Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS47692.roa
File: AS47692.roa (raw, json)
Hash identifier: PGOK5RyxRx4dNgajb0zZ7mTGwDblqaiYTA6i/Jz85W4=
Subject key identifier: 74:BD:8B:6B:8A:BE:84:F5:64:5F:81:54:F3:A0:76:B4:1F:03:7F:8F
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 18FF41DB0370372ABDD1E33775D8F35F5213AF91
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS47692.roa
Signing time: Thu 30 Nov 2023 13:05:07 +0000
ROA not before: Thu 30 Nov 2023 13:00:07 +0000
ROA not after: Thu 28 Nov 2024 13:05:07 +0000
asID: 47692
IP address blocks: 194.105.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 11:44:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:ff:41:db:03:70:37:2a:bd:d1:e3:37:75:d8:f3:5f:52:13:af:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Nov 30 13:00:07 2023 GMT
Not After : Nov 28 13:05:07 2024 GMT
Subject: CN=74BD8B6B8ABE84F5645F8154F3A076B41F037F8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:df:eb:1d:16:4f:4a:8b:1f:f9:d8:59:5a:
25:66:eb:c8:9e:e0:34:3c:1d:8d:14:a0:23:39:2a:
d0:b8:ff:f7:52:91:08:8e:c6:1d:c5:1d:da:7b:bb:
d7:8c:2a:ea:27:71:c3:f4:09:7a:ae:86:94:d9:04:
5c:b3:49:d9:a4:24:33:e3:6d:84:4f:9a:52:7b:ab:
14:3b:55:8d:bc:ee:8e:1d:bc:cd:c4:bb:bc:07:be:
c3:19:f3:ad:ca:f7:67:8b:3b:c7:b1:48:7b:5a:8d:
b0:af:ba:a4:9f:93:74:c5:cc:4b:a0:58:de:7f:99:
4b:39:df:c4:b4:84:af:ec:c9:b0:ed:99:5f:b4:76:
eb:9f:29:db:a3:86:10:e2:5e:63:97:b1:5e:8b:26:
b8:d7:63:fc:00:4a:e8:3d:6e:6a:a9:8c:88:ae:f6:
b0:76:49:27:db:eb:60:af:78:f8:36:ca:11:5d:ea:
e9:f1:99:33:8f:e1:8a:c0:f3:47:b1:b0:c6:e4:a8:
87:a0:b5:8b:20:54:87:73:15:9e:05:0a:cd:37:4a:
3e:2c:ce:94:4f:17:ef:2f:c3:55:a1:95:2b:a1:da:
be:1d:02:e6:d6:81:32:17:12:76:e2:ac:47:01:9e:
f0:02:50:ae:8d:b6:ad:8c:2e:48:48:ce:48:00:89:
fa:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BD:8B:6B:8A:BE:84:F5:64:5F:81:54:F3:A0:76:B4:1F:03:7F:8F
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS47692.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.5.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:cc:a4:ec:7b:bf:5e:c1:af:86:80:01:52:2d:a3:ef:0c:14:
b1:d2:2f:aa:1e:d9:2d:56:96:10:04:1f:38:6c:d4:d6:19:58:
9f:d1:6f:21:2f:24:56:9a:49:99:c1:70:76:e1:93:f9:f6:9d:
27:02:78:51:a5:ea:27:31:8b:b7:0d:b9:bc:7f:94:30:9c:a8:
69:c2:c1:cc:3b:cc:c8:b7:ee:c4:6d:2e:da:c8:83:f9:2b:65:
96:85:58:f5:08:bc:e0:bc:c3:bd:63:73:ff:b2:7a:d4:4f:ea:
04:ff:4a:89:c4:e5:fe:1b:61:d5:8a:dc:ae:11:49:4a:2a:89:
3e:8e:f4:f7:06:20:e2:13:54:ef:3e:b2:80:f1:d5:bd:70:6f:
70:69:40:f9:1e:6a:0f:4c:62:90:38:69:d7:51:0b:f1:f6:2e:
d8:1e:6f:a9:cb:e3:82:50:bd:96:77:0a:32:0e:26:55:57:79:
96:1c:53:31:fc:bc:a9:d8:31:dc:b4:e7:a1:74:e4:a6:3d:57:
71:42:d5:36:68:91:1c:22:02:17:d7:9e:86:8a:47:8c:23:a9:
96:1d:83:2e:1a:d0:aa:3c:b3:02:1f:d4:2f:85:6e:42:a6:e6:
03:68:d6:8f:c5:8f:42:4c:d1:e0:75:d0:1d:ce:f6:b5:e5:57:
33:6a:b7:c7
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUGP9B2wNwNyq90eM3ddjzX1ITr5EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yMzExMzAxMzAwMDdaFw0yNDExMjgxMzA1MDdaMDMxMTAvBgNV
BAMTKDc0QkQ4QjZCOEFCRTg0RjU2NDVGODE1NEYzQTA3NkI0MUYwMzdGOEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuJd/rHRZPSosf+dhZWiVm68ie
4DQ8HY0UoCM5KtC4//dSkQiOxh3FHdp7u9eMKuonccP0CXquhpTZBFyzSdmkJDPj
bYRPmlJ7qxQ7VY287o4dvM3Eu7wHvsMZ863K92eLO8exSHtajbCvuqSfk3TFzEug
WN5/mUs538S0hK/sybDtmV+0duufKdujhhDiXmOXsV6LJrjXY/wASug9bmqpjIiu
9rB2SSfb62CvePg2yhFd6unxmTOP4YrA80exsMbkqIegtYsgVIdzFZ4FCs03Sj4s
zpRPF+8vw1WhlSuh2r4dAubWgTIXEnbirEcBnvACUK6Ntq2MLkhIzkgAifqzAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUdL2La4q+hPVkX4FU86B2tB8Df48wHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTNDc2OTIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADCaQUw
DQYJKoZIhvcNAQELBQADggEBALbMpOx7v17Br4aAAVIto+8MFLHSL6oe2S1WlhAE
Hzhs1NYZWJ/RbyEvJFaaSZnBcHbhk/n2nScCeFGl6icxi7cNubx/lDCcqGnCwcw7
zMi37sRtLtrIg/krZZaFWPUIvOC8w71jc/+yetRP6gT/SonE5f4bYdWK3K4RSUoq
iT6O9PcGIOITVO8+soDx1b1wb3BpQPkeag9MYpA4addRC/H2Ltgeb6nL44JQvZZ3
CjIOJlVXeZYcUzH8vKnYMdy056F05KY9V3FC1TZokRwiAhfXnoaKR4wjqZYdgy4a
0Ko8swIf1C+FbkKm5gNo1o/Fj0JM0eB10B3O9rXlVzNqt8c=
-----END CERTIFICATE-----
Generated at Wed Feb 14 15:10:47 2024 by rpki-client on console-ams.rpki-client.org