Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197842.roa
File: AS197842.roa (raw, json)
Hash identifier: NwtrBuolWgNKZqIddfPRlyU4GsjNGIzCVXlM3ONnea8=
Subject key identifier: F3:EB:27:BC:77:5F:94:C0:04:D8:DE:F3:96:C4:28:E1:8B:33:97:5C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 637E73F5D96C92114BAF5ECA6B240F7F95D48985
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197842.roa
Signing time: Wed 17 Jan 2024 19:46:35 +0000
ROA not before: Wed 17 Jan 2024 19:41:35 +0000
ROA not after: Wed 15 Jan 2025 19:46:35 +0000
asID: 197842
IP address blocks: 179.61.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 10:04:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7e:73:f5:d9:6c:92:11:4b:af:5e:ca:6b:24:0f:7f:95:d4:89:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 17 19:41:35 2024 GMT
Not After : Jan 15 19:46:35 2025 GMT
Subject: CN=F3EB27BC775F94C004D8DEF396C428E18B33975C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8a:16:6a:23:63:c9:3d:27:db:35:d2:3a:4a:
24:14:b8:77:56:33:4e:d3:a8:46:82:bd:48:1c:c1:
9f:6d:93:8f:a6:bd:77:bd:76:e7:09:52:1c:c6:11:
70:1c:7a:f1:2a:65:50:cf:a4:ab:9f:40:66:e5:ad:
ed:da:69:ab:96:98:7c:48:a7:1c:66:e8:06:3f:41:
cd:41:b9:d3:ed:93:a2:44:29:c5:0c:95:f5:32:35:
c9:98:f5:65:23:30:c9:33:11:aa:17:c8:d4:e9:29:
f3:a5:b7:c5:4f:99:10:d7:31:00:53:e8:7a:fb:0b:
8e:64:28:14:fc:7e:76:69:20:d6:cd:14:60:e6:f0:
88:c4:41:83:26:c1:4d:14:65:33:61:ef:6a:dc:d9:
c1:0e:7c:ca:bf:de:ca:8c:31:29:66:bf:da:d6:a8:
33:c9:14:90:2a:26:9c:57:1a:cb:5d:73:9c:26:22:
b9:e4:61:0e:ee:3c:0c:26:4b:3f:60:e1:fb:5d:96:
bf:83:d9:b1:4e:2e:29:a7:d8:5c:02:80:6f:d8:71:
b6:0e:d6:81:8a:98:ac:99:a9:ff:e4:1c:bb:52:1c:
2e:7f:22:ec:e5:d1:17:c1:a1:1c:9a:6d:58:94:27:
89:79:42:1d:0b:37:5a:f6:82:dc:fd:d8:63:2f:ff:
24:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EB:27:BC:77:5F:94:C0:04:D8:DE:F3:96:C4:28:E1:8B:33:97:5C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS197842.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.191.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6b:d6:79:91:d8:10:85:cf:5b:3e:4a:7e:59:a6:ea:a2:70:
f1:ca:a8:a7:da:6f:f5:bd:10:c9:86:42:bf:db:b6:c7:84:de:
c1:47:a1:e9:cc:27:d9:01:7c:be:40:18:4b:57:a2:27:93:c3:
dd:58:3e:d5:10:7d:05:59:c4:ca:ab:c4:2f:f4:25:5c:53:b2:
c8:38:84:ef:21:38:e0:4d:30:c0:e3:a7:ab:55:cf:26:d4:34:
aa:b1:a2:8b:59:5c:81:6a:6c:62:b4:3f:c5:6c:61:f5:f4:ee:
2d:75:c3:28:41:79:5b:f3:44:9c:33:cb:c6:16:d2:28:b1:9e:
88:40:db:6f:45:29:78:d8:e1:c5:3a:c5:3c:82:fd:6d:42:4c:
e0:d7:7f:b1:07:58:37:f3:21:36:f8:d3:26:2d:71:65:75:46:
f5:26:ba:a1:86:e3:bc:23:0f:31:2b:70:96:ff:e9:81:c2:77:
73:f4:37:50:ea:99:c4:16:c5:fc:4a:97:85:fa:81:dc:7b:14:
24:54:a9:c1:26:e2:fb:af:6e:c8:c9:6f:6b:c3:c1:f3:92:e2:
79:c8:64:84:7e:4b:a7:2a:b2:01:8a:f9:c9:85:49:9c:f6:b3:
d4:e5:c4:a8:00:b9:26:95:5e:f9:90:b4:5f:52:6c:34:d5:9b:
98:01:b4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org