Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200482.roa
File: AS200482.roa (raw, json)
Hash identifier: vDZFxj2e8jFbsxfzbsVTA9JHnWh4dLXGPZgsiP64zvE=
Subject key identifier: ED:2D:AB:F5:30:35:2B:3C:01:B0:7F:6C:AD:FC:8F:3E:71:68:4F:C6
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 404F35CB02075C24F6FF0EEAB39504BC7CE33378
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200482.roa
Signing time: Mon 07 Aug 2023 11:00:32 +0000
ROA not before: Mon 07 Aug 2023 10:55:32 +0000
ROA not after: Mon 05 Aug 2024 11:00:32 +0000
asID: 200482
IP address blocks: 191.101.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 00:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:4f:35:cb:02:07:5c:24:f6:ff:0e:ea:b3:95:04:bc:7c:e3:33:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 7 10:55:32 2023 GMT
Not After : Aug 5 11:00:32 2024 GMT
Subject: CN=ED2DABF530352B3C01B07F6CADFC8F3E71684FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c2:0b:5e:91:fe:21:39:53:63:57:d7:f0:68:
68:3c:66:94:0f:82:2d:ab:6a:00:90:a6:69:2f:08:
13:29:36:1b:f6:4c:68:c8:bf:bf:f7:5c:33:40:10:
70:0a:e2:db:12:90:eb:ba:d2:8b:cb:5c:dc:8a:77:
92:f7:25:ad:04:9a:50:2f:be:5a:db:0b:7b:4e:50:
e0:ea:57:e1:9b:72:8b:b5:2f:d0:f7:d0:a3:c9:db:
f1:62:7e:38:a7:45:0f:b3:57:6f:8b:5e:74:21:a2:
3d:b4:3d:6e:df:fa:52:44:84:f3:18:60:23:01:2e:
6e:80:d5:f6:2f:a0:5d:0e:d8:10:09:7e:c2:22:cb:
b8:c4:63:93:73:2f:cc:10:e6:b5:d4:d4:3f:68:f1:
6d:f5:5d:e4:99:d9:75:d4:e0:e8:72:80:33:86:d6:
39:8b:b0:14:ee:16:83:2c:bc:67:25:5e:98:aa:fb:
f1:e5:5a:0d:ca:ed:64:16:9f:de:c1:a4:11:05:8b:
8c:8e:1d:d7:a3:1a:0d:50:d7:91:61:02:31:1a:6b:
65:6a:ed:ec:f3:eb:a5:37:fc:f8:f3:99:38:5b:48:
2b:ab:bf:c9:5d:c8:69:e0:26:f6:4a:2f:45:38:3e:
68:50:94:5a:17:8f:c1:1c:23:85:b3:e7:8b:12:2d:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2D:AB:F5:30:35:2B:3C:01:B0:7F:6C:AD:FC:8F:3E:71:68:4F:C6
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS200482.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.58.0/24
Signature Algorithm: sha256WithRSAEncryption
94:6d:bc:09:ae:5f:d1:49:ea:29:a3:3e:b3:c0:a1:21:cd:ee:
da:eb:4d:e4:bd:41:8b:2b:a9:9c:c6:83:56:f0:35:67:fd:8f:
7b:a7:eb:9f:5d:81:f3:5f:fd:0e:4f:d4:fa:4b:b7:28:33:e6:
58:fe:dc:09:29:92:b6:f0:d4:aa:72:15:96:65:6c:7f:78:a8:
ab:42:89:70:20:6f:27:24:05:ab:5a:47:a1:b9:5d:89:de:d3:
22:e4:2d:23:92:84:58:ad:2a:cd:04:76:5c:5b:dc:06:0a:4a:
46:57:63:53:63:e4:70:7d:03:e4:55:30:34:51:f4:e0:b2:f4:
3b:e8:de:44:1f:26:c3:3a:94:ed:a9:33:e0:05:63:0d:ea:4b:
9a:94:84:a9:b5:9c:e4:5f:44:93:38:0f:e3:0f:a4:93:df:ee:
b7:58:d8:f1:3e:86:ca:35:c1:3b:2a:8c:9d:99:23:f5:40:24:
e1:27:69:e0:66:a7:e0:43:f7:d3:66:5e:4d:02:3d:f0:42:18:
76:20:be:a6:68:49:c9:18:19:54:a2:0d:b2:06:74:01:75:5d:
ed:7b:7b:f0:14:37:f6:7a:6e:b5:43:51:b7:5d:5b:fa:54:fe:
fe:6a:3b:1d:61:59:27:b9:92:ec:cc:f1:15:4d:b1:4d:94:d7:
55:77:e3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org