Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203758.roa
File: AS203758.roa (raw, json)
Hash identifier: Qvn1tVNsV18GLippumpcS3EymUjZFrZ5tjd0qEgkhIQ=
Subject key identifier: E6:94:51:04:57:A4:C9:F1:42:A2:43:BD:15:39:05:8A:2B:76:79:70
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 36A538BF5B2029B4DD080496995AA4AE388E9D4E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203758.roa
Signing time: Wed 24 Apr 2024 00:25:36 +0000
ROA not before: Wed 24 Apr 2024 00:20:36 +0000
ROA not after: Wed 23 Apr 2025 00:25:36 +0000
asID: 203758
IP address blocks: 191.96.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 00:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:a5:38:bf:5b:20:29:b4:dd:08:04:96:99:5a:a4:ae:38:8e:9d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 24 00:20:36 2024 GMT
Not After : Apr 23 00:25:36 2025 GMT
Subject: CN=E694510457A4C9F142A243BD1539058A2B767970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:54:73:4d:a4:34:8a:84:df:cf:37:38:71:ee:
b2:70:c1:4e:3a:c4:f1:e7:e1:d2:aa:09:f9:5f:cf:
8c:eb:4d:52:4b:fe:13:81:f1:c1:12:ae:8d:ea:f4:
4e:cd:75:48:45:f6:be:66:6a:2d:28:f9:41:8b:3c:
fc:a3:0d:07:8f:37:fa:c5:3d:e4:0a:e7:f4:16:f7:
95:fe:5d:03:f9:ad:92:7f:76:56:ab:a8:76:d5:f6:
2a:b8:57:0b:c9:93:0a:08:80:f8:64:08:c9:d4:56:
e4:08:9f:8d:86:30:29:84:89:17:f7:51:b2:15:cb:
45:f1:f8:c0:e2:5a:6d:84:4b:cf:84:2c:ef:e8:37:
d7:97:e6:73:7d:9d:2d:ae:35:d5:9a:5b:86:91:9b:
4f:67:5d:b0:c6:58:31:86:cd:c9:7e:3b:6c:87:62:
71:b6:a2:9a:f8:2a:99:c4:7e:6d:d1:af:a2:b2:39:
ad:7f:01:a9:f5:44:4a:3e:cf:66:cf:5e:3d:44:66:
75:1a:65:ec:3f:c6:c7:ce:da:5b:0a:c1:8a:22:19:
d7:ff:08:5e:28:a9:84:73:81:5e:53:dc:fa:fe:f0:
f9:c0:5d:a9:9a:88:e0:dd:7a:e9:89:a8:7a:ef:b3:
fe:91:30:cb:e4:15:18:3b:b7:6e:e9:ed:06:db:22:
dc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:94:51:04:57:A4:C9:F1:42:A2:43:BD:15:39:05:8A:2B:76:79:70
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS203758.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.94.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:75:60:32:d0:38:25:6e:72:23:56:1d:06:31:8a:3b:6f:d7:
d2:15:c3:2b:43:b5:f3:41:5b:45:6f:a9:7e:75:67:74:e9:b5:
55:71:33:06:d9:c6:ff:f4:ba:6b:72:07:e5:26:2a:e1:4e:c2:
e7:12:62:a9:70:9a:b5:4f:e2:45:15:72:67:08:7e:cd:f5:5c:
71:57:bb:a0:8d:47:38:3d:d6:69:16:3d:67:97:8b:6b:96:2e:
f9:53:0e:85:a2:15:3f:b0:d9:7c:b3:73:02:04:dc:ae:87:07:
7a:12:df:4f:25:ad:68:17:5a:e5:e6:f0:0d:67:1a:29:91:20:
63:76:c2:a6:c5:9c:e2:2e:5f:30:2d:4e:2c:b5:ad:82:df:e9:
b8:a5:a3:fb:24:da:ca:f2:9a:d4:28:32:d5:e0:08:68:d6:ae:
3f:c2:f1:82:58:a0:05:7e:59:15:94:07:90:b2:8d:ed:6c:d1:
8d:01:bb:c2:2b:71:bc:1b:a9:ec:9b:3e:33:b5:8c:83:ad:90:
0b:fb:1d:7e:8c:a3:c8:4e:78:75:96:59:2d:30:0e:92:37:7a:
bb:6c:36:87:d3:68:e5:70:4b:d1:97:c2:62:6c:03:15:78:ee:
fe:c8:30:62:c7:16:c4:72:0f:c0:e4:91:65:e7:1e:63:47:00:
61:15:fc:ce
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUNqU4v1sgKbTdCASWmVqkrjiOnU4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA0MjQwMDIwMzZaFw0yNTA0MjMwMDI1MzZaMDMxMTAvBgNV
BAMTKEU2OTQ1MTA0NTdBNEM5RjE0MkEyNDNCRDE1MzkwNThBMkI3Njc5NzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHVHNNpDSKhN/PNzhx7rJwwU46
xPHn4dKqCflfz4zrTVJL/hOB8cESro3q9E7NdUhF9r5mai0o+UGLPPyjDQePN/rF
PeQK5/QW95X+XQP5rZJ/dlarqHbV9iq4VwvJkwoIgPhkCMnUVuQIn42GMCmEiRf3
UbIVy0Xx+MDiWm2ES8+ELO/oN9eX5nN9nS2uNdWaW4aRm09nXbDGWDGGzcl+O2yH
YnG2opr4KpnEfm3Rr6KyOa1/Aan1REo+z2bPXj1EZnUaZew/xsfO2lsKwYoiGdf/
CF4oqYRzgV5T3Pr+8PnAXamaiODdeumJqHrvs/6RMMvkFRg7t27p7QbbItxXAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU5pRRBFekyfFCokO9FTkFiit2eXAwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjAzNzU4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAv2Be
MA0GCSqGSIb3DQEBCwUAA4IBAQCydWAy0DglbnIjVh0GMYo7b9fSFcMrQ7XzQVtF
b6l+dWd06bVVcTMG2cb/9LprcgflJirhTsLnEmKpcJq1T+JFFXJnCH7N9VxxV7ug
jUc4PdZpFj1nl4trli75Uw6FohU/sNl8s3MCBNyuhwd6Et9PJa1oF1rl5vANZxop
kSBjdsKmxZziLl8wLU4sta2C3+m4paP7JNrK8prUKDLV4Aho1q4/wvGCWKAFflkV
lAeQso3tbNGNAbvCK3G8G6nsmz4ztYyDrZAL+x1+jKPITnh1llktMA6SN3q7bDaH
02jlcEvRl8JibAMVeO7+yDBixxbEcg/A5JFl5x5jRwBhFfzO
-----END CERTIFICATE-----
Generated at Sun Apr 28 02:24:13 2024 by rpki-client on console-ams.rpki-client.org