Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50167.roa
File: AS50167.roa (raw, json)
Hash identifier: OGsOakoQ3z02gD21Z6QfSPH5aOB4O2LRDQf5DOnczuw=
Subject key identifier: DF:C6:9F:BC:D9:29:64:9D:34:2F:C3:37:6B:46:27:88:88:E4:70:E5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 0CD831C63FE91579D2B68FAF50051BB0C2C93CB6
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50167.roa
Signing time: Thu 13 Jun 2024 19:05:18 +0000
ROA not before: Thu 13 Jun 2024 19:00:18 +0000
ROA not after: Thu 12 Jun 2025 19:05:18 +0000
asID: 50167
IP address blocks: 179.61.129.0/24 maxlen: 24
191.96.157.0/24 maxlen: 24
191.96.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 00:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:d8:31:c6:3f:e9:15:79:d2:b6:8f:af:50:05:1b:b0:c2:c9:3c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 13 19:00:18 2024 GMT
Not After : Jun 12 19:05:18 2025 GMT
Subject: CN=DFC69FBCD929649D342FC3376B46278888E470E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7b:c2:84:ff:06:a2:30:3d:5c:cf:d9:26:7b:
a8:d2:1e:e5:f8:f8:37:79:29:6c:07:9f:54:99:0d:
43:be:35:c9:07:a3:4c:3a:a3:dd:8c:01:0e:3f:75:
4d:41:98:71:fe:66:a7:6b:61:05:1e:2c:bf:2f:ef:
8a:5c:86:ab:db:6d:f2:54:d6:8d:7c:0e:9b:f2:84:
e4:4b:db:74:d9:84:3b:a0:59:70:01:df:00:d0:52:
4a:b5:a2:8d:f8:9c:be:86:c5:99:3c:b7:dc:55:ac:
4b:08:8a:d7:6f:46:42:ce:06:ac:b3:8b:aa:2f:60:
3f:b2:be:fd:76:c1:3c:d8:d3:2e:c8:67:b6:66:c5:
59:9b:72:c5:39:f3:e3:d6:bd:25:8e:cd:a5:db:41:
ed:57:d4:b9:4d:51:4c:0b:eb:3a:c0:fb:c5:93:4d:
91:6a:45:dc:d2:c7:d2:3a:c8:ff:b9:40:e6:70:f3:
be:33:1e:51:27:d0:01:48:a2:2c:b8:b5:75:b1:ee:
e2:34:0f:81:cb:e1:9e:02:13:2a:f1:13:1b:3c:77:
7c:f8:d8:f9:bd:1e:b0:36:3e:df:15:59:cc:18:f1:
b8:da:b0:77:22:34:a4:0f:57:51:19:a2:f2:51:ea:
cd:ec:35:fb:9c:03:6d:d5:d4:3a:e8:77:d6:b2:17:
f1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C6:9F:BC:D9:29:64:9D:34:2F:C3:37:6B:46:27:88:88:E4:70:E5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS50167.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.129.0/24
191.96.157.0/24
191.96.245.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e7:27:10:72:b0:18:1d:fa:80:14:c4:ee:a9:d9:0a:72:00:
d6:6d:a1:5e:5a:d0:0a:e3:e4:5c:15:e7:13:b5:97:4e:39:8f:
72:42:0c:c2:3c:9e:ca:2a:45:d0:fb:de:5f:4f:79:84:03:46:
79:86:9a:0b:ea:34:8c:8b:29:a9:94:53:ec:f6:e4:70:23:c1:
a0:80:a2:ac:a6:8e:78:b1:4b:9f:19:26:43:d6:b3:bc:89:0d:
7a:66:8e:49:c6:bb:06:d0:64:5b:92:1a:bf:c8:86:1d:f8:88:
54:cf:d4:8d:bc:2e:95:73:59:83:0a:55:e0:15:be:7c:bb:e3:
bc:45:d7:85:71:f8:3e:39:42:5a:f3:e3:86:92:ae:4b:ef:6c:
dc:fb:f5:73:76:af:32:1b:c0:9f:95:f0:1d:6e:ce:c8:29:77:
ce:0c:cc:66:ba:f7:fa:ba:e6:c6:18:ca:fd:e1:75:aa:51:ff:
19:28:3f:16:b0:87:00:f7:cb:c4:ec:bd:93:a9:6c:80:51:38:
1d:8e:b4:bd:d6:7b:41:af:5c:b4:93:63:1f:bb:e2:be:74:9d:
d4:a0:8c:62:55:64:17:8f:4e:85:bf:95:8e:ca:44:64:ce:f9:
fe:a3:e1:09:14:09:20:9c:ec:d0:2a:08:c6:5c:80:5f:8e:9a:
eb:82:f4:49
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIUDNgxxj/pFXnSto+vUAUbsMLJPLYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDA2MTMxOTAwMThaFw0yNTA2MTIxOTA1MThaMDMxMTAvBgNV
BAMTKERGQzY5RkJDRDkyOTY0OUQzNDJGQzMzNzZCNDYyNzg4ODhFNDcwRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUe8KE/waiMD1cz9kme6jSHuX4
+Dd5KWwHn1SZDUO+NckHo0w6o92MAQ4/dU1BmHH+ZqdrYQUeLL8v74pchqvbbfJU
1o18DpvyhORL23TZhDugWXAB3wDQUkq1oo34nL6GxZk8t9xVrEsIitdvRkLOBqyz
i6ovYD+yvv12wTzY0y7IZ7ZmxVmbcsU58+PWvSWOzaXbQe1X1LlNUUwL6zrA+8WT
TZFqRdzSx9I6yP+5QOZw874zHlEn0AFIoiy4tXWx7uI0D4HL4Z4CEyrxExs8d3z4
2Pm9HrA2Pt8VWcwY8bjasHciNKQPV1EZovJR6s3sNfucA23V1Drod9ayF/FnAgMB
AAGjggIVMIICETAdBgNVHQ4EFgQU38afvNkpZJ00L8M3a0YniIjkcOUwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTAxNjcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACzPYED
BAC/YJ0DBAC/YPUwDQYJKoZIhvcNAQELBQADggEBAGjnJxBysBgd+oAUxO6p2Qpy
ANZtoV5a0Arj5FwV5xO1l045j3JCDMI8nsoqRdD73l9PeYQDRnmGmgvqNIyLKamU
U+z25HAjwaCAoqymjnixS58ZJkPWs7yJDXpmjknGuwbQZFuSGr/Ihh34iFTP1I28
LpVzWYMKVeAVvny747xF14Vx+D45Qlrz44aSrkvvbNz79XN2rzIbwJ+V8B1uzsgp
d84MzGa69/q65sYYyv3hdapR/xkoPxawhwD3y8TsvZOpbIBROB2OtL3We0GvXLST
Yx+74r50ndSgjGJVZBePToW/lY7KRGTO+f6j4QkUCSCc7NAqCMZcgF+OmuuC9Ek=
-----END CERTIFICATE-----
Generated at Tue Aug 13 02:23:37 2024 by rpki-client on console-ams.rpki-client.org