Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS984.roa
File: AS984.roa (raw, json)
Hash identifier: GrkoZfVG+UdsenjnlZFQk457F1kWnS6ebmJEDEAwjk0=
Subject key identifier: 8E:45:8A:F5:3D:ED:03:56:26:D0:F2:CA:49:FE:96:6A:33:1E:12:54
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 42AAB5DBE1004C3EBB9E4585415054D0D6F6555E
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS984.roa
Signing time: Thu 30 Nov 2023 13:05:07 +0000
ROA not before: Thu 30 Nov 2023 13:00:07 +0000
ROA not after: Thu 28 Nov 2024 13:05:07 +0000
asID: 984
IP address blocks: 193.111.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:aa:b5:db:e1:00:4c:3e:bb:9e:45:85:41:50:54:d0:d6:f6:55:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Nov 30 13:00:07 2023 GMT
Not After : Nov 28 13:05:07 2024 GMT
Subject: CN=8E458AF53DED035626D0F2CA49FE966A331E1254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:93:8b:58:47:9e:58:7f:78:70:e8:e1:4c:a4:
d8:2d:5e:e3:54:eb:7a:50:07:7b:17:94:db:67:4c:
48:06:21:83:9c:da:45:c7:ee:25:ff:d0:92:55:6b:
08:b8:35:c5:f3:24:f9:24:eb:5e:6d:c9:76:6e:4f:
13:9a:7a:c8:43:64:a8:f2:b3:62:1b:e8:ba:f4:e5:
22:33:3e:1f:47:fd:59:a3:3f:29:3b:23:d5:f0:42:
f7:25:50:80:a3:f2:f4:24:6a:fa:98:dc:63:8f:e4:
db:73:e7:4e:a7:cd:60:66:8f:6d:f8:fe:64:63:09:
11:6c:78:0d:dd:60:51:2f:1b:cf:61:cd:81:a3:43:
29:5e:30:61:b4:41:c0:70:88:be:42:69:08:18:47:
13:a9:5f:ee:78:4e:e8:8c:23:4e:ec:fe:b2:92:bf:
41:bc:8f:f3:00:4a:b4:9c:25:3b:11:59:30:57:3c:
8d:39:f0:3b:c7:48:27:8f:11:c0:46:d6:c0:cc:ca:
a8:e1:ea:c3:b9:37:01:e2:c6:21:7e:f7:5d:bf:bf:
f0:2a:77:6a:7d:27:0d:f3:9b:82:7b:b8:0a:92:00:
8b:7e:3f:19:4e:86:d8:e1:ac:9b:24:43:00:25:59:
92:d3:de:dd:52:80:08:90:d2:46:ca:6c:97:84:66:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:45:8A:F5:3D:ED:03:56:26:D0:F2:CA:49:FE:96:6A:33:1E:12:54
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS984.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.117.0/24
Signature Algorithm: sha256WithRSAEncryption
16:8c:d8:d3:11:e1:df:3d:c0:98:41:73:a1:06:3c:26:8c:f3:
be:c5:81:bb:da:02:92:aa:10:70:e9:1c:44:bb:6a:3b:ff:70:
df:36:a2:8f:40:d7:e9:a2:ee:01:6c:9e:51:e3:d0:46:84:bf:
e6:b0:a4:68:0d:12:bf:ba:65:7f:e3:fe:d5:27:fe:47:d7:e8:
7a:0b:b5:fd:20:43:c7:68:85:2c:b1:c9:23:84:76:63:ac:62:
fa:9e:1c:9f:56:bc:b9:f9:b5:40:f6:e3:c2:92:69:05:31:f3:
02:df:8c:9a:d2:1a:91:28:a4:61:9d:4a:22:29:53:d9:0c:83:
0e:ee:88:7a:6d:2b:8f:21:2d:ca:b8:5f:fa:4d:df:c3:e3:42:
c4:b7:ea:a5:5b:df:f7:8c:42:c0:dc:b9:ca:8e:ae:15:fd:c7:
3b:f8:51:84:f8:73:fa:50:88:45:e4:27:b4:ea:d3:e6:d2:72:
90:58:9a:91:13:91:0b:fd:c4:80:b6:b0:55:d7:74:d8:80:6a:
55:ad:4c:00:e5:92:af:ac:22:23:13:c2:0e:e3:1b:5e:d8:27:
b3:a3:80:dc:43:be:4c:38:96:71:45:88:de:72:6d:54:17:71:
4b:7d:bc:cb:f2:7e:62:9d:c6:52:93:5d:5c:0e:20:ed:f9:b0:
d8:e7:b9:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIUQqq12+EATD67nkWFQVBU0Nb2VV4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yMzExMzAxMzAwMDdaFw0yNDExMjgxMzA1MDdaMDMxMTAvBgNV
BAMTKDhFNDU4QUY1M0RFRDAzNTYyNkQwRjJDQTQ5RkU5NjZBMzMxRTEyNTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqk4tYR55Yf3hw6OFMpNgtXuNU
63pQB3sXlNtnTEgGIYOc2kXH7iX/0JJVawi4NcXzJPkk615tyXZuTxOaeshDZKjy
s2Ib6Lr05SIzPh9H/VmjPyk7I9XwQvclUICj8vQkavqY3GOP5Ntz506nzWBmj234
/mRjCRFseA3dYFEvG89hzYGjQyleMGG0QcBwiL5CaQgYRxOpX+54TuiMI07s/rKS
v0G8j/MASrScJTsRWTBXPI058DvHSCePEcBG1sDMyqjh6sO5NwHixiF+912/v/Aq
d2p9Jw3zm4J7uAqSAIt+PxlOhtjhrJskQwAlWZLT3t1SgAiQ0kbKbJeEZs29AgMB
AAGjggIHMIICAzAdBgNVHQ4EFgQUjkWK9T3tA1Ym0PLKSf6WajMeElQwHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTOTg0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW91MA0G
CSqGSIb3DQEBCwUAA4IBAQAWjNjTEeHfPcCYQXOhBjwmjPO+xYG72gKSqhBw6RxE
u2o7/3DfNqKPQNfpou4BbJ5R49BGhL/msKRoDRK/umV/4/7VJ/5H1+h6C7X9IEPH
aIUssckjhHZjrGL6nhyfVry5+bVA9uPCkmkFMfMC34ya0hqRKKRhnUoiKVPZDIMO
7oh6bSuPIS3KuF/6Td/D40LEt+qlW9/3jELA3LnKjq4V/cc7+FGE+HP6UIhF5Ce0
6tPm0nKQWJqRE5EL/cSAtrBV13TYgGpVrUwA5ZKvrCIjE8IO4xte2Cezo4DcQ75M
OJZxRYjecm1UF3FLfbzL8n5incZSk11cDiDt+bDY57m4
Generated at Mon May 13 00:41:20 2024 by rpki-client on console-ams.rpki-client.org