Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215727.roa
File: AS215727.roa (raw, json)
Hash identifier: iMIkaCA62EtQWFt+rUCeoyAkEgOChdHD1KyaI3n+pC8=
Subject key identifier: F4:4C:0E:6A:8C:8B:FC:48:0A:11:17:C9:93:99:CD:6E:BC:8C:56:80
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 3B8B10F18E00C914BC78AE6BA35F22427E8049BE
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215727.roa
Signing time: Sun 14 Jan 2024 16:44:52 +0000
ROA not before: Sun 14 Jan 2024 16:39:52 +0000
ROA not after: Sun 12 Jan 2025 16:44:52 +0000
asID: 215727
IP address blocks: 2.57.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 00:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:8b:10:f1:8e:00:c9:14:bc:78:ae:6b:a3:5f:22:42:7e:80:49:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 14 16:39:52 2024 GMT
Not After : Jan 12 16:44:52 2025 GMT
Subject: CN=F44C0E6A8C8BFC480A1117C99399CD6EBC8C5680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:73:82:27:1f:55:c6:72:a3:0e:9d:c4:14:f6:
e8:38:92:62:ff:84:39:e2:1e:ec:0a:a6:ff:91:47:
87:4e:23:90:51:b4:56:9b:dc:9f:1f:88:5b:5e:7b:
70:61:a0:ec:6a:d1:44:b9:46:68:31:ae:fd:8d:64:
b4:e6:db:95:83:2a:09:5f:61:a7:26:d2:25:2e:3e:
34:b3:3d:70:65:a8:d7:42:16:54:68:b9:8e:39:87:
be:b5:34:5b:62:cb:81:e7:69:36:5f:3d:da:0f:e8:
c1:ea:02:2e:f8:48:a8:ae:76:5d:59:32:3f:31:f1:
7f:42:6a:75:3c:08:a9:13:fa:07:bf:71:24:41:71:
88:4a:1b:0f:c0:b4:1e:e8:36:bf:20:1a:f3:a9:7f:
50:9c:a9:62:de:c2:08:54:56:22:ab:4f:76:77:47:
22:82:6e:6b:23:d7:69:40:7b:8c:87:04:ca:e4:d9:
f4:b9:4b:b0:16:9c:26:27:2e:a7:71:c3:e2:74:85:
9d:e0:6c:47:ca:2f:37:be:f0:21:98:a6:c7:ac:fd:
e4:4b:3f:c6:6e:b8:e3:d7:67:5f:42:39:35:6a:ad:
6a:af:20:5a:e2:1d:a4:80:65:88:d1:18:4d:dc:a8:
97:8b:a0:10:a7:fe:2c:ec:50:c3:b0:13:60:a4:ab:
90:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4C:0E:6A:8C:8B:FC:48:0A:11:17:C9:93:99:CD:6E:BC:8C:56:80
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS215727.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.18.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:27:c4:4f:a6:3d:25:37:65:81:f9:3b:3e:70:9e:62:29:a7:
66:63:c2:cc:43:02:31:8a:5f:01:86:77:d3:82:82:21:d0:82:
cf:6a:4a:19:9a:53:3d:a3:1d:db:da:0f:b8:c4:1c:39:68:3e:
a5:df:d1:14:dd:e5:68:de:37:c7:a6:17:13:57:f2:d2:ae:9a:
79:ba:f8:15:1d:6a:14:8f:71:55:26:24:cb:81:1f:a0:80:44:
14:6f:dd:f3:f2:0a:40:92:5a:a1:b0:f2:b4:ba:96:24:6e:92:
d7:6f:aa:5a:2f:96:4c:31:dd:dc:09:fb:6d:2d:f4:7f:67:c1:
b6:36:4e:5d:4c:87:d2:1f:44:e5:72:d8:8e:0e:7c:c2:57:9c:
62:5c:8b:8c:b1:40:23:79:8d:41:fa:14:60:46:65:14:d2:14:
03:8a:2b:de:db:ca:52:19:cb:a7:0e:bc:70:9f:7d:ad:b3:69:
60:df:a5:a4:22:6b:2f:c7:ad:d6:49:51:38:de:58:d9:59:ec:
37:d6:74:33:4c:b5:4f:ff:31:1c:68:7a:bf:dd:ed:9d:61:08:
86:c1:e2:cd:49:4b:ba:9f:c0:af:49:a6:94:09:0d:4b:d4:3a:
9c:0c:2d:dc:b8:1f:ed:b6:98:89:ee:c1:ac:81:65:41:ec:a8:
11:de:14:62
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUO4sQ8Y4AyRS8eK5ro18iQn6ASb4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDAxMTQxNjM5NTJaFw0yNTAxMTIxNjQ0NTJaMDMxMTAvBgNV
BAMTKEY0NEMwRTZBOEM4QkZDNDgwQTExMTdDOTkzOTlDRDZFQkM4QzU2ODAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRc4InH1XGcqMOncQU9ug4kmL/
hDniHuwKpv+RR4dOI5BRtFab3J8fiFtee3BhoOxq0US5Rmgxrv2NZLTm25WDKglf
Yacm0iUuPjSzPXBlqNdCFlRouY45h761NFtiy4HnaTZfPdoP6MHqAi74SKiudl1Z
Mj8x8X9CanU8CKkT+ge/cSRBcYhKGw/AtB7oNr8gGvOpf1CcqWLewghUViKrT3Z3
RyKCbmsj12lAe4yHBMrk2fS5S7AWnCYnLqdxw+J0hZ3gbEfKLze+8CGYpses/eRL
P8ZuuOPXZ19COTVqrWqvIFriHaSAZYjRGE3cqJeLoBCn/izsUMOwE2Ckq5CrAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU9EwOaoyL/EgKERfJk5nNbryMVoAwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjE1NzI3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjkS
MA0GCSqGSIb3DQEBCwUAA4IBAQBMJ8RPpj0lN2WB+Ts+cJ5iKadmY8LMQwIxil8B
hnfTgoIh0ILPakoZmlM9ox3b2g+4xBw5aD6l39EU3eVo3jfHphcTV/LSrpp5uvgV
HWoUj3FVJiTLgR+ggEQUb93z8gpAklqhsPK0upYkbpLXb6paL5ZMMd3cCfttLfR/
Z8G2Nk5dTIfSH0TlctiODnzCV5xiXIuMsUAjeY1B+hRgRmUU0hQDiive28pSGcun
Drxwn32ts2lg36WkImsvx63WSVE43ljZWew31nQzTLVP/zEcaHq/3e2dYQiGweLN
SUu6n8CvSaaUCQ1L1DqcDC3cuB/ttpiJ7sGsgWVB7KgR3hRi
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org