Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS201575.roa
File: AS201575.roa (raw, json)
Hash identifier: iBF61T0JhNvQ/yYQD09L5T2y/Oed91vqrQdsc/RYjZ4=
Subject key identifier: E1:9C:E9:47:CD:BE:96:E2:5D:F8:B9:79:EB:7F:08:CA:06:1D:96:5D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 2F3293388B95A100F151C0AB5F405A170D995E55
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS201575.roa
Signing time: Fri 09 Feb 2024 00:01:57 +0000
ROA not before: Thu 08 Feb 2024 23:56:57 +0000
ROA not after: Fri 07 Feb 2025 00:01:57 +0000
asID: 201575
IP address blocks: 191.96.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:32:93:38:8b:95:a1:00:f1:51:c0:ab:5f:40:5a:17:0d:99:5e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 8 23:56:57 2024 GMT
Not After : Feb 7 00:01:57 2025 GMT
Subject: CN=E19CE947CDBE96E25DF8B979EB7F08CA061D965D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c4:1c:3c:61:c6:4e:59:a4:4c:ca:89:ff:f7:
51:1b:2d:49:ce:b5:80:c0:e8:7e:e4:2d:02:57:58:
aa:6b:f3:e8:f7:8a:e3:86:68:54:71:35:10:cb:3d:
ea:aa:ac:19:23:73:33:be:8a:fe:a6:0f:ba:62:e3:
7f:9a:30:45:e7:28:f9:74:f2:bd:1c:c0:86:ae:60:
60:c9:d3:d4:57:6b:8b:52:14:9c:18:24:05:46:79:
5e:f0:04:5f:45:d9:36:49:de:e6:8d:05:a6:42:85:
ad:11:55:31:41:87:e6:2a:dc:ad:8e:75:a1:2b:bc:
83:df:46:d2:d9:4b:56:99:ef:dd:26:7f:97:35:c5:
c0:06:f3:a1:37:ac:e4:e2:62:49:9c:c9:c4:d6:77:
cc:46:fa:38:8d:de:bd:26:6c:fe:23:27:c6:c6:c8:
a6:6f:19:c3:08:cb:29:a3:0c:14:5c:2f:fd:25:ba:
95:44:54:43:a4:22:6d:b6:d4:a9:2e:d9:6c:08:e8:
a6:27:3f:c5:00:98:9f:d4:dc:50:b1:b1:16:c9:09:
36:90:3c:79:48:f4:25:1f:fd:9c:0e:6e:c6:7f:ea:
d6:78:12:7f:18:70:db:87:08:35:6b:40:21:20:c3:
44:24:ed:ba:9a:2b:b9:88:83:db:b2:63:ec:67:c5:
05:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9C:E9:47:CD:BE:96:E2:5D:F8:B9:79:EB:7F:08:CA:06:1D:96:5D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS201575.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.233.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:53:a8:44:11:7b:63:61:a1:d4:94:ff:2c:2d:76:3e:1a:48:
5a:0e:7b:99:7f:29:4c:fe:02:9c:08:9a:82:a7:16:da:07:c2:
1d:73:8f:a6:8b:ec:d2:1e:20:0a:42:1d:63:83:cd:56:f6:1a:
e8:98:08:b9:99:8a:67:49:55:83:9e:24:f1:b3:8c:e1:ec:36:
bc:44:47:ef:2e:14:f9:d8:5a:4a:60:9a:8b:da:58:c9:61:b2:
47:0c:fe:37:6d:f2:15:d6:c8:ca:69:c4:2b:ff:49:d0:b1:14:
28:00:81:e6:58:ee:c4:90:90:5a:8d:77:13:72:34:e5:e3:9b:
ff:46:c8:89:12:00:76:09:d2:1b:41:34:40:ed:5e:59:ab:34:
47:a8:75:44:9c:db:8a:45:5c:ed:20:4a:19:f6:54:4f:0f:99:
e5:f0:bc:53:b4:ec:38:e9:60:c9:de:b6:be:b6:04:24:3e:82:
bf:75:d0:c0:63:e7:a7:29:5e:05:d7:ed:57:68:f1:9d:74:bc:
76:92:5a:1e:2e:d6:79:02:45:51:ac:1b:2d:a6:15:e4:54:75:
9c:e6:a4:15:ca:20:a3:25:13:9b:d7:c0:a7:4d:6d:01:66:b9:
16:43:cb:8c:36:ab:85:ae:cc:54:0f:76:0a:45:8d:34:b1:46:
eb:a5:ae:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:02 2024 by rpki-client on console-ams.rpki-client.org