Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213074.roa
File: AS213074.roa (raw, json)
Hash identifier: Kr4fPsHDeCrNFZ4wForjsTs5J3BBoq06kgqtrrph8NU=
Subject key identifier: F6:75:10:1E:2C:DC:6E:15:8A:19:BC:84:3A:89:62:A2:3A:69:97:FE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7D373B6A7FF376AB0F30C04EE9AB89D2515CBD33
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213074.roa
Signing time: Mon 28 Apr 2025 07:45:22 +0000
ROA not before: Mon 28 Apr 2025 07:40:22 +0000
ROA not after: Mon 27 Apr 2026 07:45:22 +0000
asID: 213074
IP address blocks: 45.231.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 May 2025 05:45:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:37:3b:6a:7f:f3:76:ab:0f:30:c0:4e:e9:ab:89:d2:51:5c:bd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Apr 28 07:40:22 2025 GMT
Not After : Apr 27 07:45:22 2026 GMT
Subject: CN=F675101E2CDC6E158A19BC843A8962A23A6997FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d9:e8:4e:29:97:43:b4:17:c1:5d:52:01:35:
25:3e:21:89:02:67:59:99:ec:4c:c8:1f:01:7f:2a:
c1:3b:46:3a:b1:10:5c:b1:62:c5:2b:ad:8c:47:78:
a7:87:91:73:66:a2:45:c6:0b:14:59:f2:54:78:65:
c2:2e:10:fd:80:e5:74:f0:cd:e3:d7:3a:e5:62:b0:
e2:3a:76:55:b7:13:98:78:74:ee:a4:e1:d1:68:e8:
4a:19:91:7b:a7:94:db:2b:5d:2d:ba:88:85:cd:c7:
48:73:db:cf:b2:67:2a:15:8a:0f:6e:e5:08:2e:ce:
86:5d:ff:e1:79:22:d0:18:eb:59:8a:76:49:62:43:
03:d0:ad:9d:ca:96:ec:3e:30:bf:81:8c:4c:c2:e7:
14:1a:fd:3b:b0:6b:03:84:a4:ec:e6:9b:89:1a:0d:
62:30:b1:8f:48:b8:8b:5c:b0:b7:03:a1:ab:81:f6:
68:02:5a:a2:19:e1:6c:ea:12:af:a2:05:6b:8f:39:
cc:5b:75:af:aa:0e:81:a9:f9:08:c4:bb:88:80:b5:
82:47:6a:ce:fd:51:1e:b7:48:c3:06:aa:43:08:72:
ec:86:22:ee:d4:f4:eb:07:9a:a4:15:3a:9e:d6:06:
c3:75:64:e9:f4:38:da:c4:b4:b2:d4:17:8f:a8:a8:
96:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:75:10:1E:2C:DC:6E:15:8A:19:BC:84:3A:89:62:A2:3A:69:97:FE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213074.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.206.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:68:4f:6a:f0:15:7e:c2:08:f0:84:59:a0:95:e1:c6:bd:c2:
00:f7:29:8f:b7:06:a7:c4:82:15:80:43:58:ad:1a:00:2c:8d:
45:1c:01:df:0e:8e:ed:df:4e:f2:f9:58:42:c2:16:a5:38:a1:
f8:28:17:99:78:a3:8e:90:e1:3d:39:ca:93:00:c1:02:85:77:
19:aa:b7:0e:09:f2:64:76:e7:ae:f6:bd:29:4d:a2:5a:58:3f:
82:2b:67:92:d3:05:28:d9:88:e7:00:a2:11:98:80:c4:2c:2a:
f3:23:e0:46:37:f4:d4:0c:19:1c:d5:30:f9:8c:ce:24:85:79:
41:1a:f0:81:50:c7:6a:00:5c:48:de:b8:68:3f:9c:1d:cd:4a:
b4:aa:fb:1d:9b:e2:be:f1:c4:82:c4:97:d3:24:e8:c3:b7:62:
72:d5:10:f4:63:c3:df:5f:78:07:6a:f4:e3:d7:22:6d:d3:02:
2a:e5:59:cc:58:fd:a9:df:18:23:ff:42:99:e3:11:a3:43:6e:
58:e7:25:e6:14:02:9b:d5:28:fc:68:ce:a0:0a:50:1b:77:77:
cd:b5:da:8f:11:18:3e:17:69:54:e3:ae:e5:10:c3:fa:ca:2b:
71:37:1a:2f:c1:51:8f:f6:9f:24:b5:fb:76:80:32:3d:c8:a1:
16:d2:6a:b1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUfTc7an/zdqsPMMBO6auJ0lFcvTMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTA0MjgwNzQwMjJaFw0yNjA0MjcwNzQ1MjJaMDMxMTAvBgNV
BAMTKEY2NzUxMDFFMkNEQzZFMTU4QTE5QkM4NDNBODk2MkEyM0E2OTk3RkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm2ehOKZdDtBfBXVIBNSU+IYkC
Z1mZ7EzIHwF/KsE7RjqxEFyxYsUrrYxHeKeHkXNmokXGCxRZ8lR4ZcIuEP2A5XTw
zePXOuVisOI6dlW3E5h4dO6k4dFo6EoZkXunlNsrXS26iIXNx0hz28+yZyoVig9u
5QguzoZd/+F5ItAY61mKdkliQwPQrZ3Kluw+ML+BjEzC5xQa/TuwawOEpOzmm4ka
DWIwsY9IuItcsLcDoauB9mgCWqIZ4WzqEq+iBWuPOcxbda+qDoGp+QjEu4iAtYJH
as79UR63SMMGqkMIcuyGIu7U9OsHmqQVOp7WBsN1ZOn0ONrEtLLUF4+oqJb9AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU9nUQHizcbhWKGbyEOoliojppl/4wHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjEzMDc0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALefO
MA0GCSqGSIb3DQEBCwUAA4IBAQCfaE9q8BV+wgjwhFmgleHGvcIA9ymPtwanxIIV
gENYrRoALI1FHAHfDo7t307y+VhCwhalOKH4KBeZeKOOkOE9OcqTAMEChXcZqrcO
CfJkdueu9r0pTaJaWD+CK2eS0wUo2YjnAKIRmIDELCrzI+BGN/TUDBkc1TD5jM4k
hXlBGvCBUMdqAFxI3rhoP5wdzUq0qvsdm+K+8cSCxJfTJOjDt2Jy1RD0Y8PfX3gH
avTj1yJt0wIq5VnMWP2p3xgj/0KZ4xGjQ25Y5yXmFAKb1Sj8aM6gClAbd3fNtdqP
ERg+F2lU467lEMP6yitxNxovwVGP9p8ktft2gDI9yKEW0mqx
-----END CERTIFICATE-----
Generated at Sat May 10 19:59:55 2025 by rpki-client