Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204769.roa
File: AS204769.roa (raw, json)
Hash identifier: kXTZ0Yzbc1hw41dkEyLnSk2h4+BsImp+CPaWZT1CLxg=
Subject key identifier: F0:B0:11:77:63:90:E8:3B:97:AE:83:42:B9:02:40:DC:EE:2A:A9:25
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3B9B63D092C64B7FA26354369F66B5B7A9C0DDD6
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204769.roa
Signing time: Sun 16 Jul 2023 09:21:17 +0000
ROA not before: Sun 16 Jul 2023 09:16:17 +0000
ROA not after: Sun 14 Jul 2024 09:21:17 +0000
asID: 204769
IP address blocks: 181.215.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:9b:63:d0:92:c6:4b:7f:a2:63:54:36:9f:66:b5:b7:a9:c0:dd:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 16 09:16:17 2023 GMT
Not After : Jul 14 09:21:17 2024 GMT
Subject: CN=F0B011776390E83B97AE8342B90240DCEE2AA925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:71:f8:1c:01:4c:f4:08:30:c8:60:bf:a7:fd:
8d:1a:c4:2e:84:c2:b5:ff:9b:e0:75:ce:69:88:f2:
9b:e4:e0:f3:a0:04:58:49:8b:25:5c:84:45:48:01:
63:0f:ec:a0:33:de:97:df:de:ab:28:ab:57:c0:ed:
c5:68:c4:d4:44:d2:60:a6:00:85:58:75:2a:92:2b:
93:59:63:51:80:61:7b:b4:cc:51:b0:b1:60:99:8d:
22:93:c3:d0:46:e6:2c:cd:ed:ca:2a:bb:8c:aa:9d:
cc:c2:52:f0:e2:44:78:34:cd:7f:8b:72:e9:89:43:
d0:11:88:77:fa:d6:d9:78:6d:ea:bb:a2:0b:73:fd:
1e:87:b6:b6:84:84:cc:7b:85:57:80:46:43:29:25:
a0:49:32:67:4c:c3:95:f6:42:0d:dd:b1:79:ea:a3:
f4:ad:cd:10:b3:31:62:2a:76:ac:96:5a:2f:00:e9:
26:cf:5d:62:17:c2:58:27:e9:ca:57:22:38:0c:5a:
5f:36:bf:af:9b:e2:4b:58:d1:64:e6:6d:78:c4:04:
22:77:95:71:76:5f:25:47:cf:bc:f9:cd:36:4b:14:
23:ec:6d:31:a7:d7:b6:c0:a8:26:89:e0:6f:ea:93:
c8:d2:58:55:b7:df:9e:0a:1a:00:e3:6c:db:6e:b2:
5c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B0:11:77:63:90:E8:3B:97:AE:83:42:B9:02:40:DC:EE:2A:A9:25
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS204769.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.190.0/24
Signature Algorithm: sha256WithRSAEncryption
58:33:3f:6d:fb:26:6d:08:4b:48:e2:91:16:f5:82:24:72:2b:
5d:0f:97:27:b3:34:f6:ea:c5:0f:f9:ca:1c:17:8c:22:9e:a3:
0b:99:9b:11:36:a8:8b:3f:4c:0b:b2:b8:8f:b9:2d:65:31:1f:
a1:5b:77:a6:ea:79:67:d9:ec:d7:67:83:94:9f:f7:36:48:c6:
37:35:b5:2b:a7:9a:a3:80:b5:85:4b:69:3a:d3:71:f8:6f:8b:
39:c4:f9:5f:4e:61:ac:e4:25:99:d5:e3:7a:5e:3c:e1:d7:46:
6f:72:a4:33:3f:0a:7d:c4:51:31:76:f5:62:df:1e:51:63:a4:
f5:15:4e:f6:a9:99:e5:e7:48:0f:c1:f0:9f:02:44:dc:de:8d:
68:6d:76:6a:e1:40:b6:30:50:1e:9d:9e:80:90:96:0c:44:0c:
a3:e2:d3:ae:b0:64:54:d4:b6:f9:eb:71:4a:ee:eb:71:17:73:
67:78:80:08:41:2b:e4:c7:80:68:7f:c8:9e:28:d7:d4:3f:62:
89:37:42:12:d7:e4:12:bf:d6:e6:ab:df:b0:14:bd:a2:e1:47:
3f:4c:2e:89:4c:d7:71:0f:bf:a8:ce:65:21:13:aa:b2:f7:db:
44:2f:c5:f7:45:9e:db:3f:24:2f:75:9e:b1:ea:2b:73:b6:5d:
d4:2e:6c:40
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUO5tj0JLGS3+iY1Q2n2a1t6nA3dYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzA3MTYwOTE2MTdaFw0yNDA3MTQwOTIxMTdaMDMxMTAvBgNV
BAMTKEYwQjAxMTc3NjM5MEU4M0I5N0FFODM0MkI5MDI0MERDRUUyQUE5MjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNcfgcAUz0CDDIYL+n/Y0axC6E
wrX/m+B1zmmI8pvk4POgBFhJiyVchEVIAWMP7KAz3pff3qsoq1fA7cVoxNRE0mCm
AIVYdSqSK5NZY1GAYXu0zFGwsWCZjSKTw9BG5izN7coqu4yqnczCUvDiRHg0zX+L
cumJQ9ARiHf61tl4beq7ogtz/R6HtraEhMx7hVeARkMpJaBJMmdMw5X2Qg3dsXnq
o/StzRCzMWIqdqyWWi8A6SbPXWIXwlgn6cpXIjgMWl82v6+b4ktY0WTmbXjEBCJ3
lXF2XyVHz7z5zTZLFCPsbTGn17bAqCaJ4G/qk8jSWFW3354KGgDjbNtuslyBAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU8LARd2OQ6DuXroNCuQJA3O4qqSUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA0NzY5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtde+
MA0GCSqGSIb3DQEBCwUAA4IBAQBYMz9t+yZtCEtI4pEW9YIkcitdD5cnszT26sUP
+cocF4winqMLmZsRNqiLP0wLsriPuS1lMR+hW3em6nln2ezXZ4OUn/c2SMY3NbUr
p5qjgLWFS2k603H4b4s5xPlfTmGs5CWZ1eN6Xjzh10ZvcqQzPwp9xFExdvVi3x5R
Y6T1FU72qZnl50gPwfCfAkTc3o1obXZq4UC2MFAenZ6AkJYMRAyj4tOusGRU1Lb5
63FK7utxF3NneIAIQSvkx4Bof8ieKNfUP2KJN0IS1+QSv9bmq9+wFL2i4Uc/TC6J
TNdxD7+ozmUhE6qy99tEL8X3RZ7bPyQvdZ6x6itztl3ULmxA
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:14 2024 by rpki-client on console-fra.rpki-client.org