Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS201670.roa
File: AS201670.roa (raw, json)
Hash identifier: welW/kIOV6u7Fw4RvXQQWRbugZySPBUISqiCalQem28=
Subject key identifier: 7F:BD:9A:EA:CC:30:25:D1:AE:26:07:60:E5:F8:7B:3D:7C:62:7F:5C
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 5F8949E88A9511E9D340E53CAD43C3E53C29E6FE
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS201670.roa
Signing time: Sat 02 Mar 2024 10:21:02 +0000
ROA not before: Sat 02 Mar 2024 10:16:02 +0000
ROA not after: Sat 01 Mar 2025 10:21:02 +0000
asID: 201670
IP address blocks: 91.124.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 May 2024 10:25:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:89:49:e8:8a:95:11:e9:d3:40:e5:3c:ad:43:c3:e5:3c:29:e6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 2 10:16:02 2024 GMT
Not After : Mar 1 10:21:02 2025 GMT
Subject: CN=7FBD9AEACC3025D1AE260760E5F87B3D7C627F5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c0:fa:55:bb:b2:bf:fb:ab:a8:d3:bd:96:f6:
0a:59:fb:70:95:25:c5:14:2e:90:e2:5c:58:01:b5:
03:9d:91:ff:84:98:6f:e3:ba:9d:39:28:0e:c4:f0:
a2:e1:d8:57:e2:3a:52:20:9b:89:89:5e:09:9b:df:
49:4d:80:46:90:63:c0:42:d2:98:79:bf:cd:ba:1f:
46:6a:99:0e:1e:ea:f5:bc:21:db:06:b2:89:91:d2:
c5:ce:65:51:50:f1:91:0d:96:e7:46:0f:3f:05:70:
23:87:9e:d5:05:14:16:e0:42:3e:37:ff:2f:09:38:
45:6d:3c:d9:db:98:52:15:7e:8c:31:75:95:56:18:
d2:43:eb:cc:cf:f3:48:2d:04:1e:33:79:75:72:2b:
e7:12:3d:d4:80:d2:0d:bd:b6:17:33:31:da:4c:3d:
09:39:4c:70:40:1c:de:10:f0:95:a7:16:e3:5f:63:
fa:8b:6d:8e:ea:8f:c9:47:19:a1:7b:87:a4:7e:9c:
02:b0:c0:fa:79:23:c7:56:33:fc:c1:d4:72:6a:72:
fe:59:62:1a:ff:32:19:d2:51:d4:bc:a3:14:84:16:
4a:15:3b:64:e7:bb:31:21:6d:87:3d:3c:97:a0:bb:
1a:89:d0:bf:49:a1:e6:85:4b:4a:ab:f7:6c:87:3f:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BD:9A:EA:CC:30:25:D1:AE:26:07:60:E5:F8:7B:3D:7C:62:7F:5C
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS201670.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.1.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:10:45:6e:f9:fd:64:fc:f1:0c:5f:2d:11:b6:08:d3:e3:dd:
0a:d8:5a:20:44:55:85:a3:87:62:b4:f9:86:c0:bd:31:57:75:
95:2b:26:bf:67:6f:b4:1a:cb:aa:98:c7:1c:c7:c5:3b:b9:42:
03:e3:4b:52:ff:c3:19:f0:37:7c:46:af:ec:2a:10:de:29:d5:
27:eb:a4:44:68:b2:b8:0d:c2:12:9d:2f:cb:f8:49:5c:e3:55:
e9:4c:a1:07:bd:f5:aa:66:33:5b:62:0d:3c:f8:ca:37:9b:21:
1e:3e:3e:62:1f:97:6f:8b:76:6b:39:8a:90:95:29:ca:08:ca:
b3:6b:7d:f6:d5:4d:71:05:9f:2f:f1:39:1b:a1:e2:57:00:b6:
2e:77:88:db:34:9e:80:47:bf:ba:9e:77:f0:15:9c:6b:b8:06:
80:7f:6d:e3:0e:16:3b:fa:a6:1f:5a:d0:e7:db:53:f4:ed:05:
62:70:e4:17:36:d7:0c:34:35:22:77:34:95:f5:e0:39:71:c1:
1c:17:be:3f:cc:42:e2:f0:5e:ea:ca:d4:a8:70:ab:b8:a0:15:
ce:2f:7a:30:53:92:d5:7b:a2:9a:af:88:2a:73:1c:24:2b:cd:
ae:62:df:fb:8c:b6:e3:b5:fa:89:64:a4:f9:cd:96:e9:46:17:
ea:44:94:bd
-----BEGIN CERTIFICATE-----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Generated at Sun May 5 13:18:51 2024 by rpki-client on console-ams.rpki-client.org