Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS57974.roa
File: AS57974.roa (raw, json)
Hash identifier: QoH3h/gITtnT0L8VPSxSt3yqPIcKc1rYKsxsj7hrQUE=
Subject key identifier: A4:BE:2E:87:D8:D9:CC:C9:FB:96:CA:02:F8:F7:73:8F:ED:17:5C:3F
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 1ADF58474D50365C99DEEE50102B43D010F57587
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS57974.roa
Signing time: Wed 21 Feb 2024 17:31:09 +0000
ROA not before: Wed 21 Feb 2024 17:26:09 +0000
ROA not after: Wed 19 Feb 2025 17:31:09 +0000
asID: 57974
IP address blocks: 185.155.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 10:03:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:df:58:47:4d:50:36:5c:99:de:ee:50:10:2b:43:d0:10:f5:75:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Feb 21 17:26:09 2024 GMT
Not After : Feb 19 17:31:09 2025 GMT
Subject: CN=A4BE2E87D8D9CCC9FB96CA02F8F7738FED175C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:64:f0:a6:48:0f:33:4a:1a:df:49:bd:6d:f4:
5e:37:62:73:2c:1e:c3:05:16:06:06:94:f6:3a:63:
65:48:d0:83:4e:b8:c9:57:b3:98:20:2c:92:81:9e:
f6:71:c0:8e:3b:3f:f3:d9:f8:ce:ae:c4:a3:c9:fe:
df:32:3a:9d:5a:07:eb:5c:55:cc:b2:f7:d2:ea:0c:
e0:2e:2e:13:2a:be:f8:9d:c3:f7:3b:c6:21:9a:39:
bf:fa:49:01:eb:e4:4a:dd:36:38:c4:8f:e7:3d:0c:
02:f8:55:07:4b:7c:5a:13:e1:1b:00:7b:c6:70:ee:
f5:59:76:a6:a2:39:d6:af:24:32:b5:b8:45:4b:69:
e2:b1:ee:c2:21:74:41:40:64:dd:ff:c0:31:9c:50:
76:fb:f1:79:60:6d:01:29:9d:5d:03:ad:b7:a5:84:
02:2b:12:01:a7:ce:1a:3b:a1:66:74:11:c7:03:e3:
89:ac:35:e9:51:70:a0:c1:07:cc:75:89:e8:08:2c:
cc:e6:da:9e:03:f7:7d:88:ff:b4:3d:ae:5a:5c:2f:
4c:62:ab:e0:08:ea:7c:15:5f:27:bb:5b:84:6b:61:
45:6b:75:7f:5e:3f:e2:a5:81:49:84:76:8f:6d:9f:
94:61:b1:bc:29:78:b4:66:da:7c:a3:ad:6c:e1:4b:
bc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BE:2E:87:D8:D9:CC:C9:FB:96:CA:02:F8:F7:73:8F:ED:17:5C:3F
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS57974.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.221.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:96:e6:8a:00:5a:ba:a2:3f:b3:88:7f:56:d0:61:92:78:25:
22:82:c0:57:8b:cd:06:50:94:86:17:f6:6b:e1:53:eb:94:4a:
0d:b4:81:21:d0:f1:ea:9e:48:7c:60:27:8e:46:ec:5c:e2:25:
55:71:b5:a6:1e:bc:e4:85:5a:e1:7e:8d:23:81:19:a2:4a:67:
99:a8:f9:71:ed:ef:75:e2:68:8b:0e:54:5b:3b:57:b9:6b:47:
21:b3:94:91:de:30:7c:eb:94:3c:87:81:c6:c6:70:7d:89:88:
cc:eb:39:ea:c9:fd:b3:88:30:f8:fe:f2:21:d3:71:bc:5a:4d:
7b:8b:08:70:4e:69:69:50:4c:22:74:98:98:ad:9f:36:5b:b5:
81:ba:d9:71:a1:b0:33:16:4f:3d:11:4f:d0:11:60:2d:6f:a4:
da:79:58:38:45:62:31:2f:0d:6c:4a:4b:94:54:c1:02:c0:16:
e6:ef:7e:d0:f1:a5:89:7e:27:f1:93:2a:30:c1:c8:b3:10:80:
24:ed:af:5a:f1:c9:a9:e0:d4:f9:f1:aa:a6:56:79:d6:61:a2:
55:c4:f1:4f:5e:a6:6e:0e:f1:48:6e:ea:87:67:55:25:56:d4:
e1:54:38:c1:e9:fe:ca:67:e7:ed:5a:60:5a:43:7a:13:c4:2a:
22:77:44:08
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUGt9YR01QNlyZ3u5QECtD0BD1dYcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNDAyMjExNzI2MDlaFw0yNTAyMTkxNzMxMDlaMDMxMTAvBgNV
BAMTKEE0QkUyRTg3RDhEOUNDQzlGQjk2Q0EwMkY4Rjc3MzhGRUQxNzVDM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZPCmSA8zShrfSb1t9F43YnMs
HsMFFgYGlPY6Y2VI0INOuMlXs5ggLJKBnvZxwI47P/PZ+M6uxKPJ/t8yOp1aB+tc
Vcyy99LqDOAuLhMqvvidw/c7xiGaOb/6SQHr5ErdNjjEj+c9DAL4VQdLfFoT4RsA
e8Zw7vVZdqaiOdavJDK1uEVLaeKx7sIhdEFAZN3/wDGcUHb78XlgbQEpnV0Drbel
hAIrEgGnzho7oWZ0EccD44msNelRcKDBB8x1iegILMzm2p4D932I/7Q9rlpcL0xi
q+AI6nwVXye7W4RrYUVrdX9eP+KlgUmEdo9tn5RhsbwpeLRm2nyjrWzhS7yDAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUpL4uh9jZzMn7lsoC+Pdzj+0XXD8wHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTNTc5NzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5m90w
DQYJKoZIhvcNAQELBQADggEBALyW5ooAWrqiP7OIf1bQYZJ4JSKCwFeLzQZQlIYX
9mvhU+uUSg20gSHQ8eqeSHxgJ45G7FziJVVxtaYevOSFWuF+jSOBGaJKZ5mo+XHt
73XiaIsOVFs7V7lrRyGzlJHeMHzrlDyHgcbGcH2JiMzrOerJ/bOIMPj+8iHTcbxa
TXuLCHBOaWlQTCJ0mJitnzZbtYG62XGhsDMWTz0RT9ARYC1vpNp5WDhFYjEvDWxK
S5RUwQLAFubvftDxpYl+J/GTKjDByLMQgCTtr1rxyang1PnxqqZWedZholXE8U9e
pm4O8Uhu6odnVSVW1OFUOMHp/spn5+1aYFpDehPEKiJ3RAg=
-----END CERTIFICATE-----
Generated at Fri Mar 22 11:20:17 2024 by rpki-client on console-fra.rpki-client.org