Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS397563.roa
File: AS397563.roa (raw, json)
Hash identifier: Hge7zoDT2FsNAHQhcWZ72V+caFjfQo5xHNyVHChS3DI=
Subject key identifier: 3C:EE:4B:DA:82:5D:2A:27:DF:2F:13:83:8F:32:72:51:52:6D:7D:6F
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 42E11EA6BA1FB86B24870D34CD0C85FBD3302297
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS397563.roa
Signing time: Mon 10 Jul 2023 14:00:07 +0000
ROA not before: Mon 10 Jul 2023 13:55:07 +0000
ROA not after: Mon 08 Jul 2024 14:00:07 +0000
asID: 397563
IP address blocks: 181.215.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e1:1e:a6:ba:1f:b8:6b:24:87:0d:34:cd:0c:85:fb:d3:30:22:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 10 13:55:07 2023 GMT
Not After : Jul 8 14:00:07 2024 GMT
Subject: CN=3CEE4BDA825D2A27DF2F13838F327251526D7D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a0:89:b3:50:44:3b:4b:80:18:ca:85:07:de:
ad:55:53:40:a1:28:32:dc:1e:fc:4b:87:51:35:2d:
31:9b:63:29:13:7f:4a:b9:d8:40:40:71:eb:1f:78:
33:79:05:bc:0d:68:15:f6:f2:3a:6d:70:b8:da:4c:
e1:57:d9:3c:05:b5:43:46:cd:82:f6:ba:fe:64:2e:
c2:40:d0:a9:17:c9:60:05:3b:25:ba:ac:63:09:7e:
02:06:aa:f1:2b:46:85:80:01:76:77:25:b8:d7:63:
09:df:e3:71:a4:e0:67:b6:dc:71:23:1e:53:95:b4:
ed:e5:c6:ad:83:5b:63:d3:5d:94:d6:fa:b0:51:7a:
40:d3:1b:bb:5c:68:20:b3:70:25:0a:c7:35:cd:6e:
90:dd:c0:c7:12:63:15:57:78:e3:f9:7a:cc:61:1f:
64:5d:60:58:44:e0:0b:40:f2:a4:98:dd:76:c4:c4:
77:e4:ea:44:89:f1:1c:18:ff:13:95:90:af:52:bb:
11:85:9f:26:77:56:3f:03:53:7a:58:c5:a9:22:44:
a9:0c:8b:32:d3:33:ba:79:e5:44:26:9c:f1:e5:63:
42:89:45:27:48:13:84:e9:2c:ba:00:15:5c:a5:52:
39:30:13:fc:95:2f:c5:16:96:9c:50:53:dc:83:21:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EE:4B:DA:82:5D:2A:27:DF:2F:13:83:8F:32:72:51:52:6D:7D:6F
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS397563.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.174.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:33:c6:11:38:6f:95:a5:fd:f4:70:6a:61:98:50:1e:88:8f:
ec:52:18:fc:ef:59:0f:aa:f5:bd:60:da:1c:1e:91:c3:da:48:
d6:55:f7:c7:b2:08:9d:51:b6:9e:c8:a0:d6:fd:22:58:d5:73:
26:86:99:ea:73:06:fe:c0:d6:29:01:30:c0:f8:fb:46:dc:9b:
eb:da:7f:06:cc:28:d0:e0:a7:b2:e9:7c:94:55:9c:24:5f:00:
80:38:93:6d:9d:69:b5:4b:80:e8:44:3d:4a:04:c8:53:ab:9a:
e9:0f:c6:4f:1b:39:17:1c:bf:ca:fa:b2:e4:5c:f7:40:03:a3:
a4:6b:95:b5:15:67:52:61:7e:e6:40:61:d6:b0:13:b3:39:e2:
bd:bd:3d:a9:ee:8d:8a:79:25:a1:4b:69:a2:b5:7b:4d:0f:91:
6d:dc:44:10:e2:32:fb:45:9e:ac:e7:05:17:f5:63:35:84:49:
25:22:88:59:4b:fd:eb:48:d6:15:19:72:f7:46:36:93:34:b4:
72:ff:d1:a6:ec:2f:2f:c0:50:72:d7:81:4e:df:1e:19:c3:8a:
62:7e:dc:a9:b2:c9:70:d7:7d:6d:d6:45:bc:96:c1:9b:28:81:
0d:31:6b:6c:0f:58:9e:a6:d1:cd:b5:8b:42:6a:97:c6:09:d8:
7e:b3:83:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org