Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS49468.roa
File: AS49468.roa (raw, json)
Hash identifier: RvfHaUlDmw1YLDr9ulMKaVYIgOlSRGTQHpQB8tY5ySc=
Subject key identifier: A8:D7:1F:E4:5B:25:A3:43:B0:5E:4F:0A:C4:A1:F6:06:B2:83:1B:21
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7EB7C5F6EE2C629A94B00A9AB3E359C76F9081A2
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS49468.roa
Signing time: Fri 21 Jun 2024 00:00:17 +0000
ROA not before: Thu 20 Jun 2024 23:55:17 +0000
ROA not after: Fri 20 Jun 2025 00:00:17 +0000
asID: 49468
IP address blocks: 191.96.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Dec 2024 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:b7:c5:f6:ee:2c:62:9a:94:b0:0a:9a:b3:e3:59:c7:6f:90:81:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 20 23:55:17 2024 GMT
Not After : Jun 20 00:00:17 2025 GMT
Subject: CN=A8D71FE45B25A343B05E4F0AC4A1F606B2831B21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f2:f7:d8:2b:8a:db:2d:dd:8a:a8:a0:77:8d:
b7:b5:8c:48:2e:2d:1f:4c:48:8b:ce:0c:75:16:b3:
a4:de:48:c0:3f:57:5c:66:e0:c0:38:3c:4c:e9:68:
31:90:aa:44:dd:50:8e:03:71:f1:23:f7:6f:f3:08:
d8:fe:ed:fd:6c:43:c1:c4:80:08:ca:b7:d2:62:be:
9b:ba:78:f3:f4:d7:49:6c:e1:38:b1:91:62:d5:43:
6d:7b:95:bc:42:fb:0d:6b:ee:f4:86:4c:7e:3f:1e:
c7:45:41:5d:b1:f6:d5:9f:e0:0f:4f:ff:61:99:3a:
51:ff:9b:15:86:c5:aa:e2:2b:3b:08:0d:31:93:be:
9e:49:92:59:92:26:23:86:20:b6:f8:7b:a0:12:02:
de:b1:e6:f8:6b:98:c8:87:54:22:da:12:5f:be:0e:
df:07:bf:40:72:db:5f:62:2d:6c:a3:52:0a:e2:a9:
c2:bf:8a:f8:f2:ea:98:24:79:9b:b2:7f:42:4c:a0:
6b:90:f1:d4:4f:8a:99:54:76:03:fd:d9:ca:a4:79:
96:1a:39:48:12:51:39:ab:14:29:8f:9a:7b:42:ef:
aa:38:99:f9:b3:20:29:92:03:88:e2:fa:37:5c:13:
4a:50:19:39:f3:09:1e:a8:17:87:dc:54:47:df:ce:
49:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D7:1F:E4:5B:25:A3:43:B0:5E:4F:0A:C4:A1:F6:06:B2:83:1B:21
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS49468.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.96.116.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:e6:4c:8e:f7:67:33:1b:15:3e:21:ee:17:34:b6:4e:ba:85:
15:da:8f:74:bb:83:83:08:cb:0c:1d:3c:28:e1:4e:0c:42:35:
a5:68:54:01:54:3f:1e:63:ba:8e:1a:73:1d:50:01:0d:04:01:
af:74:bf:14:9e:37:95:de:39:2f:a1:ab:bf:64:2f:de:45:36:
c8:f3:19:ac:3d:f3:bd:bc:bb:f4:cc:b1:44:5f:ce:7f:51:eb:
22:a6:13:64:67:9e:49:3c:7e:6a:43:56:db:04:18:64:61:f5:
ca:bb:0e:ae:bd:a4:2e:2c:f4:79:cd:15:d3:65:4d:52:4f:fe:
dd:5f:0c:38:ea:0f:af:5b:d6:b2:ea:ed:73:91:c6:2e:a3:d1:
f4:5c:24:a6:4c:65:af:1d:86:6c:17:46:b8:e6:00:72:99:72:
16:2a:7b:ef:77:d3:96:04:31:5f:47:84:55:49:03:00:e7:e3:
f1:e0:81:84:65:68:84:06:23:f1:29:48:65:40:a6:cb:b3:12:
3c:f3:2c:44:ba:75:5b:0a:82:85:98:a7:9c:76:bf:31:8f:6f:
36:e7:b5:c5:62:ae:d8:57:3b:89:bb:2e:f0:e4:eb:f2:86:40:
48:3c:d5:fc:7b:58:e9:cf:ac:c0:04:3e:66:f5:14:c1:0f:8b:
df:f0:a4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:15:41 2025 by rpki-client