Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14956.roa
File: AS14956.roa (raw, json)
Hash identifier: 9h4hfyutyKNPlGPBXJTw6eg8ubzkya1CmmXFOS/hOXc=
Subject key identifier: D9:A3:E7:7F:37:A5:9A:01:B1:DE:67:20:30:6A:E6:0B:E6:A0:BD:CB
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5A1B91C48748C2C313630F6DE0CF8EE503778933
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14956.roa
Signing time: Mon 12 Jun 2023 07:55:25 +0000
ROA not before: Mon 12 Jun 2023 07:50:25 +0000
ROA not after: Mon 10 Jun 2024 07:55:25 +0000
asID: 14956
IP address blocks: 185.173.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 15:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:1b:91:c4:87:48:c2:c3:13:63:0f:6d:e0:cf:8e:e5:03:77:89:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 12 07:50:25 2023 GMT
Not After : Jun 10 07:55:25 2024 GMT
Subject: CN=D9A3E77F37A59A01B1DE6720306AE60BE6A0BDCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:df:f7:2a:cc:05:36:12:2b:31:02:2d:bd:ab:
64:78:81:37:d8:33:a1:9a:2c:e1:02:48:d5:df:27:
dd:a2:ee:12:ec:46:fe:50:73:f2:0d:85:11:3c:55:
a7:06:cd:7f:2d:96:2c:04:8c:04:19:71:a2:06:81:
c4:15:dd:4f:12:58:f5:06:aa:e9:4d:f4:1a:48:9e:
90:0f:7c:4b:4f:d0:4a:fe:fa:8d:ef:63:de:81:02:
a3:54:ce:09:75:31:34:be:08:30:64:a4:3c:64:ac:
fb:27:6c:f0:5c:fc:d0:a7:9f:a5:0f:d0:0e:0d:d2:
08:f0:0d:26:cc:5d:54:97:61:88:ae:0d:72:03:a0:
81:4b:5e:78:23:59:ae:70:98:84:c6:94:f7:55:f6:
19:1d:48:6e:ba:8e:2d:e5:6c:d6:bc:9b:82:6a:33:
a9:e0:b9:38:90:50:5a:91:67:bc:42:fc:34:db:91:
99:7a:6f:03:cd:4d:4e:bf:b6:22:95:8d:48:60:b9:
c1:3d:50:cf:da:e0:19:f8:69:ce:00:f0:ad:dd:97:
90:e2:22:0c:28:58:89:6f:f5:09:85:86:c7:0a:44:
d3:3c:09:d4:f9:43:f5:7d:8c:ef:a8:81:3a:07:96:
a4:0f:6f:84:01:35:19:b8:62:57:01:f2:97:85:bb:
2d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A3:E7:7F:37:A5:9A:01:B1:DE:67:20:30:6A:E6:0B:E6:A0:BD:CB
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14956.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.34.0/24
Signature Algorithm: sha256WithRSAEncryption
20:73:a4:5d:69:b7:80:18:37:c1:0a:e3:e6:66:13:a4:97:b6:
4e:e8:67:b2:54:f7:95:d7:95:a6:f9:54:f4:df:77:e5:3a:55:
bd:65:34:43:f7:ee:ba:4c:4c:42:9e:6d:f5:cc:f6:be:fc:89:
73:ec:d2:1b:d4:72:f4:7e:64:77:ff:e7:3d:d9:fd:2e:23:3d:
1b:94:44:7c:72:15:09:e4:9b:86:c7:30:32:32:62:56:8f:75:
e3:1c:98:27:8b:85:14:bc:01:03:ef:2a:0f:db:b4:28:1c:ca:
cb:a1:ac:df:11:78:4b:9b:27:59:f4:57:56:bf:1f:60:f7:05:
d6:f7:aa:59:9e:80:76:a6:d9:6b:73:f9:1c:e7:c2:4f:58:4c:
41:9e:d5:36:6d:b3:98:ee:f0:22:f9:23:51:8d:6f:83:d6:98:
47:d5:17:db:82:a4:dc:56:b3:b5:36:98:75:c0:e8:c1:ef:3c:
be:12:cb:56:45:ba:f1:dd:c7:b1:61:f0:14:09:2a:82:93:4d:
c4:f3:58:15:e7:b6:55:2d:30:ad:8c:6e:64:63:af:b7:14:e7:
e9:ef:a8:ef:a2:a3:a5:9e:69:0d:ba:7b:34:b9:16:9b:8c:96:
97:4b:47:a0:32:80:93:d8:64:43:78:3f:a1:aa:c4:f4:b6:91:
d4:b1:1e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org