Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: AW7FFre6lh50tCF6KF/U7LN7ebf/8JoqoRA9g8S6lWY=
Subject key identifier: D7:0A:66:F7:75:77:95:65:60:E3:C2:D4:C0:9D:B8:7B:E8:9C:92:B0
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 178E7D71102E69E2BAA8924BFBE4DFD1C9552815
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS174.roa
Signing time: Mon 11 Mar 2024 05:36:30 +0000
ROA not before: Mon 11 Mar 2024 05:31:30 +0000
ROA not after: Mon 10 Mar 2025 05:36:30 +0000
asID: 174
IP address blocks: 147.78.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 00:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:8e:7d:71:10:2e:69:e2:ba:a8:92:4b:fb:e4:df:d1:c9:55:28:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Mar 11 05:31:30 2024 GMT
Not After : Mar 10 05:36:30 2025 GMT
Subject: CN=D70A66F77577956560E3C2D4C09DB87BE89C92B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:77:40:bc:a9:9f:db:04:d0:60:a0:2e:0d:d3:
97:5b:96:a1:0b:c3:38:1a:9e:d1:51:a5:a2:b9:2d:
0e:a8:d3:e0:85:ba:c9:90:2d:ac:49:ff:5e:a6:2e:
e4:ab:cc:d3:b5:3a:d4:98:09:28:ea:c1:f6:75:2f:
f4:ce:91:01:06:dc:f8:0b:d2:f4:e8:22:2c:82:b1:
cb:64:15:56:96:a5:d5:c5:33:a9:09:87:3b:78:1c:
63:f1:da:08:0a:91:0a:e1:ae:71:2d:eb:ef:3d:a6:
af:00:48:bd:7b:6d:61:17:6a:86:ed:0a:7f:a8:57:
cc:7d:98:3f:cb:65:db:61:84:20:92:91:9a:ad:2f:
c5:e5:bc:ee:3a:b4:fe:16:26:f7:ca:84:a1:de:b3:
3c:96:bc:de:07:e8:a1:85:27:8f:62:31:65:f5:ad:
b9:f5:db:8d:c4:02:04:c4:5b:c4:b0:b8:1f:7e:c1:
a4:12:db:18:39:77:95:9c:12:6e:5a:85:53:2c:e6:
b8:5f:e6:d2:ec:a0:03:29:22:46:d3:52:62:c5:c0:
50:7a:49:18:39:2c:e9:72:a2:a8:ae:d7:d8:2d:a3:
eb:c7:4d:e6:aa:cb:14:7e:d1:9c:69:19:cf:40:13:
ea:0b:ea:37:66:c6:d0:e2:e3:4a:48:0e:83:2c:a6:
bf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:0A:66:F7:75:77:95:65:60:E3:C2:D4:C0:9D:B8:7B:E8:9C:92:B0
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.123.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:37:37:d4:f0:e5:e6:30:44:0f:79:4a:15:58:c6:85:a0:be:
b1:a5:f6:b1:83:b8:a0:74:86:1b:d4:05:a2:15:f2:9b:12:78:
a8:06:b9:8a:98:55:28:20:c0:0f:94:4d:2e:70:e7:e1:eb:29:
49:9a:b9:4a:36:9b:fd:0c:a0:7f:b0:42:38:03:6b:3d:24:fa:
65:ef:4d:97:17:f1:e8:96:04:40:92:98:3f:ce:e9:ac:f5:37:
19:f5:f2:a7:f4:5e:a1:cb:fd:8c:1f:ce:20:04:53:51:60:8d:
88:0c:29:b3:65:65:b3:cd:85:a5:fc:21:1e:c4:6e:3f:cd:dd:
fd:5d:1c:50:ec:8f:ab:d9:a6:c5:a8:85:06:84:80:eb:a0:e5:
3e:5f:77:f0:d9:da:36:c8:01:bf:b6:df:1d:ff:9b:d7:e7:05:
53:1f:7c:8c:4c:4d:88:04:55:8a:d6:18:25:9e:b8:8c:dd:cd:
9a:d5:1a:a3:9b:3a:42:93:b1:2d:73:70:e1:ff:e5:86:f6:73:
bb:2b:43:4f:5f:08:36:f5:91:0b:c4:ac:cb:7d:07:f8:3f:32:
69:1e:15:18:17:cf:82:80:3d:a2:3d:40:ec:94:a2:f6:f1:97:
a6:ca:04:5b:fa:b6:17:9b:9a:04:ce:f3:83:19:d4:d5:6a:69:
41:0a:54:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 11 01:02:58 2024 by rpki-client on console-ams.rpki-client.org