Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
File: AS16125.roa (raw, json)
Hash identifier: /RG9eokYKScBjZZPSTNxiLqhngv/m2zc6fXGW8FBpiI=
Subject key identifier: A7:BA:99:27:2E:29:60:30:50:7E:30:BE:71:5D:0C:84:5F:12:E5:75
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 2C6A1E47911828E706CB82F2561AC2C0ADD354CF
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
Signing time: Fri 23 Feb 2024 09:39:49 +0000
ROA not before: Fri 23 Feb 2024 09:34:49 +0000
ROA not after: Fri 21 Feb 2025 09:39:49 +0000
asID: 16125
IP address blocks: 91.124.0.0/23 maxlen: 23
91.124.2.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 26 Feb 2024 14:15:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:6a:1e:47:91:18:28:e7:06:cb:82:f2:56:1a:c2:c0:ad:d3:54:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 23 09:34:49 2024 GMT
Not After : Feb 21 09:39:49 2025 GMT
Subject: CN=A7BA99272E296030507E30BE715D0C845F12E575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:f7:b0:20:20:ee:ec:5c:de:06:04:1d:c5:
f8:cc:de:9c:10:b2:0d:9e:39:7b:e5:90:f3:04:da:
3e:85:30:6d:a7:5b:86:26:28:f1:44:e1:24:46:51:
ac:68:db:e4:f0:cc:67:ed:a2:e8:5e:36:53:56:15:
61:a9:fb:41:f4:d1:51:c5:10:d2:2b:be:1e:03:47:
3c:f4:c7:63:d3:c1:12:04:37:9c:8a:58:5c:8b:1f:
07:d8:dd:b5:55:a6:ae:c9:b7:99:19:33:f6:9a:21:
8e:b3:a7:97:6b:d7:df:09:47:e0:73:73:ed:f4:54:
45:28:03:e2:83:37:1e:92:eb:78:93:33:b7:62:df:
bf:b5:c9:dd:26:22:7a:14:ec:18:b8:d6:e6:87:70:
bb:96:d5:26:c7:26:72:e7:54:e3:be:87:6b:1d:a1:
1f:16:3e:73:a2:aa:51:c7:f2:00:6b:5b:10:df:9d:
40:99:b8:15:d5:cc:b6:ab:34:04:3b:2a:ed:d1:18:
a8:1f:f4:1f:a2:0d:13:f2:82:31:a8:07:4a:02:20:
a8:44:4c:2d:08:6a:f5:b4:75:d6:a8:82:1b:a2:85:
7f:88:2b:cc:85:3f:96:c1:2a:4f:4f:34:df:1c:c1:
ca:8a:9c:e3:4c:8f:6e:bf:b0:bd:54:b4:9c:c6:7f:
25:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BA:99:27:2E:29:60:30:50:7E:30:BE:71:5D:0C:84:5F:12:E5:75
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS16125.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.0.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:27:5e:82:94:0e:74:75:19:db:50:f8:d7:50:4b:f7:3f:09:
e5:e5:3c:34:47:c6:e7:6d:fd:b2:e2:4b:f8:a1:15:b3:15:ad:
8b:89:95:b7:26:5c:eb:d5:46:ab:10:68:d5:57:8e:1a:e6:35:
20:c6:02:68:d4:11:16:02:5b:92:0d:f7:2c:22:2c:b7:17:5a:
11:40:38:fb:1e:6f:a2:38:88:56:fa:d7:84:cc:50:78:bd:54:
e1:91:0d:b1:ce:9a:a4:60:b3:e5:e8:6b:2e:02:bf:0a:ea:03:
55:47:f9:50:15:0d:cc:a0:73:d7:16:43:3c:1b:ca:e1:69:65:
dc:d2:df:dd:a1:5f:e5:6d:ec:f5:37:51:50:25:51:af:54:f4:
36:9f:be:48:f9:d9:7c:28:48:d2:8a:7b:40:03:8d:d5:23:05:
60:de:26:bd:64:2c:07:23:81:b6:73:d3:d4:40:1a:0a:4e:88:
7a:19:06:bd:d9:1d:e7:87:2a:e6:dd:6a:ec:f6:87:04:0a:75:
70:c1:8e:db:0d:57:25:11:6b:64:fa:99:36:3d:66:e3:df:3c:
ff:80:0f:0c:4f:59:1d:29:50:87:7d:2e:c2:55:c2:1f:02:71:
d0:e9:d6:22:f3:f9:6b:62:4a:8d:04:1a:54:17:27:a0:49:05:
76:33:65:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 17:17:12 2024 by rpki-client on console-ams.rpki-client.org