Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212815.roa
File: AS212815.roa (raw, json)
Hash identifier: LPNlqCpZ/HpHgY6KCXR+gT3A98qu8HYVU352iQJrnFQ=
Subject key identifier: 0D:0A:20:02:FE:BD:F0:DE:29:F3:A5:3A:0D:E4:23:29:BE:94:B2:3C
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1364C3E5265C69381D6708964275927D8AD6C131
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212815.roa
Signing time: Mon 16 Oct 2023 10:27:16 +0000
ROA not before: Mon 16 Oct 2023 10:22:16 +0000
ROA not after: Mon 14 Oct 2024 10:27:16 +0000
asID: 212815
IP address blocks: 2.57.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 00:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:64:c3:e5:26:5c:69:38:1d:67:08:96:42:75:92:7d:8a:d6:c1:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Oct 16 10:22:16 2023 GMT
Not After : Oct 14 10:27:16 2024 GMT
Subject: CN=0D0A2002FEBDF0DE29F3A53A0DE42329BE94B23C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:d0:b5:81:c8:c7:00:37:16:1a:5d:a0:cb:
b8:e4:1e:99:71:d3:af:ca:24:bc:f1:5f:cd:2f:1a:
e1:60:0e:4d:3d:be:d7:d1:39:0c:23:5c:4a:46:be:
fe:d5:5c:36:bb:4a:c4:ba:a4:c5:09:ad:55:f9:67:
2e:f9:b4:58:17:47:b8:0f:00:8c:6d:56:95:70:20:
dd:ed:82:fc:13:24:c1:f9:4c:06:85:e5:22:a5:a8:
61:20:c7:8e:de:77:e0:12:c6:00:d6:d1:55:7f:9c:
9a:de:90:ae:ea:d9:ca:7e:0b:73:2e:04:3a:c2:ce:
2f:31:09:1a:a7:2c:0a:af:15:3f:be:0a:6d:98:2c:
02:7a:13:85:3e:08:38:9c:7f:53:d1:d3:d1:c9:92:
ad:90:f6:fa:38:cc:83:42:ee:d4:47:24:91:fd:ad:
16:7b:a8:7d:fe:d0:dc:c7:85:99:25:fb:99:3b:2e:
b1:07:ad:6d:76:ee:91:89:f6:2c:92:a3:9f:01:0d:
71:03:81:ab:2d:65:94:53:51:da:52:a4:42:f4:75:
a8:38:f6:9b:8c:d7:94:66:c8:ef:9f:59:dc:d6:44:
73:79:86:11:c8:fa:28:82:d2:b2:cb:dc:b7:2a:b4:
79:ff:e6:33:fa:b9:d4:7b:11:02:79:ce:24:06:0e:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0A:20:02:FE:BD:F0:DE:29:F3:A5:3A:0D:E4:23:29:BE:94:B2:3C
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS212815.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.18.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1c:a0:d4:86:83:87:08:17:03:f8:38:56:73:6c:67:b4:5c:
35:b4:43:93:4d:e8:e6:42:1c:1d:c1:34:f1:87:fc:02:23:fc:
39:52:20:20:d6:1f:9e:44:e8:91:8a:26:02:7f:82:fd:ac:eb:
23:6f:cb:25:c0:64:02:ef:10:17:5e:51:8e:4c:32:d9:f0:b5:
0c:0a:4d:6d:c2:a8:d7:94:f7:6f:a4:d0:3c:dd:39:40:d6:25:
87:5b:a9:1e:47:c4:b3:6e:a1:f8:07:79:28:04:40:35:dc:9e:
c5:fb:d4:a1:ae:f2:ba:b9:b2:b6:87:b8:b7:aa:b3:98:25:6f:
b1:51:fe:a4:df:d1:d3:f1:ad:a5:45:55:1c:5a:98:cf:e2:8b:
ee:9e:34:60:1c:80:03:b6:e3:ce:1f:62:d3:4a:a2:be:7a:29:
4b:8b:26:2e:24:20:f6:8e:73:ad:39:bc:5d:09:13:17:b5:2d:
06:db:de:12:29:46:9a:24:3a:4c:d6:f6:af:98:96:d1:e7:9e:
dd:d2:9e:03:04:34:47:f9:09:f2:e3:dc:5c:1b:36:48:e6:d4:
e1:16:dc:74:c4:58:75:09:12:13:4f:54:77:f0:01:6f:0d:7f:
ae:44:e9:6d:2b:f7:ba:52:6e:4e:f5:57:44:3d:eb:92:4e:2b:
07:1d:1c:78
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUE2TD5SZcaTgdZwiWQnWSfYrWwTEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yMzEwMTYxMDIyMTZaFw0yNDEwMTQxMDI3MTZaMDMxMTAvBgNV
BAMTKDBEMEEyMDAyRkVCREYwREUyOUYzQTUzQTBERTQyMzI5QkU5NEIyM0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCybtC1gcjHADcWGl2gy7jkHplx
06/KJLzxX80vGuFgDk09vtfROQwjXEpGvv7VXDa7SsS6pMUJrVX5Zy75tFgXR7gP
AIxtVpVwIN3tgvwTJMH5TAaF5SKlqGEgx47ed+ASxgDW0VV/nJrekK7q2cp+C3Mu
BDrCzi8xCRqnLAqvFT++Cm2YLAJ6E4U+CDicf1PR09HJkq2Q9vo4zINC7tRHJJH9
rRZ7qH3+0NzHhZkl+5k7LrEHrW127pGJ9iySo58BDXEDgastZZRTUdpSpEL0dag4
9puM15RmyO+fWdzWRHN5hhHI+iiC0rLL3LcqtHn/5jP6udR7EQJ5ziQGDmJpAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUDQogAv698N4p86U6DeQjKb6UsjwwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjEyODE1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjkS
MA0GCSqGSIb3DQEBCwUAA4IBAQADHKDUhoOHCBcD+DhWc2xntFw1tEOTTejmQhwd
wTTxh/wCI/w5UiAg1h+eROiRiiYCf4L9rOsjb8slwGQC7xAXXlGOTDLZ8LUMCk1t
wqjXlPdvpNA83TlA1iWHW6keR8SzbqH4B3koBEA13J7F+9ShrvK6ubK2h7i3qrOY
JW+xUf6k39HT8a2lRVUcWpjP4ovunjRgHIADtuPOH2LTSqK+eilLiyYuJCD2jnOt
ObxdCRMXtS0G294SKUaaJDpM1vavmJbR557d0p4DBDRH+Qny49xcGzZI5tThFtx0
xFh1CRITT1R38AFvDX+uROltK/e6Um5O9VdEPeuSTisHHRx4
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org