Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS48753.roa
File: AS48753.roa (raw, json)
Hash identifier: bIHRSOOTBvRAHWVN+WEgqPFdMmQQIVFRgT3J/j5zjfA=
Subject key identifier: 78:57:57:FD:1D:32:A1:D3:C3:E5:A3:2F:91:C5:0C:96:8B:96:E0:FA
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 41FB953909D4A4DC012C1B780D502A35D8015B31
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS48753.roa
Signing time: Tue 14 May 2024 15:38:21 +0000
ROA not before: Tue 14 May 2024 15:33:21 +0000
ROA not after: Tue 13 May 2025 15:38:21 +0000
asID: 48753
IP address blocks: 181.215.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 00:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:fb:95:39:09:d4:a4:dc:01:2c:1b:78:0d:50:2a:35:d8:01:5b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 14 15:33:21 2024 GMT
Not After : May 13 15:38:21 2025 GMT
Subject: CN=785757FD1D32A1D3C3E5A32F91C50C968B96E0FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:27:e3:fb:eb:cb:05:4e:ff:0e:26:2b:30:
ce:3d:11:0e:61:60:84:d0:d3:93:9e:c6:c8:f7:76:
3f:88:e9:e7:69:99:59:d0:e1:67:44:e3:d5:02:dc:
62:62:c8:ac:b8:5e:0d:05:50:00:bd:0b:2c:8e:e1:
41:56:46:5b:3d:78:62:cb:3c:6b:31:e8:0a:24:be:
b9:58:b0:da:fe:fe:8f:a6:3b:aa:25:45:ee:17:a1:
a3:9f:8d:41:77:30:53:97:f1:e5:2f:dc:7f:f9:b3:
20:d3:82:5b:0f:8d:b8:7d:3e:e8:d4:3d:86:f6:45:
6c:f5:77:c2:97:36:60:e8:c3:2f:0f:08:e0:a0:ea:
1c:15:6b:d4:96:d0:e9:db:60:1b:72:3c:50:22:d6:
a1:84:1e:66:d0:f1:99:7d:aa:be:3d:76:5e:1e:72:
10:c6:6a:e9:de:67:80:7b:fd:4b:43:83:3a:6f:30:
07:12:7b:3f:da:aa:b0:c0:81:9f:0d:ae:bc:a7:97:
89:b7:e4:22:67:92:b8:69:41:77:ae:78:1d:a4:fd:
89:a2:8a:99:76:2d:4e:a3:88:e3:d6:6d:bc:6d:ef:
f9:4f:57:11:bc:ec:eb:30:71:e5:03:39:53:13:54:
fb:9d:a1:d1:5f:44:c0:5d:cb:9f:7f:07:5c:90:99:
50:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:57:57:FD:1D:32:A1:D3:C3:E5:A3:2F:91:C5:0C:96:8B:96:E0:FA
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS48753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.215.216.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:43:9b:23:6f:a1:dd:b0:31:41:57:60:a4:b3:6f:21:c7:cc:
68:c4:8f:61:f0:a3:0b:cf:b6:12:47:de:34:66:d3:63:c9:9a:
2b:ef:1f:25:98:2e:ab:04:38:15:03:47:87:ff:2b:e6:1f:57:
36:01:60:32:60:b0:cc:2b:bb:6e:b8:50:2a:50:48:1c:8d:7a:
75:a1:e3:86:e8:97:0a:c2:9e:8a:8d:11:ad:b2:ef:97:76:08:
02:f3:4f:2e:8a:db:2e:de:d8:21:32:2f:9e:9b:53:8d:f5:26:
5f:22:28:c4:0d:e4:54:20:c9:c8:2f:ce:1d:5d:3b:78:36:25:
e0:59:50:14:4a:a5:4d:71:80:70:a3:fa:74:5c:78:14:88:72:
22:ec:4c:67:24:85:97:24:e9:23:8e:64:12:8d:78:0a:52:71:
b1:a9:ea:4a:93:c5:c0:8e:28:47:e4:f9:92:c0:0e:e5:1a:c3:
94:16:87:26:69:bd:2a:80:b0:81:9c:16:83:9b:ab:da:2f:bc:
05:4b:12:2c:f4:8c:ec:27:a2:26:a3:6c:5e:14:cc:32:20:5f:
1e:b4:ae:13:a4:71:1c:96:28:a4:b2:39:f0:c7:76:ec:63:45:
c9:d9:d8:3c:8c:48:ba:1d:03:e7:19:c1:8f:3d:5b:3c:ef:ce:
2f:b8:ac:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:23:02 2025 by rpki-client