Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS204256.roa
File: AS204256.roa (raw, json)
Hash identifier: CKxcc9WbWSv7FGmnWQvNdIA2TYLINDIqhvzN+YwiozY=
Subject key identifier: 98:D0:AC:0A:4F:4D:2E:4C:AA:83:09:C5:EA:36:49:76:BF:5E:9C:B3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 21CEF8007A4EE4E943F50C8997A326FA16720B43
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS204256.roa
Signing time: Sun 10 Mar 2024 09:17:47 +0000
ROA not before: Sun 10 Mar 2024 09:12:47 +0000
ROA not after: Sun 09 Mar 2025 09:17:47 +0000
asID: 204256
IP address blocks: 185.36.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 08:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:ce:f8:00:7a:4e:e4:e9:43:f5:0c:89:97:a3:26:fa:16:72:0b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 10 09:12:47 2024 GMT
Not After : Mar 9 09:17:47 2025 GMT
Subject: CN=98D0AC0A4F4D2E4CAA8309C5EA364976BF5E9CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:01:8f:dc:4d:e4:c5:c1:69:5b:34:d2:7f:
5e:52:b5:5e:76:f5:9d:f8:0c:91:bf:c1:e4:07:11:
b6:e3:87:6e:fc:18:32:65:1f:b0:12:69:44:92:96:
c8:97:33:4c:21:17:49:ed:bb:22:f8:71:7f:52:25:
03:53:52:9c:69:5b:82:d6:be:91:4e:72:db:fe:1f:
95:bd:19:2c:b2:75:c9:f7:a2:14:3a:1b:c7:15:40:
ef:42:30:81:3b:06:c5:ee:3e:96:fb:0e:22:49:10:
7f:20:f7:e9:7a:ce:f4:5b:23:3f:7e:7a:cd:42:c1:
69:7e:f7:71:8d:48:90:6d:ce:ea:e1:9b:41:51:69:
88:d4:5c:41:00:ac:b1:b9:8b:0c:fa:10:c9:d1:7e:
b6:d0:2b:39:9b:ba:50:ab:9d:99:40:0c:67:b6:0c:
b6:3d:05:94:9d:32:8d:3a:b8:b6:dc:6c:2a:29:82:
cd:e1:2a:26:a2:a1:b8:9b:82:59:67:10:85:cb:44:
f5:9e:df:7a:0c:37:a2:5f:29:a0:4b:f5:d2:10:98:
f4:3f:ee:01:7d:ab:e9:5e:49:3f:f2:29:cd:32:d8:
bb:0b:c5:bc:8e:61:f3:66:ee:95:f5:55:68:15:53:
cb:f9:c6:a3:c1:9f:3e:aa:c0:f8:a3:86:2f:48:4b:
b4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D0:AC:0A:4F:4D:2E:4C:AA:83:09:C5:EA:36:49:76:BF:5E:9C:B3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS204256.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.58.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f2:18:3b:97:c0:05:b9:0c:26:1d:80:8a:6b:e0:d8:73:a0:
e5:d2:79:46:56:18:2b:a1:d1:3e:85:4d:91:fd:39:64:73:fc:
45:82:6a:93:09:4c:e5:98:0e:d7:4b:78:2f:93:66:82:8e:90:
65:62:67:32:ea:25:d6:7f:22:65:32:7b:c4:81:f1:32:8c:c3:
11:13:24:0c:f9:bd:9e:24:24:26:2b:28:62:48:c7:90:23:88:
27:cc:e7:fe:ad:36:b8:06:f1:46:ac:20:86:56:65:5a:26:2b:
5b:9a:3f:6e:9b:ed:22:59:57:0d:67:32:a9:5e:42:f2:66:d0:
c4:e2:7a:25:3e:e7:fe:df:07:87:d8:53:26:fe:e7:c3:e7:14:
1b:1a:c8:a4:93:44:a0:42:97:4f:61:93:c1:2e:73:d7:1c:22:
d1:ba:41:bd:cd:ef:31:e4:d3:8e:99:4f:f4:93:e1:96:c9:3f:
0e:67:81:f0:cb:47:b8:26:6b:d3:b9:ae:0a:df:a6:ed:11:b9:
2d:6e:aa:04:d1:0a:69:50:ca:5c:c9:86:52:fe:f6:1c:91:83:
a8:2b:ac:26:95:63:98:a6:19:70:61:c8:a9:5a:27:94:29:81:
c9:ed:0d:48:5c:10:21:90:24:de:7f:f2:ed:62:d0:d5:e4:2c:
78:bd:6a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org