Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57974.roa
File: AS57974.roa (raw, json)
Hash identifier: hcIvFqSOENYpxDZNSexCubXTkcN3Wq62GxGQeurV82Y=
Subject key identifier: A0:43:50:37:E9:37:5D:CC:D1:7A:4A:F4:40:A8:79:6F:10:E4:99:C1
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 74BCA9B10D2930C4BC4FEE806C682F75D702752F
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57974.roa
Signing time: Sun 19 Nov 2023 15:50:00 +0000
ROA not before: Sun 19 Nov 2023 15:45:00 +0000
ROA not after: Sun 17 Nov 2024 15:50:00 +0000
asID: 57974
IP address blocks: 181.41.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 10:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:bc:a9:b1:0d:29:30:c4:bc:4f:ee:80:6c:68:2f:75:d7:02:75:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Nov 19 15:45:00 2023 GMT
Not After : Nov 17 15:50:00 2024 GMT
Subject: CN=A0435037E9375DCCD17A4AF440A8796F10E499C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:99:c7:34:3e:8d:0d:74:23:8f:1d:18:20:
c4:1a:97:ab:85:f9:30:eb:2f:4a:c9:ce:41:ea:10:
84:ba:6c:34:8c:68:3f:06:20:48:5e:dc:2f:c0:aa:
fc:24:82:de:a8:9f:ea:d8:0e:0b:1a:b0:76:27:4d:
39:f3:f3:88:44:c9:61:69:21:f7:50:6d:fc:44:87:
f4:24:94:45:70:fb:26:40:57:90:37:ed:22:a8:88:
80:4e:1d:c6:40:d9:07:d3:bb:86:6e:6a:a8:01:bb:
59:a6:6f:4f:0d:c9:4d:43:f2:54:f3:a1:64:17:9f:
b5:01:99:7e:bf:ff:54:25:8a:43:89:ff:3f:27:9d:
bf:98:41:62:7e:e6:c8:46:bc:b1:4a:6a:fb:11:27:
55:50:40:17:ca:ea:77:81:79:32:99:53:6e:5c:23:
7e:2a:63:14:3b:22:05:d6:50:f3:1c:02:19:58:1d:
42:ab:4b:a1:d6:50:3f:b3:9f:7f:34:2e:09:85:f0:
fc:70:c3:d7:15:81:c9:b0:22:15:3a:a2:c1:09:3f:
e5:89:7e:3e:41:ce:46:26:97:ba:72:42:cb:76:69:
44:02:a7:28:11:fc:a9:98:2c:63:cb:b6:35:11:74:
3e:66:26:ee:fc:f2:2b:d8:3a:c0:63:6e:d2:39:0c:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:43:50:37:E9:37:5D:CC:D1:7A:4A:F4:40:A8:79:6F:10:E4:99:C1
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS57974.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.207.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:34:a7:ba:7c:31:1e:d2:da:61:69:5e:eb:ea:8f:d5:8d:32:
19:b7:e6:45:b1:5f:8b:43:11:54:fe:03:8c:2b:f4:11:c6:d0:
33:16:c7:a9:a6:51:ee:6b:86:96:09:0f:aa:6a:2f:7d:04:aa:
4e:ec:49:aa:a3:e4:f6:31:26:01:70:71:6a:62:53:02:a1:70:
7b:1a:52:de:61:83:61:73:39:cc:aa:d1:08:e6:47:2f:97:00:
19:92:db:e0:f9:50:f6:3d:09:67:51:a1:4d:7c:57:cb:ae:e0:
7e:49:6c:31:93:5c:d0:92:33:21:1e:0c:69:e0:cc:40:84:2b:
56:da:0f:a7:9b:40:4b:48:02:7c:bf:2b:77:c3:c8:65:da:3b:
09:51:3d:68:31:dd:f4:2f:b3:2d:63:ba:9b:2f:1d:31:5a:93:
af:53:38:70:58:c0:09:f0:39:3f:c9:0a:20:dd:1d:96:6a:0c:
58:3c:5d:14:a6:1e:dc:81:d8:01:29:d6:bc:29:ea:6c:16:e8:
b2:9a:cc:0c:97:dc:12:55:29:9f:90:4e:27:40:37:25:d9:0a:
10:7b:00:d7:04:12:71:59:92:67:1d:c7:7d:b4:3b:97:97:a0:
90:47:ea:f3:f5:71:20:59:82:21:6e:39:22:b7:3e:e8:64:92:
fb:92:0c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org