Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215143.roa
File: AS215143.roa (raw, json)
Hash identifier: 5ajZlnQtZzRdDXo2nUBIBp8tcKMYNfBQMhES9/UYQek=
Subject key identifier: B6:98:5F:14:D8:8F:C4:E7:FC:EB:40:55:04:C5:2D:F4:B4:C4:6D:BB
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1DE764D3A4B0518F248FCF8EB3BBF9DEB7954EB5
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215143.roa
Signing time: Fri 09 Aug 2024 12:59:38 +0000
ROA not before: Fri 09 Aug 2024 12:54:38 +0000
ROA not after: Fri 08 Aug 2025 12:59:38 +0000
asID: 215143
IP address blocks: 191.101.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 07:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e7:64:d3:a4:b0:51:8f:24:8f:cf:8e:b3:bb:f9:de:b7:95:4e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 9 12:54:38 2024 GMT
Not After : Aug 8 12:59:38 2025 GMT
Subject: CN=B6985F14D88FC4E7FCEB405504C52DF4B4C46DBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0b:3b:10:3a:cc:ae:78:99:09:60:e7:14:ea:
e9:2a:33:69:20:41:08:5c:d6:5e:22:c0:17:ac:f4:
59:9a:55:ef:a4:da:5f:b8:31:82:4e:41:c2:1a:c8:
7c:e3:f0:dc:91:83:f7:e3:ad:34:35:ee:fc:0d:b8:
d2:e7:2e:31:38:8d:12:1c:c1:6c:ed:4a:a8:63:3c:
ff:d1:75:3f:c0:e2:38:24:ba:0a:b7:d8:d5:b7:7d:
ec:f9:af:24:4c:cc:d8:df:36:93:07:a6:c0:f8:ca:
03:92:db:b1:7e:eb:eb:60:df:be:60:ca:f5:c7:53:
bd:03:5c:7e:bb:f6:d0:c3:05:65:d9:0d:43:c4:53:
8f:2c:c8:19:7a:80:64:8b:94:17:9c:6d:e3:a2:70:
6d:06:39:9e:dc:bd:cf:6f:18:84:b3:61:9c:a8:14:
7f:24:86:95:a2:07:65:22:a1:03:1c:e5:e2:80:db:
86:22:34:84:59:c8:37:ef:9e:00:3b:0f:8f:94:80:
1c:c4:e0:5f:29:3e:05:26:96:67:40:af:e1:1f:41:
59:46:38:79:04:f3:0b:2e:8b:58:32:8e:ee:fb:c0:
3d:ec:01:8f:4d:62:f9:a5:b0:b3:b3:4d:6e:86:9d:
74:af:01:d0:2e:05:07:52:56:25:4c:ee:1a:4c:23:
e4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:98:5F:14:D8:8F:C4:E7:FC:EB:40:55:04:C5:2D:F4:B4:C4:6D:BB
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215143.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:d9:d6:ff:58:f9:ef:ac:9a:18:0c:5e:3e:eb:a6:f2:3b:cc:
c1:d0:9a:40:0d:e3:e1:5a:08:79:5d:03:2f:8f:4b:52:91:ab:
e5:cf:f0:2a:84:2e:5d:1a:b2:52:ae:ac:9d:a1:22:7b:f0:b3:
1e:4e:53:d8:25:39:0c:21:45:e8:0d:15:44:32:36:0e:94:c0:
4e:e2:b1:b4:c4:bc:c9:16:68:7d:ad:ca:8d:e1:99:66:b3:ea:
fa:b3:ab:3a:d4:89:72:c5:e7:c5:02:44:79:9b:e5:11:53:cd:
5a:32:14:a5:28:9b:d0:34:87:ad:7c:10:01:8c:30:53:5f:48:
27:13:22:cb:28:2f:32:c9:20:9e:07:59:5e:f4:a3:13:a3:f0:
de:69:33:ac:6f:d5:a9:e8:8e:6e:37:0a:f9:8b:56:f0:ea:8d:
ce:c1:e3:19:1b:37:0e:79:73:97:70:dd:c2:df:5b:13:73:91:
ae:f2:09:e6:82:26:9f:62:34:d1:16:14:3e:70:7f:ea:32:24:
5b:49:1e:fe:2d:a1:4d:39:e2:b4:64:15:c9:58:a2:2c:9c:47:
bd:36:c9:0c:74:9f:e7:00:61:0f:fc:5d:f0:ea:a9:02:da:ea:
5d:ed:0d:52:93:13:bc:26:c4:e9:e3:44:dc:73:eb:bd:7c:c3:
ef:9f:0c:b5
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 9 09:22:36 2024 by rpki-client on console-fra.rpki-client.org