Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215740.roa
File: AS215740.roa (raw, json)
Hash identifier: YPVVY+daC5jaJeyf7Cf00WSAFVcNWpHT9nlotYBwDSs=
Subject key identifier: 10:19:BF:70:CF:7D:8E:CC:39:8B:51:A6:3E:58:15:10:3D:D9:47:86
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2EDD2B285D62B793FF0E2AB99B2D668F5C006FD3
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215740.roa
Signing time: Thu 04 Jul 2024 19:59:01 +0000
ROA not before: Thu 04 Jul 2024 19:54:01 +0000
ROA not after: Thu 03 Jul 2025 19:59:01 +0000
asID: 215740
IP address blocks: 140.233.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 19:27:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:dd:2b:28:5d:62:b7:93:ff:0e:2a:b9:9b:2d:66:8f:5c:00:6f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 4 19:54:01 2024 GMT
Not After : Jul 3 19:59:01 2025 GMT
Subject: CN=1019BF70CF7D8ECC398B51A63E5815103DD94786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:79:71:19:58:3d:c8:34:e4:c7:6f:72:6f:
8d:04:fb:c5:cd:9e:50:35:e1:d1:b6:6c:56:ae:55:
52:c6:a7:09:64:73:98:3b:7a:44:5d:9e:72:92:20:
a2:e0:f2:25:39:e4:aa:18:12:02:ce:6f:86:72:22:
50:27:38:88:26:3b:94:96:f7:40:aa:25:cb:51:0e:
04:7d:c2:80:ef:ea:80:50:f4:42:90:7b:a3:ed:cf:
08:1b:ec:2b:2e:63:fa:f0:4c:00:d0:18:35:b1:38:
b5:bb:c1:bc:ca:67:23:3a:03:fa:00:96:c2:5e:4d:
82:5e:fc:0a:cf:eb:26:b3:1e:a6:d4:59:04:f1:52:
55:3b:b0:a8:53:f0:db:5f:28:61:bb:26:be:f3:41:
84:a8:e3:74:cf:1f:6a:69:11:99:77:a3:8a:bc:74:
8b:75:06:91:1c:fb:46:ef:16:8a:f2:f3:79:c8:28:
b6:33:34:ce:aa:af:f0:fe:19:1a:36:1a:54:ad:16:
cb:4a:bf:3c:e9:c6:0c:cd:2b:93:83:3c:7c:ee:10:
06:a7:be:c5:54:db:de:88:46:3e:3a:33:1a:0a:d3:
b0:fb:fe:db:d2:98:fe:33:68:4c:2f:a2:24:94:4f:
99:40:91:2b:e3:c5:f9:00:d6:02:66:dd:6e:f8:4e:
f8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:19:BF:70:CF:7D:8E:CC:39:8B:51:A6:3E:58:15:10:3D:D9:47:86
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS215740.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.190.0/24
Signature Algorithm: sha256WithRSAEncryption
23:73:dd:fa:1e:49:9f:ba:c4:72:7f:9c:a4:77:16:5a:f3:e2:
44:a5:a5:ed:c7:cf:ae:ec:cd:c1:ce:d1:50:11:87:da:51:2f:
8c:da:22:a2:1c:b1:ed:9b:d0:c1:ad:2f:65:87:f9:df:f1:1e:
69:03:08:f2:e3:33:e5:06:04:5e:1d:e1:42:f7:ad:62:26:9a:
ab:0b:07:14:e1:af:1f:c7:76:37:19:35:c8:f2:3d:f4:34:08:
8b:eb:f3:fb:14:42:c3:61:6e:7a:e5:1a:11:9d:88:d6:61:f0:
ac:f8:05:29:b7:e5:b0:10:4a:e4:05:b9:0f:36:73:f1:89:21:
5f:39:ae:8e:cd:f7:05:d4:aa:89:48:eb:cd:30:a8:2a:61:d4:
b5:38:24:3b:6e:2e:2e:65:b4:6b:e3:ac:90:2c:a9:5e:f2:c9:
b5:49:8d:aa:ff:d2:16:0b:c2:2f:39:6e:da:8f:e6:d0:46:46:
2c:10:49:de:0b:b2:cd:f6:e5:8f:1a:0d:52:17:18:9e:96:ea:
b3:1b:87:24:55:4f:84:7e:c5:b5:a9:d0:60:c2:69:48:1d:68:
e3:b1:20:ba:3d:f2:3b:07:f6:bc:39:a3:c1:96:42:ca:2b:d3:
e3:52:f4:fa:21:b5:2e:63:88:3a:a7:ff:cf:70:02:59:2e:c4:
56:f9:af:7c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIULt0rKF1it5P/Diq5my1mj1wAb9MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDA3MDQxOTU0MDFaFw0yNTA3MDMxOTU5MDFaMDMxMTAvBgNV
BAMTKDEwMTlCRjcwQ0Y3RDhFQ0MzOThCNTFBNjNFNTgxNTEwM0REOTQ3ODYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwE3lxGVg9yDTkx29yb40E+8XN
nlA14dG2bFauVVLGpwlkc5g7ekRdnnKSIKLg8iU55KoYEgLOb4ZyIlAnOIgmO5SW
90CqJctRDgR9woDv6oBQ9EKQe6Ptzwgb7CsuY/rwTADQGDWxOLW7wbzKZyM6A/oA
lsJeTYJe/ArP6yazHqbUWQTxUlU7sKhT8NtfKGG7Jr7zQYSo43TPH2ppEZl3o4q8
dIt1BpEc+0bvFory83nIKLYzNM6qr/D+GRo2GlStFstKvzzpxgzNK5ODPHzuEAan
vsVU296IRj46MxoK07D7/tvSmP4zaEwvoiSUT5lAkSvjxfkA1gJm3W74TvjpAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUEBm/cM99jsw5i1GmPlgVED3ZR4YwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjE1NzQwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjOm+
MA0GCSqGSIb3DQEBCwUAA4IBAQAjc936HkmfusRyf5ykdxZa8+JEpaXtx8+u7M3B
ztFQEYfaUS+M2iKiHLHtm9DBrS9lh/nf8R5pAwjy4zPlBgReHeFC961iJpqrCwcU
4a8fx3Y3GTXI8j30NAiL6/P7FELDYW565RoRnYjWYfCs+AUpt+WwEErkBbkPNnPx
iSFfOa6OzfcF1KqJSOvNMKgqYdS1OCQ7bi4uZbRr46yQLKle8sm1SY2q/9IWC8Iv
OW7aj+bQRkYsEEneC7LN9uWPGg1SFxieluqzG4ckVU+EfsW1qdBgwmlIHWjjsSC6
PfI7B/a8OaPBlkLKK9PjUvT6IbUuY4g6p//PcAJZLsRW+a98
-----END CERTIFICATE-----
Generated at Mon Sep 23 22:32:52 2024 by rpki-client on console-fra.rpki-client.org