Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215287.roa
File: AS215287.roa (raw, json)
Hash identifier: Qi58xf7Ufnvn4WXyEIElbkebNk+eNDisc2ehKcosv7Q=
Subject key identifier: A8:25:D7:93:57:B0:3C:8F:D4:A5:CC:B9:90:56:75:E3:16:3A:49:1B
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1C1F0E39BD8AF5C8249886A3E40F051197C1C840
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215287.roa
Signing time: Tue 16 Jul 2024 13:56:12 +0000
ROA not before: Tue 16 Jul 2024 13:51:12 +0000
ROA not after: Tue 15 Jul 2025 13:56:12 +0000
asID: 215287
IP address blocks: 147.79.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 00:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:1f:0e:39:bd:8a:f5:c8:24:98:86:a3:e4:0f:05:11:97:c1:c8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 16 13:51:12 2024 GMT
Not After : Jul 15 13:56:12 2025 GMT
Subject: CN=A825D79357B03C8FD4A5CCB9905675E3163A491B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:50:0b:cf:c7:4c:f5:07:f4:23:4f:ae:4d:
fc:64:ba:16:9b:3b:4b:9e:39:98:17:41:c8:cb:78:
fe:3f:54:4e:b5:2c:5a:35:f2:ce:cf:89:ec:fe:a8:
25:f7:bb:eb:3d:48:4d:b3:88:f8:cb:33:d3:08:fb:
c7:6e:5f:0b:06:cb:da:e5:33:2b:03:ce:fe:3f:e6:
9f:54:bc:9b:de:fb:1a:86:b6:0f:17:89:2b:87:a7:
45:c9:3a:87:96:66:7f:ec:40:f4:cd:63:18:0f:ee:
21:a0:25:db:3f:c1:9f:fa:f3:bc:cf:b5:01:58:e0:
24:1d:0e:1a:cd:45:13:cf:9a:09:96:9b:71:35:1c:
b6:b4:4a:3e:de:4d:78:f3:c7:fe:ca:d2:78:6e:f2:
16:18:34:00:07:88:64:90:92:74:fd:9b:a6:3a:84:
b9:71:e1:bd:cf:39:f4:4b:45:ce:90:0b:2d:1c:c9:
a7:d6:9d:f9:90:75:af:0e:77:ad:7a:69:16:c7:a3:
2d:a3:78:93:2e:79:bf:43:53:77:77:ca:75:7c:be:
5e:ad:5a:b1:9d:a6:6a:70:cd:8a:44:88:1b:81:e4:
84:51:5d:9b:1c:84:3d:cc:b8:f0:12:55:a8:32:2a:
61:b0:4e:99:01:0e:66:9f:bb:0a:a9:cc:27:a2:5f:
72:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:25:D7:93:57:B0:3C:8F:D4:A5:CC:B9:90:56:75:E3:16:3A:49:1B
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215287.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.22.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ce:5f:9c:15:10:ec:51:88:a4:e5:cc:8b:fd:d0:d9:d2:b8:
7f:43:b4:50:44:2d:f0:9f:7d:17:da:5c:9e:fb:72:84:96:74:
27:2d:34:85:7a:c5:a9:f2:17:5b:7c:1a:31:b2:19:9f:8f:a0:
8a:32:82:b7:9a:ad:39:8c:bf:b7:94:e5:b6:07:4a:6f:84:56:
22:c0:dc:7b:9c:3d:8e:8f:6f:af:25:8e:1a:77:a9:b9:57:3e:
67:4b:c9:df:8e:b9:4a:84:12:51:30:a1:f6:51:73:d2:6a:3b:
a0:e2:9d:67:1a:2d:88:39:ff:73:9e:7a:41:3b:a3:bd:22:23:
dd:07:ef:0c:15:21:67:c1:95:39:77:1b:9e:bc:b4:a7:cb:5c:
64:8c:9d:1c:c5:2d:c7:55:79:27:8c:9e:26:fd:02:b7:7d:50:
50:c5:98:25:68:af:82:c5:e2:fb:99:4d:e8:3a:3c:52:de:92:
da:34:f1:26:bb:c0:e5:77:5a:fe:fb:d5:db:cf:73:c1:a5:a2:
56:8f:35:7d:bc:71:b3:e6:08:e1:2d:d4:7f:dd:f7:b2:fa:5f:
e6:4d:44:e1:ea:6f:72:ce:08:01:60:a5:25:1e:0b:54:ad:f3:
2c:60:e7:43:a6:18:1e:ed:76:7d:e8:94:d8:d5:13:d9:50:b2:
88:42:b5:c5
-----BEGIN CERTIFICATE-----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Generated at Fri Aug 16 03:32:25 2024 by rpki-client on console-fra.rpki-client.org