Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS214393.roa
File: AS214393.roa (raw, json)
Hash identifier: JXVCYVzs/yW1jfLse2DjuwfkrqH3Yj1VnG0OZ3Yn+uM=
Subject key identifier: 50:E2:6C:F9:C3:84:F0:AB:33:2A:15:A8:76:E0:60:AD:56:2D:0C:4A
Certificate issuer: /CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Certificate serial: 663E9CBED84C036BCC8D2454CB43C779E7F2D4B0
Authority key identifier: C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS214393.roa
Signing time: Fri 23 Aug 2024 08:01:24 +0000
ROA not before: Fri 23 Aug 2024 07:56:24 +0000
ROA not after: Fri 22 Aug 2025 08:01:24 +0000
asID: 214393
IP address blocks: 2a0f:85c1:881::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 17 Sep 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:3e:9c:be:d8:4c:03:6b:cc:8d:24:54:cb:43:c7:79:e7:f2:d4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Validity
Not Before: Aug 23 07:56:24 2024 GMT
Not After : Aug 22 08:01:24 2025 GMT
Subject: CN=50E26CF9C384F0AB332A15A876E060AD562D0C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1a:7f:5f:29:22:ba:28:ca:79:51:9c:ff:4a:
f8:5d:0c:d3:92:ae:d5:3f:06:18:b2:76:d5:63:bc:
75:b8:1f:fd:68:87:f9:10:ce:e3:fc:b0:9c:5a:86:
1d:4d:ea:37:14:a1:3d:a2:95:5b:7c:18:e1:a7:a5:
de:dd:56:58:0e:61:ec:8a:b5:19:e7:ce:98:ea:25:
33:b9:1e:da:65:fa:3e:7b:eb:b8:c7:02:c4:fe:c2:
09:d3:42:1a:a7:b9:20:b2:f7:36:85:fa:28:a6:fc:
08:b4:7e:aa:43:9c:ee:72:bf:d5:6e:6d:68:ae:a3:
19:93:fd:90:91:2e:fa:0b:90:c4:1f:0d:9d:51:68:
09:99:88:f6:2e:1b:28:58:40:a2:53:f9:80:32:f9:
5d:d5:f4:1f:fc:f5:e5:49:77:3e:63:a0:dc:20:b0:
51:43:a0:76:1b:c9:d1:0e:2a:7c:81:e7:25:4e:75:
13:5f:95:93:8b:63:b6:97:95:c9:20:07:d6:98:3b:
3f:fa:84:4c:20:95:c2:ab:86:06:8b:4c:dc:0c:5c:
cc:1a:83:39:76:3b:21:1c:2d:81:9b:d0:51:7b:7c:
74:69:87:4a:5b:3b:3e:53:06:7e:cb:54:f7:a9:7a:
f4:20:67:63:fb:c4:f5:a7:20:80:3a:23:63:c8:f0:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E2:6C:F9:C3:84:F0:AB:33:2A:15:A8:76:E0:60:AD:56:2D:0C:4A
X509v3 Authority Key Identifier:
keyid:C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/AS214393.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:881::/48
Signature Algorithm: sha256WithRSAEncryption
0c:54:5b:56:af:f2:bf:e4:0c:44:c5:fb:c8:d4:22:71:90:7c:
01:8d:47:be:78:db:d4:d7:c8:5a:13:5f:c3:be:09:20:44:16:
eb:ae:f2:81:eb:45:c9:73:a5:e3:ec:54:98:47:ca:e7:98:b7:
4c:aa:c5:62:59:3e:98:06:33:84:cc:f5:85:8a:2b:6c:0b:50:
22:4b:20:97:15:79:96:bb:ab:de:a5:ad:41:da:00:1b:c4:96:
7b:34:36:af:8e:66:f8:f8:68:63:1a:22:28:2b:39:69:80:c5:
77:16:f4:68:f1:fd:78:a4:c1:b1:65:ec:42:4c:c9:10:90:22:
6c:88:a0:07:32:70:28:58:c0:f2:1d:b0:44:33:e4:ba:45:52:
57:15:aa:da:e7:7c:59:97:63:59:de:ec:6c:cf:a0:73:80:11:
a9:a9:e8:01:20:37:79:ee:86:31:ef:04:5a:83:24:3e:d0:16:
aa:e8:b6:e2:ad:d9:16:6e:5b:72:4f:89:31:39:de:0e:d7:bf:
9b:8e:aa:ce:96:76:1f:25:4f:dd:e4:69:33:b9:5a:94:12:36:
10:49:ae:fa:21:ca:93:a5:8f:32:ba:ef:aa:83:11:7e:48:9c:
6c:89:58:a7:4a:39:22:ad:0f:92:cd:e8:f1:15:a8:9a:b5:d6:
f5:b5:f8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 06:37:42 2024 by rpki-client on console-ams.rpki-client.org