Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
File: AS133398.roa (raw, json)
Hash identifier: sadU9otwZ5+Kpk+/fZ3arjv38mhEiVn8b+iS28Ow+FA=
Subject key identifier: 24:6E:F7:06:36:50:55:3E:B2:ED:6F:53:E9:A0:B5:96:A8:7D:27:67
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 5C517A2A5B88858967615925BBFD7E4A079BEBB5
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
Signing time: Wed 01 Mar 2023 07:08:14 +0000
ROA not before: Wed 01 Mar 2023 07:03:14 +0000
ROA not after: Wed 28 Feb 2024 07:08:14 +0000
asID: 133398
IP address blocks: 191.101.180.0/24 maxlen: 24
193.31.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 08:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:51:7a:2a:5b:88:85:89:67:61:59:25:bb:fd:7e:4a:07:9b:eb:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 1 07:03:14 2023 GMT
Not After : Feb 28 07:08:14 2024 GMT
Subject: CN=246EF7063650553EB2ED6F53E9A0B596A87D2767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:c2:fa:01:8d:42:b9:0e:78:15:1f:96:a8:
f0:c8:96:b2:88:70:51:52:02:c0:9e:44:ab:16:c0:
57:e2:93:b1:58:04:ec:66:02:c9:92:51:21:bd:a4:
1f:7f:00:85:04:c0:6c:3e:f7:91:ba:b4:aa:d7:28:
e2:fc:66:d5:a1:40:94:4b:45:8f:ca:43:c6:04:6c:
4a:5f:27:6d:34:6b:90:af:e6:4d:40:f2:9d:f8:53:
b5:98:d2:ef:b5:58:99:d2:85:54:0e:a3:25:73:4f:
d1:40:35:74:78:74:37:87:1e:3d:32:02:32:ea:f2:
ea:65:a0:b0:46:af:07:b4:05:6f:91:91:82:83:48:
83:90:49:8d:26:6f:98:41:9a:74:a7:53:14:67:0b:
d7:7c:27:35:b7:f8:2a:d9:1c:96:6f:ec:0d:4f:b9:
73:71:9f:ce:a1:f5:19:97:75:33:5f:ac:60:7e:b7:
7c:36:a2:97:bd:ed:22:3c:bd:aa:8e:20:ad:f0:5e:
5b:de:1b:2d:97:07:16:b2:da:ae:a2:f1:77:38:51:
48:2c:dc:cb:40:f6:a9:54:07:b6:01:16:6b:bc:4c:
02:d4:09:f7:6f:7f:d6:25:cb:0f:89:ac:a2:81:c7:
90:85:22:54:7f:95:fd:92:b1:38:c6:82:41:86:d2:
26:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6E:F7:06:36:50:55:3E:B2:ED:6F:53:E9:A0:B5:96:A8:7D:27:67
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS133398.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.180.0/24
193.31.41.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:89:c7:0e:d0:5d:57:b3:99:3a:1d:a9:8f:da:91:43:e9:3b:
fa:8f:38:13:db:08:c2:c6:a3:16:c3:b8:6b:c8:ba:b3:12:3a:
e8:af:47:9c:32:7d:97:10:0c:18:95:6e:29:dc:9e:08:60:02:
bc:29:56:f4:7a:a0:da:43:60:41:85:c7:22:bc:d0:a3:5b:48:
49:4d:f1:27:a6:a5:f7:66:9c:be:b3:0f:5d:c9:b1:43:7c:67:
57:00:5e:3e:7a:21:a8:ac:46:c5:5f:26:95:31:67:89:f6:ac:
46:ed:48:b5:df:95:98:ea:e1:7e:de:16:bc:5b:1a:25:4a:8e:
9a:cb:d4:3e:66:7b:8a:84:db:3c:f1:fd:b9:ba:ab:74:5b:7f:
09:0c:42:37:5d:a3:b2:23:59:5a:24:83:0a:c3:cf:47:c0:09:
fc:8c:4f:26:5a:2f:1a:3d:f9:3d:2b:a2:3f:e0:c0:b3:c6:83:
38:e9:3f:54:db:01:f2:19:1f:cb:2c:26:2c:01:db:f2:b9:61:
4f:65:95:90:4e:89:96:72:b5:30:2d:d3:b6:0d:b8:05:3a:ae:
3c:ef:a6:76:39:b4:ca:04:0f:df:9b:be:37:05:58:9a:df:2a:
bf:68:49:4f:2a:e6:3b:19:b0:80:03:75:39:0c:78:e8:1f:b1:
5b:77:51:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:01:51 2024 by rpki-client on console.sobornost.net