e:d2:72:61:42:ad:53:50:17:93:c0:b8:1b:d0:22:3b:44:b8:
4d:50:7d:31:0e:1d:aa:59:be:4c:00:37:c3:de:84:aa:b3:6b:
ac:e7:b2:4a:ee:c2:46:54:3f:80:b6:34:07:f9:c4:6f:37:e1:
80:05:c4:00:0e:81:b6:0c:ff:69:fa:a4:8c:b5:b7:79:fb:ba:
35:56:56:93:3c:30:38:7a:bc:ab:df:a4:ec:01:0b:28:2a:96:
e6:22:7f:e3:e2:50:87:21:f8:bf:0e:a1:a2:ad:37:39:79:85:
65:51:e7:fc:5e:98:43:00:6a:51:66:68:64:7a:02:93:9d:40:
fb:96:8d:99:53:39:fa:20:2f:f2:13:6b:ec:fa:54:86:91:0c:
93:29:bd:2c
-----BEGIN CERTIFICATE-----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Generated at Tue Dec 12 18:29:20 2023 by rpki-client on console-fra.rpki-client.org