Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198037.roa
File: AS198037.roa (raw, json)
Hash identifier: if3UIEoUAIF91ZH5N8h+k++8WlFMJwZAlh7IVsoxaiI=
Subject key identifier: 5E:7C:75:9F:B9:85:57:EA:5F:FE:1D:F6:33:9A:8E:30:F5:2C:7B:64
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7ED2C62B446B43E3F9A5E51581B3D83E06807661
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198037.roa
Signing time: Sat 13 Apr 2024 03:53:32 +0000
ROA not before: Sat 13 Apr 2024 03:48:32 +0000
ROA not after: Sat 12 Apr 2025 03:53:32 +0000
asID: 198037
IP address blocks: 191.96.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:d2:c6:2b:44:6b:43:e3:f9:a5:e5:15:81:b3:d8:3e:06:80:76:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 13 03:48:32 2024 GMT
Not After : Apr 12 03:53:32 2025 GMT
Subject: CN=5E7C759FB98557EA5FFE1DF6339A8E30F52C7B64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6f:19:a0:73:31:f4:b1:fc:81:e6:ab:45:44:
80:07:79:af:99:23:38:33:ef:da:40:76:5c:ce:54:
3b:49:93:b8:a5:d4:42:7d:72:b2:eb:9d:44:7a:00:
41:99:24:67:67:f3:6c:e3:9e:f0:3a:0b:ab:57:d7:
5a:5c:42:f2:b5:28:24:e5:91:f7:cd:a7:8e:83:9f:
4f:86:f7:4f:9e:d3:45:a4:b2:8a:06:39:ce:01:09:
f1:b2:70:6e:26:d0:01:60:75:9d:d0:76:2c:ca:7a:
b8:91:11:b1:24:3a:2f:f6:70:61:fa:98:1a:6f:b6:
cf:78:31:30:ab:4c:10:9c:17:6b:e5:ee:7d:62:ce:
31:ed:46:23:f5:09:53:5e:f5:61:98:ca:27:2d:41:
72:a7:23:f2:f7:1c:dd:b9:75:20:65:c0:7a:e2:8d:
f1:d8:fb:da:dc:ee:a7:b3:c5:63:94:d0:00:59:b0:
00:4d:2f:ef:24:e7:31:2f:5e:bd:e2:43:d3:8d:bc:
4a:20:0f:74:bd:d2:f8:22:76:d9:b5:ed:db:77:e7:
a9:58:b4:58:ac:c3:70:41:85:2b:26:9a:76:39:39:
16:87:81:74:63:43:f6:2e:43:1a:92:8d:0a:83:34:
3c:ce:46:62:0c:a3:15:c5:ae:6e:d2:aa:6b:12:82:
e4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7C:75:9F:B9:85:57:EA:5F:FE:1D:F6:33:9A:8E:30:F5:2C:7B:64
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS198037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.146.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e5:f7:f1:85:c3:43:41:2b:43:e6:de:b4:23:10:43:87:e2:
ce:12:4c:c5:e7:21:f0:8f:ce:22:35:d2:1d:98:b5:98:e6:db:
36:22:91:13:f8:c0:0d:de:d6:29:83:d1:b1:41:50:97:c9:b3:
ca:f8:b3:0e:22:eb:b5:cd:41:ef:d8:7a:83:29:8a:c5:bf:c9:
e8:7c:fc:93:3a:71:7d:38:3a:db:25:21:18:ee:d7:73:33:39:
52:41:c1:50:0b:fa:61:4c:38:42:a0:b4:51:6c:3b:12:9f:fb:
a5:87:29:d6:65:bb:b5:97:f4:83:e8:a1:63:c5:f1:ff:e8:ea:
35:e5:b3:a8:99:89:c9:c6:60:b2:30:e1:dd:4f:bb:18:bd:49:
66:85:3b:37:58:08:57:72:e0:50:a6:98:c8:a8:fe:70:51:e6:
f1:f5:c7:b2:13:87:d5:92:b0:02:11:5d:f2:f3:fe:74:ad:2b:
0e:73:9f:54:9f:8c:ab:43:1a:bf:e0:46:a6:f9:4d:3a:2c:b2:
39:e1:ab:9c:d2:99:16:6a:c4:39:7e:07:2e:d0:6c:69:c6:4e:
a4:fe:43:b2:1d:9f:c8:fc:20:b7:e9:36:09:43:32:e5:d1:1d:
42:43:03:c2:99:b4:2d:39:8f:c4:11:aa:76:4c:ee:5e:0c:21:
7a:51:a1:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org