Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
File: AS213060.roa (raw, json)
Hash identifier: udYpOD1LLBAh1ikJ9IYJ1sfD7QjKYHlgPUzWkwmqSrs=
Subject key identifier: FE:9A:EA:97:12:EE:4F:58:EB:4A:B4:46:5D:E1:66:ED:E0:AC:7D:09
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5CADA7FF1DDB947EA91D76B0C7DDE05EBFBA8979
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
Signing time: Wed 24 Apr 2024 09:50:15 +0000
ROA not before: Wed 24 Apr 2024 09:45:15 +0000
ROA not after: Wed 23 Apr 2025 09:50:15 +0000
asID: 213060
IP address blocks: 45.231.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 06:20:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:ad:a7:ff:1d:db:94:7e:a9:1d:76:b0:c7:dd:e0:5e:bf:ba:89:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 24 09:45:15 2024 GMT
Not After : Apr 23 09:50:15 2025 GMT
Subject: CN=FE9AEA9712EE4F58EB4AB4465DE166EDE0AC7D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2f:2f:f8:14:72:b0:76:68:5b:21:07:3d:5a:
8a:34:0e:01:70:d9:41:98:25:d7:b8:81:d2:94:e4:
79:2f:00:aa:64:f5:82:22:af:d2:19:71:17:38:4c:
af:56:0a:26:83:d2:d8:3b:e1:b4:69:ce:6c:0a:33:
1f:34:d7:a1:ab:d4:a3:03:8e:ca:a5:96:d8:94:38:
51:d4:52:01:d2:dc:ed:df:95:dd:5f:95:a6:f2:44:
68:de:19:7e:d1:2d:21:96:5f:15:7a:49:8b:40:eb:
5d:27:e4:8a:fa:84:55:1b:5a:48:26:42:db:fc:8d:
3f:32:65:8c:1e:d9:ac:99:55:96:d5:5b:84:aa:ab:
d6:a0:f5:f6:15:16:f2:23:bb:db:c5:d4:6a:b8:57:
30:00:d3:9e:df:0b:ba:dc:06:ca:50:84:f3:0c:21:
22:c0:78:d8:f3:64:1f:ff:bc:fa:b5:b1:2e:76:a7:
ed:a8:70:81:7d:6a:68:6c:25:f9:a5:fa:79:a4:71:
9b:66:8b:bf:de:ab:49:e7:2c:ba:ef:3b:78:c2:49:
32:fb:d5:91:82:2a:51:e7:da:2f:55:24:df:9e:f5:
23:f6:3f:d8:f8:69:39:e1:94:52:21:bc:92:0d:3e:
1e:24:fe:ad:13:54:a1:20:43:5d:55:1c:a3:c8:df:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9A:EA:97:12:EE:4F:58:EB:4A:B4:46:5D:E1:66:ED:E0:AC:7D:09
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d6:95:c3:d2:9e:7a:3e:c7:ef:dd:8a:4e:fc:ee:28:3a:90:
af:97:1a:29:59:3c:81:c8:29:ea:33:88:be:10:24:12:16:61:
c9:0b:b6:99:60:46:b1:2a:4a:61:02:68:cb:ab:10:5d:e8:e9:
bc:c4:8d:3d:a1:75:3c:11:a7:7c:40:29:d8:89:79:44:d8:72:
a1:6d:04:bb:08:31:9d:bf:58:c2:f0:7e:bb:a3:03:71:53:35:
02:40:3b:e7:21:10:eb:47:d9:d3:61:22:a6:f5:f2:f7:e2:78:
07:33:c7:24:a0:11:60:70:f2:c0:ce:76:9e:7b:f4:45:e3:5d:
ef:16:8b:71:79:10:80:59:8c:ff:97:bb:9a:79:1e:fb:fe:29:
94:b0:f0:53:5e:46:75:e7:f4:29:11:78:81:6f:78:e1:32:ab:
ee:59:b2:71:41:f5:48:d4:95:b2:8e:e9:8b:a6:75:d1:88:b4:
9e:44:f0:00:e3:92:e4:28:07:53:75:2a:72:e6:92:d3:b0:d9:
81:24:2c:58:16:b6:f6:a7:05:6b:21:0c:cd:8f:3a:c4:f5:e2:
1d:08:31:c5:84:19:c9:1f:4e:55:bd:55:2a:0f:03:76:73:06:
59:b2:33:bb:f7:05:17:ec:39:a2:8b:b3:17:6e:1a:d4:42:27:
cd:c4:2b:da
-----BEGIN CERTIFICATE-----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Generated at Thu May 2 10:53:12 2024 by rpki-client on console-fra.rpki-client.org