Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
File: AS133398.roa (raw, json)
Hash identifier: oeMD17GFyixEOgsbCo6/XtZ4zVKs+k/F7YDZazu3ecU=
Subject key identifier: 49:2B:98:96:35:5E:A5:C0:76:27:A5:18:14:86:B8:C9:1C:4D:8B:15
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 197477174D5A517084F3095633FFEE4AE0AF4591
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
Signing time: Thu 22 Feb 2024 00:02:01 +0000
ROA not before: Wed 21 Feb 2024 23:57:01 +0000
ROA not after: Thu 20 Feb 2025 00:02:01 +0000
asID: 133398
IP address blocks: 193.31.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:74:77:17:4d:5a:51:70:84:f3:09:56:33:ff:ee:4a:e0:af:45:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 21 23:57:01 2024 GMT
Not After : Feb 20 00:02:01 2025 GMT
Subject: CN=492B9896355EA5C07627A5181486B8C91C4D8B15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:79:1a:2d:d4:66:43:cd:db:bf:66:6e:75:
1a:79:96:80:77:e9:ac:09:b0:54:18:1e:52:2e:b9:
2e:eb:5f:d8:b2:66:d0:ca:58:39:9f:e8:6a:42:b3:
5a:3d:9f:cf:48:2a:cb:2b:46:6d:a6:b4:c5:b4:6f:
91:6b:5b:73:d4:70:71:e3:b9:5b:2d:fd:3c:94:23:
db:41:ab:ec:13:1c:dc:5e:d1:67:ee:70:90:eb:41:
b6:ee:d9:be:7d:6e:3c:49:b4:c4:ba:7c:2a:0f:ac:
96:60:c7:b2:8e:b5:a9:02:5b:f8:18:62:e4:72:cb:
ff:5f:03:f0:78:27:5d:e3:26:d7:d3:09:9a:ca:43:
aa:23:3d:1c:f9:8d:80:e8:44:61:4f:4c:16:2a:11:
e4:49:08:e1:b9:c1:34:42:7d:a9:7f:de:65:18:b6:
d0:66:a2:d1:12:fa:95:89:f5:d8:6d:77:d4:a8:71:
d9:1f:b6:9e:db:65:88:6a:d7:63:eb:72:ca:c0:df:
35:a2:a6:72:cc:93:bf:91:04:85:4d:65:a6:bc:b2:
d7:e1:ec:0a:72:c5:90:a2:b1:51:16:1d:8c:ee:a7:
7f:2f:e6:bb:a2:17:6e:f5:ed:be:01:41:92:47:63:
06:08:db:72:74:c5:b9:67:eb:24:91:6e:2c:5b:84:
f4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2B:98:96:35:5E:A5:C0:76:27:A5:18:14:86:B8:C9:1C:4D:8B:15
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.41.0/24
Signature Algorithm: sha256WithRSAEncryption
93:b2:72:fa:92:3c:b6:8d:67:7b:13:08:5d:be:b5:48:68:99:
21:17:4e:c2:5a:4d:c6:6f:f4:4b:e0:d5:e3:1d:53:58:cc:49:
ba:75:3c:e7:38:f1:f8:96:b5:ac:97:06:a9:1f:5b:9c:48:aa:
74:53:c2:be:64:d9:34:85:6f:cf:d4:98:4e:bd:cc:de:1c:e1:
10:9c:78:d1:92:7f:90:28:b9:82:f0:49:f4:10:d1:03:36:d2:
95:dd:fe:1a:40:91:13:ee:d2:8d:ab:90:2a:5b:ed:85:19:65:
8b:24:0d:2c:a1:20:28:95:c2:b1:bd:af:6f:c9:78:2d:0a:03:
89:42:1f:21:06:26:5f:b8:98:ec:28:5d:06:94:9a:6a:16:0b:
24:d1:ef:17:53:49:c6:28:79:a9:fc:22:83:88:1e:6d:d2:46:
ff:54:85:58:ff:45:38:d8:23:16:02:bf:64:88:fa:de:dd:5f:
49:6f:cf:bf:75:da:62:79:4a:3f:a8:e8:55:91:ba:4e:fe:2c:
fa:b8:f1:53:02:32:2b:07:94:c0:db:85:ab:1a:36:a0:ca:8a:
44:76:6f:29:a0:c9:e5:45:b5:b4:1c:d4:c3:a3:e4:21:f1:01:
07:c0:68:88:61:4e:ba:69:fa:1c:a8:9f:f4:de:f3:a3:d3:d6:
31:5a:8e:ab
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUGXR3F01aUXCE8wlWM//uSuCvRZEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDAyMjEyMzU3MDFaFw0yNTAyMjAwMDAyMDFaMDMxMTAvBgNV
BAMTKDQ5MkI5ODk2MzU1RUE1QzA3NjI3QTUxODE0ODZCOEM5MUM0RDhCMTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6V3kaLdRmQ83bv2ZudRp5loB3
6awJsFQYHlIuuS7rX9iyZtDKWDmf6GpCs1o9n89IKssrRm2mtMW0b5FrW3PUcHHj
uVst/TyUI9tBq+wTHNxe0WfucJDrQbbu2b59bjxJtMS6fCoPrJZgx7KOtakCW/gY
YuRyy/9fA/B4J13jJtfTCZrKQ6ojPRz5jYDoRGFPTBYqEeRJCOG5wTRCfal/3mUY
ttBmotES+pWJ9dhtd9Socdkftp7bZYhq12PrcsrA3zWipnLMk7+RBIVNZaa8stfh
7ApyxZCisVEWHYzup38v5ruiF2717b4BQZJHYwYI23J0xbln6ySRbixbhPT5AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUSSuYljVepcB2J6UYFIa4yRxNixUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTMzMzk4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR8p
MA0GCSqGSIb3DQEBCwUAA4IBAQCTsnL6kjy2jWd7EwhdvrVIaJkhF07CWk3Gb/RL
4NXjHVNYzEm6dTznOPH4lrWslwapH1ucSKp0U8K+ZNk0hW/P1JhOvczeHOEQnHjR
kn+QKLmC8En0ENEDNtKV3f4aQJET7tKNq5AqW+2FGWWLJA0soSAolcKxva9vyXgt
CgOJQh8hBiZfuJjsKF0GlJpqFgsk0e8XU0nGKHmp/CKDiB5t0kb/VIVY/0U42CMW
Ar9kiPre3V9Jb8+/ddpieUo/qOhVkbpO/iz6uPFTAjIrB5TA24WrGjagyopEdm8p
oMnlRbW0HNTDo+Qh8QEHwGiIYU66afocqJ/03vOj09YxWo6r
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:01 2024 by rpki-client on console-ams.rpki-client.org