Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211180.roa
File: AS211180.roa (raw, json)
Hash identifier: Ptneoyr8CBIYy/WygHpDGzsptwGiU7HffiSnS9qgKsY=
Subject key identifier: 21:37:65:3B:B1:62:51:0F:C7:E2:D3:22:E8:7B:5A:54:A0:02:40:A0
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 38EF13404FBCB454F2858383F74B2A6AF6EAEE51
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211180.roa
Signing time: Mon 24 Jul 2023 05:13:14 +0000
ROA not before: Mon 24 Jul 2023 05:08:14 +0000
ROA not after: Mon 22 Jul 2024 05:13:14 +0000
asID: 211180
IP address blocks: 5.181.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:ef:13:40:4f:bc:b4:54:f2:85:83:83:f7:4b:2a:6a:f6:ea:ee:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 24 05:08:14 2023 GMT
Not After : Jul 22 05:13:14 2024 GMT
Subject: CN=2137653BB162510FC7E2D322E87B5A54A00240A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:06:80:4a:b9:0e:5f:83:fb:92:70:40:27:7f:
a3:b9:32:0a:14:a3:dc:de:de:54:83:be:65:33:08:
28:67:81:cc:f8:eb:9c:3b:8b:14:76:a4:4d:58:34:
bc:18:df:3c:e3:98:51:2a:0b:1a:98:bd:18:61:c5:
15:95:0d:34:33:cc:c1:08:80:e1:f7:88:0e:9d:79:
0f:ea:df:95:33:8f:91:77:1f:62:1c:8d:4c:8c:dd:
80:59:c6:c4:2c:cd:32:d9:76:00:70:25:35:17:ee:
e4:55:b9:2b:e6:0c:59:4a:d4:6e:eb:b6:cb:9c:74:
fd:4e:c7:9f:4e:71:51:58:ec:b5:5d:a5:66:ef:f2:
7f:11:8b:bc:d0:56:79:30:fe:86:02:ef:cb:60:de:
c9:be:e6:cb:64:40:2c:81:d1:71:43:9a:f5:c8:58:
93:93:a4:68:ab:79:da:b5:49:8f:ac:93:ae:80:92:
1a:98:92:4b:8b:31:14:ee:15:b6:67:3c:fb:0e:23:
62:37:d4:02:f7:26:45:f8:57:0a:a6:42:af:ab:6d:
61:2c:87:2f:0f:2f:da:c6:f3:9f:0c:0f:0e:fb:48:
25:49:e7:ea:d1:aa:fe:d4:0f:52:6e:62:58:80:4c:
2d:ea:bd:52:fa:7e:07:9c:df:6a:57:99:49:55:c6:
4a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:37:65:3B:B1:62:51:0F:C7:E2:D3:22:E8:7B:5A:54:A0:02:40:A0
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211180.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.135.0/24
Signature Algorithm: sha256WithRSAEncryption
90:33:e0:69:f4:0b:33:2e:11:00:78:72:59:66:63:0b:9a:da:
49:25:94:45:42:51:84:15:e0:cd:9e:f1:1e:68:c9:da:ac:ef:
f9:f7:a7:84:e7:92:15:44:fb:f4:93:58:9f:09:8f:a5:03:e3:
78:d5:ce:c4:da:c5:9e:fd:cc:52:d6:cb:3c:a7:f1:0b:62:d8:
cb:b5:ea:44:4d:a6:32:e7:20:b3:7c:d3:43:31:86:fc:aa:1f:
a2:ae:8f:e7:40:e0:2f:9a:c7:1d:0b:23:b5:b7:3d:7d:c5:d5:
4f:c1:27:38:f1:13:4c:7d:db:09:35:4b:ac:3c:cd:f2:57:2c:
50:ed:37:ba:1a:82:88:1e:3d:7f:c1:bf:44:e1:00:8b:74:81:
5d:f9:2e:a5:ad:b2:0a:07:6c:69:68:46:da:1a:84:57:f6:51:
53:d6:2f:68:16:7f:c4:5e:1d:b3:91:ff:7f:eb:b7:87:e4:6b:
42:67:56:1d:4e:ee:78:a0:c5:89:1a:89:72:a7:49:08:02:7e:
d8:9d:e4:a4:62:6a:62:c0:80:56:65:1f:4a:4a:cb:25:1f:87:
e8:32:8d:2a:a5:6f:7d:3d:f5:14:43:98:e1:60:42:a3:23:cb:
54:93:9e:66:1b:14:20:02:66:13:f4:fb:79:d7:8f:34:b5:10:
10:6f:fd:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:14 2024 by rpki-client on console-fra.rpki-client.org