Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS273113.roa
File: AS273113.roa (raw, json)
Hash identifier: 9AF6LzdOWAkhMvJ8d/zZJR+dMEHIJcztRJPFqhDV+sg=
Subject key identifier: 93:FA:DE:42:16:07:0B:B2:20:3F:5C:13:A5:B1:01:7B:DA:B0:C0:86
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 22419D7E4A94B40AF2D6A26D743C058F2241012E
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS273113.roa
Signing time: Wed 11 Dec 2024 13:53:48 +0000
ROA not before: Wed 11 Dec 2024 13:48:48 +0000
ROA not after: Wed 10 Dec 2025 13:53:48 +0000
asID: 273113
IP address blocks: 191.96.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 12:24:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:41:9d:7e:4a:94:b4:0a:f2:d6:a2:6d:74:3c:05:8f:22:41:01:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Dec 11 13:48:48 2024 GMT
Not After : Dec 10 13:53:48 2025 GMT
Subject: CN=93FADE4216070BB2203F5C13A5B1017BDAB0C086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:43:5b:5f:d7:c0:ef:7d:ce:df:61:6f:f7:ac:
67:a4:c0:e7:c2:cf:af:50:e6:1e:74:a5:52:1e:53:
ce:55:d6:a5:1f:03:0f:b9:f4:a2:b6:4a:e8:94:e2:
20:0e:43:d4:82:b5:cb:99:28:10:a5:ce:53:68:e0:
5a:e6:be:ce:86:e6:cc:09:91:50:f8:e8:39:3f:0b:
d2:05:d5:b4:03:9f:3a:ad:24:cb:27:b8:48:a5:97:
19:6f:e5:79:2e:22:3a:45:de:be:ba:d2:0a:ab:fc:
38:4b:92:aa:9b:71:9f:6b:f9:21:03:a5:59:f8:9e:
2e:c7:40:79:66:7e:4f:cf:ab:43:3b:93:68:6d:67:
fa:04:dc:a7:a6:8e:9d:f7:c4:fe:55:2b:f2:87:80:
7a:78:36:50:bf:30:34:ee:dd:2e:7e:c7:3a:96:36:
9f:8d:07:8e:1a:65:1b:33:3f:20:fe:35:ee:5b:8a:
eb:eb:55:31:6f:e0:d6:ae:09:c8:13:a8:a5:a4:a3:
f5:88:b3:8f:34:c2:a7:d0:96:9f:22:20:0f:bf:99:
d8:67:b6:6f:3c:3d:09:99:59:37:7c:11:e8:de:20:
54:36:bc:16:be:32:07:74:fe:58:7e:ed:05:12:10:
8d:ca:08:72:ef:f4:ff:d4:15:9c:00:45:f0:a3:2f:
7b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FA:DE:42:16:07:0B:B2:20:3F:5C:13:A5:B1:01:7B:DA:B0:C0:86
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS273113.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.164.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:fe:5c:80:3d:71:c1:cd:df:42:a5:06:09:0f:4e:53:49:67:
76:2b:02:ad:db:07:2c:e1:04:fe:36:19:67:be:7c:f7:bb:6c:
59:08:22:4f:a7:d6:f9:69:01:15:a7:a5:db:a7:e4:fe:f9:23:
99:f8:c2:c7:84:05:04:83:9d:fb:73:b1:ee:8d:25:bd:be:3e:
c7:62:d2:74:5a:85:35:25:da:35:ea:26:11:23:da:09:0c:46:
2d:c4:36:a7:7e:31:47:ac:b0:cb:10:e3:7f:3c:9c:6a:fd:e8:
bb:b9:1d:6c:6b:e9:7e:85:69:0c:e1:4e:c7:d0:cd:8b:69:3d:
36:77:0d:c6:b0:68:ff:92:c0:e0:17:18:4d:47:d9:2d:33:5c:
b3:11:a7:57:3a:91:bb:94:72:ef:fc:bb:26:b6:4b:22:d8:ef:
40:ab:d7:96:7f:40:7c:71:90:59:ac:1a:29:c2:ea:2c:84:cb:
1e:d8:76:e9:7b:d9:1d:fb:65:09:b1:1f:31:bc:2b:a4:df:15:
bf:77:e0:40:eb:31:69:4f:19:67:f7:7f:d9:38:09:61:37:42:
15:03:c0:bb:4e:77:b3:f0:35:c0:ef:cf:be:43:f1:44:e3:00:
aa:d6:f3:5c:b7:41:1b:e8:50:42:10:4c:6c:a7:5c:a1:53:c4:
2d:c6:b5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:05 2025 by rpki-client