Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS59432.roa
File: AS59432.roa (raw, json)
Hash identifier: 9wa/NmU4HYiMD6XgZdjksmj9pA4Igb71oLMnkt7PXZo=
Subject key identifier: 5D:B9:D2:FE:10:B9:93:DA:39:C0:BD:6A:9A:62:47:2F:AF:CF:55:AC
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6D2F607A6F1817BD1802BD75FF65DC22CCC4EE4A
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS59432.roa
Signing time: Wed 07 Feb 2024 14:16:55 +0000
ROA not before: Wed 07 Feb 2024 14:11:55 +0000
ROA not after: Wed 05 Feb 2025 14:16:55 +0000
asID: 59432
IP address blocks: 181.41.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 11:12:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:2f:60:7a:6f:18:17:bd:18:02:bd:75:ff:65:dc:22:cc:c4:ee:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 7 14:11:55 2024 GMT
Not After : Feb 5 14:16:55 2025 GMT
Subject: CN=5DB9D2FE10B993DA39C0BD6A9A62472FAFCF55AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a7:cc:38:51:67:e0:0d:60:e9:00:c8:90:4b:
03:1a:79:cc:f3:17:ad:ef:4a:44:41:22:99:c1:b9:
14:a6:83:43:b1:e0:c2:57:e1:2f:85:98:a0:74:8f:
25:1d:ee:49:5c:75:73:60:94:4f:af:90:62:17:03:
51:80:5d:b5:4e:8e:93:72:fb:15:6e:9b:c6:aa:49:
19:7d:4d:ab:4c:80:22:17:1d:44:93:49:f2:59:a3:
3e:66:0f:17:35:0e:e4:19:1c:a6:94:c0:3f:e4:06:
11:76:23:6e:78:fe:c7:ba:11:7f:29:76:eb:d4:81:
e2:8c:44:0a:ad:cb:86:fb:1e:ea:61:30:57:35:6a:
b3:45:ae:b5:07:55:ac:28:d6:28:06:b8:28:d1:5e:
79:dc:3f:56:5d:31:d5:8d:9a:d3:8d:2f:f0:40:78:
56:7b:79:eb:da:e6:16:dd:11:06:27:ea:94:38:59:
81:72:95:a9:1f:c4:a6:de:7a:1a:49:9f:af:2c:1e:
a3:4e:5f:07:c4:69:01:5c:31:ba:9f:47:31:b4:05:
23:11:b2:79:25:52:5f:81:03:3d:3d:ae:10:92:c5:
f6:80:4e:a5:39:3d:55:46:65:03:c2:6c:53:6c:ea:
d3:51:4b:42:da:16:f4:ac:86:8c:2a:ef:80:ac:c1:
ab:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B9:D2:FE:10:B9:93:DA:39:C0:BD:6A:9A:62:47:2F:AF:CF:55:AC
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS59432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.214.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:17:de:6e:6e:7a:7d:56:83:15:82:fa:31:2c:2e:55:d4:29:
16:c4:73:01:83:e9:47:55:4f:59:0e:23:17:d0:c8:d3:26:d4:
58:ed:a9:5c:36:86:f3:a4:ea:74:6f:fe:50:44:7c:fa:8e:c5:
49:b5:75:9c:01:84:89:61:a8:ab:62:ca:1d:fb:c9:81:90:10:
13:b3:1b:81:05:51:ac:a6:44:4d:b2:8c:65:e8:13:04:03:05:
7b:af:fe:87:a7:94:7b:15:12:11:7d:15:22:ae:9a:99:d3:63:
a5:10:a2:5d:1d:58:f6:28:5f:af:8b:3e:ae:e1:f1:76:0a:45:
b6:d9:d9:fd:ed:17:00:99:00:dd:6e:50:ee:46:9a:08:f9:26:
f8:d0:b9:73:3a:4e:7b:bf:18:45:b4:dc:88:17:04:d8:b2:5f:
47:0f:f2:2d:81:99:f0:98:50:92:4c:e5:dd:e4:d1:9b:55:78:
1b:50:2e:1f:84:2d:67:dd:2a:89:17:27:70:a4:50:f2:8c:2f:
f3:27:27:c1:eb:ac:a6:aa:56:bf:e2:cd:ec:68:7f:87:37:ab:
3a:ef:d5:33:f1:74:71:93:d2:ee:cb:00:e2:3a:c7:d4:10:9f:
47:72:fb:0f:ed:24:57:f7:93:f7:ca:ef:77:91:13:6b:92:19:
ee:4e:c2:74
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUbS9gem8YF70YAr11/2XcIszE7kowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNDAyMDcxNDExNTVaFw0yNTAyMDUxNDE2NTVaMDMxMTAvBgNV
BAMTKDVEQjlEMkZFMTBCOTkzREEzOUMwQkQ2QTlBNjI0NzJGQUZDRjU1QUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfp8w4UWfgDWDpAMiQSwMaeczz
F63vSkRBIpnBuRSmg0Ox4MJX4S+FmKB0jyUd7klcdXNglE+vkGIXA1GAXbVOjpNy
+xVum8aqSRl9TatMgCIXHUSTSfJZoz5mDxc1DuQZHKaUwD/kBhF2I254/se6EX8p
duvUgeKMRAqty4b7HuphMFc1arNFrrUHVawo1igGuCjRXnncP1ZdMdWNmtONL/BA
eFZ7eeva5hbdEQYn6pQ4WYFylakfxKbeehpJn68sHqNOXwfEaQFcMbqfRzG0BSMR
snklUl+BAz09rhCSxfaATqU5PVVGZQPCbFNs6tNRS0LaFvSshowq74CswatjAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUXbnS/hC5k9o5wL1qmmJHL6/PVawwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTNTk0MzIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC1KdYw
DQYJKoZIhvcNAQELBQADggEBAEoX3m5uen1WgxWC+jEsLlXUKRbEcwGD6UdVT1kO
IxfQyNMm1FjtqVw2hvOk6nRv/lBEfPqOxUm1dZwBhIlhqKtiyh37yYGQEBOzG4EF
UaymRE2yjGXoEwQDBXuv/oenlHsVEhF9FSKumpnTY6UQol0dWPYoX6+LPq7h8XYK
RbbZ2f3tFwCZAN1uUO5Gmgj5JvjQuXM6Tnu/GEW03IgXBNiyX0cP8i2BmfCYUJJM
5d3k0ZtVeBtQLh+ELWfdKokXJ3CkUPKML/MnJ8HrrKaqVr/izexof4c3qzrv1TPx
dHGT0u7LAOI6x9QQn0dy+w/tJFf3k/fK73eRE2uSGe5OwnQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:05 2024 by rpki-client on console-ams.rpki-client.org