Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
File: AS400866.roa (raw, json)
Hash identifier: wnxTZS+3XKqO5BCjFWQVOtO9gUBAM5/4Of+XWDhDsYI=
Subject key identifier: EE:96:9E:11:0F:8B:F1:D5:8B:75:B0:B4:FC:04:AA:D3:8F:20:D8:A7
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7F5D71C37BC6F48713759AD3BA401993CBD02285
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
Signing time: Wed 07 Aug 2024 00:02:04 +0000
ROA not before: Tue 06 Aug 2024 23:57:04 +0000
ROA not after: Wed 06 Aug 2025 00:02:04 +0000
asID: 400866
IP address blocks: 181.214.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 00:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:5d:71:c3:7b:c6:f4:87:13:75:9a:d3:ba:40:19:93:cb:d0:22:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Aug 6 23:57:04 2024 GMT
Not After : Aug 6 00:02:04 2025 GMT
Subject: CN=EE969E110F8BF1D58B75B0B4FC04AAD38F20D8A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:e7:9f:4c:3a:80:0e:7e:11:65:aa:1d:55:
ec:0a:4c:70:1a:fa:73:fa:e7:46:e4:92:4b:4c:e6:
fb:9f:c8:67:5a:5e:55:88:39:bd:33:80:03:26:39:
16:1e:3b:53:83:dc:f9:f8:41:ed:2f:3a:6f:d6:15:
97:7d:e3:c9:bb:65:06:ab:c5:d8:20:9f:03:73:d3:
61:24:3e:92:35:a0:30:1b:f8:d5:77:b7:4b:cc:60:
a6:5d:8a:ba:80:d6:6e:42:4d:f3:e2:f6:03:6d:38:
ae:a2:cc:c8:37:e9:77:3d:8c:04:56:9f:da:14:7a:
64:38:10:6a:72:26:af:14:00:5c:a6:fa:28:a4:44:
c9:92:89:ff:00:c5:69:38:35:8a:bc:97:a4:48:29:
4c:8a:96:f4:6c:37:26:de:ff:60:10:5d:39:e7:17:
f1:07:e7:c9:3f:12:41:5d:50:46:e8:de:cb:b0:2d:
4b:64:de:b3:6e:ed:56:f2:d4:d7:3b:b5:00:23:42:
e6:d8:28:93:d5:84:c3:cd:5f:28:46:b6:9f:54:c4:
2d:a8:22:a3:ad:fe:61:0e:5b:42:95:d3:67:c6:99:
69:1f:4d:3e:f2:e9:ae:21:ef:b3:04:52:23:2a:79:
10:5d:28:09:74:4c:3e:c7:09:ae:36:57:b7:f1:99:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:9E:11:0F:8B:F1:D5:8B:75:B0:B4:FC:04:AA:D3:8F:20:D8:A7
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS400866.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:23:7a:e4:70:80:54:5b:86:d8:31:59:08:84:ed:55:79:d7:
91:00:f7:3a:cf:23:40:89:6b:bb:18:06:f7:b4:8e:70:2a:9b:
4e:bb:b9:ce:34:78:4e:ed:21:87:89:fe:7c:c5:7d:38:40:9e:
73:94:1b:73:8e:24:60:82:5f:88:89:df:b6:80:78:6f:0d:74:
e6:e8:68:d6:b6:b8:41:ef:99:97:9d:21:64:83:68:ae:67:20:
31:5e:2b:d5:1f:2a:61:bc:ca:b6:87:e0:44:2a:32:6c:31:e2:
4e:4a:2d:c7:8a:50:1e:1e:5a:24:ea:d8:39:16:12:f6:5e:72:
85:07:36:b1:a6:aa:e2:7b:d6:95:4f:da:3c:e1:e8:eb:ff:77:
46:02:ab:d8:d6:f4:ba:90:b3:3e:02:e5:ee:cf:c9:9e:59:b4:
91:30:0d:83:6f:fa:f2:4c:94:97:50:eb:c7:1e:6a:61:af:4e:
7a:40:a1:63:c0:fe:50:0e:61:b1:c1:bf:ab:e3:98:6a:9a:84:
20:80:cc:29:5d:cd:20:9d:ae:6d:52:b4:e8:1f:27:63:29:cc:
95:3d:1b:9c:41:83:2e:0b:92:47:67:4c:45:0f:98:3b:50:c8:
d0:21:0e:44:b7:0b:5a:5b:f3:b1:65:7f:af:2e:d4:25:32:b4:
3c:1e:c2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:03 2025 by rpki-client