Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS15435.roa
File: AS15435.roa (raw, json)
Hash identifier: w/ZsMDrne0XburmB4J8XJWYUMy3yWtdSgbk+UpDMMrE=
Subject key identifier: 9A:D5:B7:D0:13:EE:67:AA:D3:35:3A:30:FC:C2:31:54:6D:0B:3A:93
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1258405871F7CFE409F14BB3DEB6016CF865AAD1
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS15435.roa
Signing time: Fri 02 Aug 2024 18:43:11 +0000
ROA not before: Fri 02 Aug 2024 18:38:11 +0000
ROA not after: Fri 01 Aug 2025 18:43:11 +0000
asID: 15435
IP address blocks: 5.181.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 00:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:58:40:58:71:f7:cf:e4:09:f1:4b:b3:de:b6:01:6c:f8:65:aa:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 2 18:38:11 2024 GMT
Not After : Aug 1 18:43:11 2025 GMT
Subject: CN=9AD5B7D013EE67AAD3353A30FCC231546D0B3A93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:85:cb:66:a0:f4:f5:71:ba:75:b4:d5:26:b5:
38:35:2c:7e:4c:42:2d:a8:5b:2b:fd:4b:19:13:89:
c7:2d:ac:56:31:0d:69:15:4a:b1:72:9f:73:fa:72:
1f:6e:b8:12:1d:d2:66:4c:54:98:23:f9:c4:15:00:
25:bb:ac:c5:be:ac:df:97:0a:aa:3b:05:58:a9:11:
70:51:24:8d:ba:3c:8f:39:ab:8c:27:a4:af:a0:4d:
69:c2:80:08:12:92:aa:1a:90:90:a8:0c:0f:59:37:
2e:94:2d:c6:c7:40:0e:32:38:06:a6:8e:8a:18:48:
33:8c:ea:47:43:68:b6:4a:12:e8:a2:72:eb:80:bd:
48:8e:5b:f3:0e:34:15:38:4e:91:5e:53:d4:4d:2b:
55:7a:c3:7a:ac:6e:f3:b9:53:8a:15:e2:03:ae:bf:
1e:ad:6d:b1:56:84:ad:d8:de:8d:c8:aa:7a:f6:7e:
97:49:b0:a8:74:67:9b:56:66:03:08:66:07:c9:65:
82:aa:52:6b:56:62:5b:0a:9b:48:fa:ce:db:4b:8f:
91:6e:b2:75:42:92:68:40:e0:a2:41:50:00:b0:19:
4b:06:bb:31:a0:cd:75:3e:c5:50:dd:c5:73:af:04:
0f:96:01:df:25:c8:44:37:71:ca:15:88:ab:25:69:
e6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D5:B7:D0:13:EE:67:AA:D3:35:3A:30:FC:C2:31:54:6D:0B:3A:93
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS15435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.130.0/24
Signature Algorithm: sha256WithRSAEncryption
38:8f:1b:78:c6:6f:f6:2a:8c:a4:97:f8:1b:36:d7:41:a5:fb:
f4:e0:5a:13:74:6c:24:56:75:e2:52:0b:52:2e:72:6b:14:ec:
50:39:69:6e:40:e2:ae:b4:8c:97:0c:29:85:c3:e7:86:fd:7d:
80:25:b5:cf:71:fc:e4:3b:93:1a:5f:8d:7c:5b:b2:a1:d5:9e:
5b:78:04:43:31:c9:ca:19:56:7c:6d:4e:79:36:94:33:79:39:
18:fe:a9:82:6c:c1:26:73:40:88:86:5f:6c:6b:7d:d6:1d:0c:
cd:81:15:16:3d:9f:7a:8c:c2:41:30:81:bd:20:f0:e8:0b:cc:
64:68:57:cb:76:7b:ed:da:8f:9e:dd:3d:cf:71:ad:63:fb:0f:
d1:9f:e0:b8:28:b7:04:bd:21:30:85:e7:f3:b2:5f:a2:b8:c7:
0d:fa:28:bb:78:8a:a7:08:5c:20:c7:22:95:0f:fc:7a:83:22:
ed:0d:bc:96:98:b0:c3:4a:0a:27:78:b8:1c:2c:45:6d:4c:2a:
cc:fe:dd:87:18:96:bf:18:ba:88:47:86:65:c9:d8:a6:de:4c:
78:3a:85:bc:4b:99:f2:92:fe:4f:cf:6e:f3:fd:19:ef:87:0d:
64:02:14:d2:fa:8e:01:7d:87:40:d1:18:ed:46:7a:18:54:67:
ca:2e:17:47
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUElhAWHH3z+QJ8Uuz3rYBbPhlqtEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA4MDIxODM4MTFaFw0yNTA4MDExODQzMTFaMDMxMTAvBgNV
BAMTKDlBRDVCN0QwMTNFRTY3QUFEMzM1M0EzMEZDQzIzMTU0NkQwQjNBOTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLhctmoPT1cbp1tNUmtTg1LH5M
Qi2oWyv9SxkTicctrFYxDWkVSrFyn3P6ch9uuBId0mZMVJgj+cQVACW7rMW+rN+X
Cqo7BVipEXBRJI26PI85q4wnpK+gTWnCgAgSkqoakJCoDA9ZNy6ULcbHQA4yOAam
jooYSDOM6kdDaLZKEuiicuuAvUiOW/MONBU4TpFeU9RNK1V6w3qsbvO5U4oV4gOu
vx6tbbFWhK3Y3o3Iqnr2fpdJsKh0Z5tWZgMIZgfJZYKqUmtWYlsKm0j6zttLj5Fu
snVCkmhA4KJBUACwGUsGuzGgzXU+xVDdxXOvBA+WAd8lyEQ3ccoViKslaeYTAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUmtW30BPuZ6rTNTow/MIxVG0LOpMwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTU0MzUucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFtYIw
DQYJKoZIhvcNAQELBQADggEBADiPG3jGb/YqjKSX+Bs210Gl+/TgWhN0bCRWdeJS
C1IucmsU7FA5aW5A4q60jJcMKYXD54b9fYAltc9x/OQ7kxpfjXxbsqHVnlt4BEMx
ycoZVnxtTnk2lDN5ORj+qYJswSZzQIiGX2xrfdYdDM2BFRY9n3qMwkEwgb0g8OgL
zGRoV8t2e+3aj57dPc9xrWP7D9Gf4LgotwS9ITCF5/OyX6K4xw36KLt4iqcIXCDH
IpUP/HqDIu0NvJaYsMNKCid4uBwsRW1MKsz+3YcYlr8YuohHhmXJ2KbeTHg6hbxL
mfKS/k/PbvP9Ge+HDWQCFNL6jgF9h0DRGO1GehhUZ8ouF0c=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:43 2025 by rpki-client