Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216466.roa
File: AS216466.roa (raw, json)
Hash identifier: cbZwiCv3KoI5xTlgYJ0QYDCAKXNqCNXjcUaKlUhTYgA=
Subject key identifier: 7B:BF:E8:AE:4E:1E:5F:75:B4:CF:71:66:14:91:E3:0C:E7:F4:B1:48
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5001040F997F4A39CB0010FA4421BF71B42E5508
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216466.roa
Signing time: Thu 25 Jul 2024 08:05:19 +0000
ROA not before: Thu 25 Jul 2024 08:00:19 +0000
ROA not after: Thu 24 Jul 2025 08:05:19 +0000
asID: 216466
IP address blocks: 181.215.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 10:55:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:01:04:0f:99:7f:4a:39:cb:00:10:fa:44:21:bf:71:b4:2e:55:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 25 08:00:19 2024 GMT
Not After : Jul 24 08:05:19 2025 GMT
Subject: CN=7BBFE8AE4E1E5F75B4CF71661491E30CE7F4B148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:95:7f:f0:11:e0:8f:82:c5:b8:ac:dc:c8:a4:
55:ed:15:6d:84:80:c2:e1:33:1e:a5:62:55:45:b2:
2e:91:3e:95:93:66:3c:b7:ab:af:16:1e:f3:ee:95:
2a:06:de:0d:54:cc:6b:0f:2d:6d:af:f7:14:8c:71:
51:2e:23:c5:f5:12:e5:39:18:97:05:14:1c:bb:5c:
fe:a2:59:84:94:a2:98:0c:eb:1d:8e:d8:51:68:ba:
aa:27:76:89:3e:17:df:51:d5:05:b3:28:ca:45:dd:
7e:b9:8b:0a:b5:db:11:34:fe:ee:08:96:04:bf:e5:
00:86:6b:73:26:bc:cf:e7:80:21:6c:af:18:fc:98:
a5:62:47:5e:a3:71:c7:b5:5f:14:c2:c9:9a:67:8f:
f9:a0:08:f0:18:49:a6:c2:99:7e:37:d6:de:33:23:
f1:25:42:b3:58:94:b8:c5:7a:09:d8:75:e6:fc:96:
39:f9:d0:42:70:4b:a4:ec:4e:80:cb:78:5c:1e:88:
0c:e1:a0:7b:51:09:65:1a:cf:a6:b1:02:b3:c6:0a:
8a:29:7d:cd:ed:38:f0:31:9f:2e:db:68:d6:2a:1b:
b7:d6:1d:0d:64:5e:fc:8e:f4:45:f2:a2:5e:6c:dd:
cb:73:6b:b2:84:0b:16:fb:aa:38:ac:9e:6e:7d:a0:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BF:E8:AE:4E:1E:5F:75:B4:CF:71:66:14:91:E3:0C:E7:F4:B1:48
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS216466.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.140.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:63:70:9c:c2:ee:db:fd:4c:95:c3:b1:a1:3c:9a:8a:a3:2b:
30:38:ff:67:0b:84:ec:27:46:e6:ca:65:f1:3a:05:0a:ca:21:
fc:92:33:2f:3c:3d:3c:7e:cb:67:62:b5:19:7a:60:32:4b:d7:
c5:8b:ee:18:a5:25:67:d7:71:82:88:d8:fb:0a:5e:14:06:a3:
c8:a0:be:04:b2:6f:e3:82:53:8d:2d:9b:20:5b:2f:4a:71:3f:
56:49:8f:22:7e:08:56:49:ac:45:8e:66:8f:d2:c2:5c:bb:4f:
23:1d:a5:e1:a4:f8:4e:c8:49:62:80:b2:85:18:8e:2b:f5:da:
fc:4d:b0:fd:0e:a5:e1:e1:e4:10:b3:74:6c:12:7c:b4:57:da:
bb:15:c7:19:24:e6:93:fb:93:bb:b4:32:b0:b4:ab:3d:fd:2d:
91:0a:b5:3f:36:51:c2:91:c5:b9:93:21:d5:02:83:76:51:45:
a1:1c:ce:9b:27:86:72:13:3f:36:dc:1d:8a:90:c8:20:59:5e:
ff:7a:7f:42:54:cf:00:6d:0f:c9:f9:80:a7:96:e9:8e:01:ff:
c2:d2:41:23:2c:73:c7:02:db:8d:0d:68:80:09:f3:21:cd:b8:
c3:51:66:8e:d7:0d:60:40:60:27:6a:1c:f2:8d:d5:51:f3:51:
5c:42:ef:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 15:01:51 2024 by rpki-client on console-fra.rpki-client.org