Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206119.roa
File: AS206119.roa (raw, json)
Hash identifier: bwnfUYDuGLr7h0kLmY7AvKBNnTuPHyD/JulUILmBDJ4=
Subject key identifier: 61:EF:A3:A4:08:B8:98:B8:0E:79:D7:65:21:FA:48:A8:20:26:59:47
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7A5F64337E50272BAE9A9E2CBFD7136A9B95BA49
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206119.roa
Signing time: Mon 02 Sep 2024 13:24:15 +0000
ROA not before: Mon 02 Sep 2024 13:19:15 +0000
ROA not after: Mon 01 Sep 2025 13:24:15 +0000
asID: 206119
IP address blocks: 191.101.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 18:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:5f:64:33:7e:50:27:2b:ae:9a:9e:2c:bf:d7:13:6a:9b:95:ba:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 2 13:19:15 2024 GMT
Not After : Sep 1 13:24:15 2025 GMT
Subject: CN=61EFA3A408B898B80E79D76521FA48A820265947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bd:96:c3:5a:c3:1d:0d:9e:7c:dd:47:66:37:
ab:f5:d9:ff:3f:d0:c0:8f:59:a6:de:cc:4a:87:8c:
5b:df:02:5e:70:04:b7:1e:13:ed:9d:59:de:21:a1:
0e:fb:ba:93:dc:db:ce:b9:61:e1:57:e5:91:e1:78:
39:7a:9f:9f:28:0b:ac:f5:46:83:af:2d:a6:03:b7:
6e:92:81:f9:32:d5:36:f4:b4:45:08:c5:d0:45:46:
68:7f:18:8e:b1:d5:2b:04:21:8c:38:5f:a2:08:a2:
2a:37:cb:ee:f4:da:e0:21:0a:53:ed:e1:3e:58:a0:
57:1e:a3:30:36:e0:6c:90:45:3a:5e:7d:39:a8:db:
1f:0b:ea:e2:47:2e:3f:69:40:3f:24:03:c5:8e:a1:
23:c1:5e:f1:0a:72:9a:ba:45:3c:6a:ed:f0:27:c6:
f1:ff:79:73:74:47:c6:74:bd:b1:f9:56:b7:de:b3:
14:39:3c:86:c9:49:5f:ca:70:da:bb:1d:db:6a:0a:
69:35:a2:f7:3d:5e:ba:68:44:4c:49:21:62:7f:4a:
54:35:e8:fe:e5:c9:b7:a0:60:38:41:8e:36:52:97:
a6:4b:d3:9f:fc:e3:3b:38:17:b2:69:00:cc:28:e6:
cf:6c:64:3d:f4:4e:c1:54:51:cc:59:46:39:b8:50:
64:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EF:A3:A4:08:B8:98:B8:0E:79:D7:65:21:FA:48:A8:20:26:59:47
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS206119.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.247.0/24
Signature Algorithm: sha256WithRSAEncryption
21:44:36:98:9e:78:d8:e5:06:4d:df:85:8f:88:2f:c1:78:b6:
76:3b:fc:17:9e:9b:cf:ad:bc:6d:fb:f9:dc:bf:c8:40:35:d0:
e8:b9:d7:d7:69:30:5c:84:36:2a:9e:25:70:74:35:f4:23:85:
76:50:39:2c:a5:8b:63:57:53:6a:e4:95:25:c6:47:1a:99:78:
09:1e:92:39:bc:85:60:ef:a9:ad:b9:a8:7d:05:4f:94:03:10:
41:fd:a9:60:85:f6:99:b1:c0:45:4d:07:f4:b7:51:02:62:ef:
d4:05:ec:9f:8b:d2:19:32:4a:dd:7b:ed:83:69:97:cf:9b:e8:
9e:7c:0c:48:26:bb:73:75:6b:ab:a4:21:36:68:04:74:45:64:
d6:0b:a0:03:33:1b:6e:93:2c:59:c5:82:83:0a:be:59:3d:85:
90:44:11:b2:e6:79:a6:fd:43:4b:a6:5d:1d:8a:d1:78:62:d0:
06:73:03:e3:5e:a3:5c:6e:1f:ba:3b:0b:a8:34:99:27:16:2f:
f9:12:4a:36:7e:85:f3:3b:7f:35:2d:05:97:b9:e5:7d:17:36:
eb:54:c0:d9:61:90:5f:c8:42:04:e3:4e:65:c6:f9:f5:66:f2:
83:82:5c:4a:34:1f:8f:1a:fa:61:38:f6:06:07:33:13:b7:75:
c9:7e:4a:6b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUel9kM35QJyuump4sv9cTapuVukkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA5MDIxMzE5MTVaFw0yNTA5MDExMzI0MTVaMDMxMTAvBgNV
BAMTKDYxRUZBM0E0MDhCODk4QjgwRTc5RDc2NTIxRkE0OEE4MjAyNjU5NDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUvZbDWsMdDZ583UdmN6v12f8/
0MCPWabezEqHjFvfAl5wBLceE+2dWd4hoQ77upPc2865YeFX5ZHheDl6n58oC6z1
RoOvLaYDt26Sgfky1Tb0tEUIxdBFRmh/GI6x1SsEIYw4X6IIoio3y+702uAhClPt
4T5YoFceozA24GyQRTpefTmo2x8L6uJHLj9pQD8kA8WOoSPBXvEKcpq6RTxq7fAn
xvH/eXN0R8Z0vbH5VrfesxQ5PIbJSV/KcNq7HdtqCmk1ovc9XrpoRExJIWJ/SlQ1
6P7lybegYDhBjjZSl6ZL05/84zs4F7JpAMwo5s9sZD30TsFUUcxZRjm4UGRzAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUYe+jpAi4mLgOeddlIfpIqCAmWUcwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjA2MTE5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAv2X3
MA0GCSqGSIb3DQEBCwUAA4IBAQAhRDaYnnjY5QZN34WPiC/BeLZ2O/wXnpvPrbxt
+/ncv8hANdDoudfXaTBchDYqniVwdDX0I4V2UDkspYtjV1Nq5JUlxkcamXgJHpI5
vIVg76mtuah9BU+UAxBB/alghfaZscBFTQf0t1ECYu/UBeyfi9IZMkrde+2DaZfP
m+iefAxIJrtzdWurpCE2aAR0RWTWC6ADMxtukyxZxYKDCr5ZPYWQRBGy5nmm/UNL
pl0ditF4YtAGcwPjXqNcbh+6OwuoNJknFi/5Eko2foXzO381LQWXueV9FzbrVMDZ
YZBfyEIE405lxvn1ZvKDglxKNB+PGvphOPYGBzMTt3XJfkpr
Generated at Thu Oct 31 20:35:54 2024 by rpki-client on console-fra.rpki-client.org