Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60223.roa
File: AS60223.roa (raw, json)
Hash identifier: eoV6oYPmfZxNkbnP7qpNC2+oLP3tDnTYLAFV+Zlb3H8=
Subject key identifier: 05:D3:45:4D:00:12:FC:A1:E7:4F:BA:68:93:70:B8:CB:B4:07:88:2B
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 41084B234C73C97A1045F2F0620FDFAFD7D2D663
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60223.roa
Signing time: Mon 19 Aug 2024 15:53:20 +0000
ROA not before: Mon 19 Aug 2024 15:48:20 +0000
ROA not after: Mon 18 Aug 2025 15:53:20 +0000
asID: 60223
IP address blocks: 45.157.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 00:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:08:4b:23:4c:73:c9:7a:10:45:f2:f0:62:0f:df:af:d7:d2:d6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Aug 19 15:48:20 2024 GMT
Not After : Aug 18 15:53:20 2025 GMT
Subject: CN=05D3454D0012FCA1E74FBA689370B8CBB407882B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:60:e1:5d:38:76:fc:c6:82:16:f9:94:b6:a0:
39:2c:ca:4f:bb:d1:46:e4:2b:18:26:8c:20:8a:b0:
f8:04:51:be:43:cf:f6:1f:3f:ef:b8:45:48:c4:d6:
62:37:f9:63:1f:34:4a:b6:2d:bd:ca:b1:75:78:ee:
0f:35:5a:05:5a:71:39:22:4b:f0:61:81:27:06:55:
64:fc:2b:b5:9c:38:06:37:79:a8:2e:10:32:db:0d:
94:02:b6:42:4a:b8:44:15:8f:9d:10:b4:36:65:a9:
2c:06:ce:fb:67:db:b1:f0:ed:22:e7:29:c9:f0:f4:
f8:18:f1:f7:a6:f9:0a:7e:52:b5:62:a6:01:bd:0e:
06:00:48:fa:7f:a6:e5:93:c6:c2:70:dc:f5:2f:37:
75:09:7b:e7:74:eb:de:63:9c:9f:5b:ff:7f:82:bd:
24:f1:b8:ff:8b:fe:3c:70:57:3c:c4:1e:9a:89:04:
80:7e:b2:b1:93:0a:1d:0b:f8:b1:f9:95:67:d3:71:
9a:26:16:e1:ee:c4:46:ba:71:25:31:72:08:44:43:
36:23:b0:63:f9:dc:ee:d7:ec:ce:68:23:df:54:06:
0a:f6:0e:86:c2:15:15:33:d5:71:e4:cf:29:cf:ec:
9a:a7:15:bc:2a:a0:e3:f4:61:8b:12:98:85:2c:5f:
b0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D3:45:4D:00:12:FC:A1:E7:4F:BA:68:93:70:B8:CB:B4:07:88:2B
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60223.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.17.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:83:c4:1a:b8:5f:7f:20:ca:3f:f7:76:be:24:01:e2:5c:ef:
aa:a6:6f:b1:40:04:d5:3e:54:e4:ff:d9:ba:0c:79:ca:b5:60:
52:bd:b6:bb:fe:f3:37:48:5c:70:8b:bc:80:bb:53:b9:c0:e4:
88:47:a4:d8:e3:6d:1e:b5:b6:27:00:57:ef:6e:09:c0:3f:b2:
6c:fd:68:ac:11:b3:30:b9:51:bf:3e:53:e3:f1:ab:ac:fd:19:
c8:a1:17:4a:93:9a:55:d3:bf:de:f6:0c:e0:b2:5d:07:02:a1:
90:ce:0a:eb:58:a7:d2:04:95:03:4a:16:b4:a4:47:85:47:79:
9c:13:c1:24:43:eb:28:f4:94:83:c1:7c:fd:02:52:c8:59:49:
3e:f2:61:13:8e:b0:3e:0f:a8:49:54:5f:af:3b:20:f2:92:7d:
ae:e5:00:f1:da:14:b9:0e:53:45:40:54:b3:6d:15:6c:7d:98:
c5:50:a6:42:79:31:b5:82:e7:02:31:71:39:c2:79:a5:a6:97:
ed:c2:c3:43:7c:f9:ed:0d:bd:a1:19:34:9d:0f:c8:e2:2c:e1:
36:24:72:99:b0:2b:06:79:9d:6c:33:60:a0:b9:17:98:13:8e:
21:5b:65:7a:41:d0:5d:04:2b:a4:00:1e:88:c9:3d:30:f4:56:
ba:f2:6d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:55:31 2025 by rpki-client