Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS131775.roa
File: AS131775.roa (raw, json)
Hash identifier: dsL786KIizMp4N7p64Nbupz1QeO0vHea+7h0vvFSRus=
Subject key identifier: 1E:00:67:9A:97:FA:01:A7:E3:E9:2E:DB:0E:58:B7:33:D4:FB:0B:D4
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 18C9D170641A94A87083045D07FF25EF4E417A71
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS131775.roa
Signing time: Wed 03 Apr 2024 09:03:57 +0000
ROA not before: Wed 03 Apr 2024 08:58:57 +0000
ROA not after: Wed 02 Apr 2025 09:03:57 +0000
asID: 131775
IP address blocks: 91.124.40.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 10:03:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:c9:d1:70:64:1a:94:a8:70:83:04:5d:07:ff:25:ef:4e:41:7a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 3 08:58:57 2024 GMT
Not After : Apr 2 09:03:57 2025 GMT
Subject: CN=1E00679A97FA01A7E3E92EDB0E58B733D4FB0BD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:0b:34:df:88:59:02:27:92:28:5d:59:a2:
5f:95:cd:23:cc:f8:a7:39:be:60:c3:ad:46:f2:1e:
8b:aa:82:83:66:f8:0c:8d:e4:f6:9d:02:2b:97:6c:
a1:3b:7e:e7:9e:94:33:12:8a:dc:51:bd:26:87:7b:
70:03:bb:1e:93:ac:e5:8e:4a:30:af:91:23:ce:7f:
f3:26:64:5b:33:74:17:ea:b1:e2:88:4f:7f:d9:12:
4b:72:2a:2f:b6:89:f1:3a:bd:3a:b3:c1:db:ce:5d:
1f:61:db:10:d3:08:e8:b3:e0:44:75:64:28:5f:69:
16:df:c1:98:cc:88:a4:d3:f3:e5:e4:79:2b:d6:96:
a4:eb:91:fa:e6:9f:a2:9f:ad:1a:6a:01:fd:ca:d0:
5d:62:43:1d:80:26:8e:56:82:83:16:98:87:49:ec:
7c:24:e6:e3:32:0e:85:aa:28:97:b1:d7:2f:4b:d1:
2b:2c:44:1e:99:c9:30:ea:b3:c6:90:b0:d8:77:9a:
71:62:9a:08:7e:82:a9:82:3d:e2:3f:d9:0c:a2:52:
fd:4b:24:c3:9e:94:4c:b6:e7:26:1b:4d:84:cc:5c:
a0:a6:c8:51:af:05:0d:ce:62:58:84:15:00:cb:22:
6d:9d:f3:ea:ce:7d:5b:58:ca:a5:c5:eb:2e:a3:f3:
d8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:00:67:9A:97:FA:01:A7:E3:E9:2E:DB:0E:58:B7:33:D4:FB:0B:D4
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS131775.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.40.0/21
Signature Algorithm: sha256WithRSAEncryption
28:23:4c:84:da:0f:9f:54:c6:fc:11:b0:08:85:41:99:bc:24:
40:73:01:60:83:dc:b3:43:e3:e3:0c:53:e2:1e:d0:66:b8:b9:
4f:e1:c0:b4:e1:31:40:8f:1c:82:da:6d:73:0e:97:66:ff:13:
45:e6:f7:3d:62:ca:e8:55:2f:f1:12:13:24:fd:1b:05:66:6a:
c6:f7:22:54:2a:47:a6:d0:c0:9b:9b:f0:11:31:47:0d:a3:e3:
fa:29:b7:98:08:88:02:78:87:0d:98:43:41:b1:57:4b:fe:a9:
e0:c8:8f:aa:cc:a6:ac:4f:71:3a:69:1f:47:d8:c7:51:af:50:
89:79:4f:4e:03:d8:41:ab:d2:7c:f2:48:db:7c:56:b8:a1:9d:
11:77:6d:6f:e9:f1:51:b5:9e:f3:e7:5e:e5:f1:5e:95:77:20:
b5:ee:74:6b:67:0e:3e:e8:17:dd:bc:c8:30:aa:4e:1d:39:0c:
4c:03:3a:b8:dc:5b:22:10:1b:04:64:af:90:10:56:4f:a1:12:
db:60:34:e9:f3:72:65:3b:c8:4f:68:8b:aa:3c:88:4f:9e:c9:
af:42:90:8b:de:0b:c9:04:e0:b0:db:d5:93:d3:ed:4b:a5:40:
76:50:51:81:29:ac:18:ce:58:92:5e:3d:04:8b:66:99:23:5b:
00:7c:ad:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 12:51:02 2024 by rpki-client on console.sobornost.net