Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5089.roa
File: AS5089.roa (raw, json)
Hash identifier: Cej8buolJoaQxOt7YrsZw3aPhxT3tDyTfcbzUz1tRSw=
Subject key identifier: 47:99:6C:3C:D6:22:73:AD:37:39:2B:55:78:6D:C7:A3:18:9F:2D:35
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 336F09F84DF5753E4645AFD5CF249C233C8AF344
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5089.roa
Signing time: Fri 09 Jun 2023 10:21:30 +0000
ROA not before: Fri 09 Jun 2023 10:16:30 +0000
ROA not after: Fri 07 Jun 2024 10:21:30 +0000
asID: 5089
IP address blocks: 181.214.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 14:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:6f:09:f8:4d:f5:75:3e:46:45:af:d5:cf:24:9c:23:3c:8a:f3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jun 9 10:16:30 2023 GMT
Not After : Jun 7 10:21:30 2024 GMT
Subject: CN=47996C3CD62273AD37392B55786DC7A3189F2D35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a6:ed:55:09:61:84:ab:00:9c:71:45:6b:6b:
43:87:cc:74:58:07:84:69:2e:68:05:f8:e9:a5:8e:
1e:a6:bd:4b:fa:51:7a:12:6c:c8:f4:0d:57:4b:04:
e2:e5:4d:b8:fa:77:2b:d5:9d:23:c2:9f:49:d8:a4:
74:87:9d:35:c2:e6:88:01:c0:8a:a7:cd:c5:19:15:
ce:5c:2b:b3:54:bd:11:8b:33:00:3c:a2:3b:ea:14:
99:9b:0a:da:df:f6:c4:d0:9b:2c:cf:a8:4d:99:fe:
75:48:b4:46:eb:67:ea:be:9c:7c:26:f8:3c:e0:dc:
cd:66:7a:e4:e5:5e:ae:6f:9f:68:ed:86:8e:41:88:
43:44:bb:13:3a:64:99:b9:e4:67:fd:f8:34:db:ec:
6e:68:78:98:d3:c8:16:59:75:7b:a3:e3:7e:b5:ea:
77:bc:42:71:26:9f:d4:41:6b:8a:57:ad:7f:03:5e:
4e:42:4c:f9:56:69:b2:5f:72:8d:98:09:69:8b:d5:
fe:df:c2:3c:20:3c:8c:32:21:1f:e3:25:77:6a:ea:
5a:15:18:c6:1d:95:13:95:90:f6:21:e0:bd:dd:1b:
2b:f5:85:4d:f3:87:f1:6a:34:8c:ed:d2:52:b1:3a:
3d:14:c0:47:af:fd:83:69:9c:39:80:9f:4b:17:f6:
24:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:99:6C:3C:D6:22:73:AD:37:39:2B:55:78:6D:C7:A3:18:9F:2D:35
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS5089.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.168.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f2:27:a7:ba:56:0b:d1:0b:5f:e6:6b:f1:5a:b4:99:d1:81:
a5:af:b4:0a:e4:e2:29:76:21:0d:ad:6e:98:f7:eb:9b:36:00:
e9:16:65:60:1b:dc:bd:89:a6:c8:5b:52:cd:15:cc:09:72:77:
05:cb:3d:4a:d9:7f:e0:b2:5c:07:bc:d8:8b:1a:ef:30:f2:ee:
8f:d9:a9:eb:41:04:cb:73:fb:f7:19:ae:b4:06:e9:5f:b1:0f:
61:7a:07:9f:79:9f:33:29:3a:cf:bd:ff:fc:fa:7b:f1:7e:fc:
d9:7d:47:56:b4:1d:f9:d4:25:94:41:7f:29:ac:ac:eb:0e:21:
16:f8:7a:e1:e0:31:7c:e1:1c:2d:6f:44:e9:23:10:e2:41:43:
d3:16:13:e8:90:86:5c:b3:b6:b7:e1:cf:6a:ab:4b:9b:9d:01:
98:c1:77:27:dc:83:f3:e8:20:aa:14:c3:47:6f:1e:94:18:23:
d3:10:fe:ba:cd:93:62:79:8d:21:e1:95:2c:f7:a7:b8:6d:7f:
1a:bd:13:e9:db:14:97:21:78:ad:f6:99:9f:71:fa:73:58:4f:
6e:48:15:f5:e8:b7:0b:cb:d6:39:80:98:8e:bb:07:90:e7:eb:
f2:b0:1e:ad:46:67:a1:b6:02:f8:c6:a4:61:2a:20:32:93:29:
68:2f:da:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org