Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16125.roa
File: AS16125.roa (raw, json)
Hash identifier: G24Bbp4yr2J8odIvRfNK6DcUxsvJ9CudGTiQJLzds7M=
Subject key identifier: 80:65:28:E6:88:E6:66:5A:46:E7:D0:9D:81:80:A3:F9:A1:FE:E0:F4
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 1DFC9730C11A535971AB8DC5149E0741B64928F5
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16125.roa
Signing time: Tue 04 Jun 2024 23:41:45 +0000
ROA not before: Tue 04 Jun 2024 23:36:45 +0000
ROA not after: Tue 03 Jun 2025 23:41:45 +0000
asID: 16125
IP address blocks: 141.11.54.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 05 Jun 2024 08:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:fc:97:30:c1:1a:53:59:71:ab:8d:c5:14:9e:07:41:b6:49:28:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 4 23:36:45 2024 GMT
Not After : Jun 3 23:41:45 2025 GMT
Subject: CN=806528E688E6665A46E7D09D8180A3F9A1FEE0F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f1:87:63:4f:af:01:bc:56:7c:ba:08:7b:99:
64:83:b4:f5:59:8e:4e:7b:36:62:6c:b0:8e:21:c3:
f4:11:b0:e1:ca:ef:76:14:9c:4b:25:98:1c:23:9e:
05:00:bd:d2:2a:7f:04:e7:35:e8:fc:f9:b5:2a:e3:
4d:f0:9d:62:df:40:4c:5a:8e:39:c3:37:82:e6:3f:
88:54:cd:e8:f1:67:ef:d2:7d:e3:58:48:7e:08:75:
f8:9f:11:f2:2b:8b:c4:a6:7b:bf:fa:b3:c7:40:78:
70:31:42:8e:a3:e7:94:57:13:b3:eb:5d:35:17:6c:
f5:2f:e2:4a:1b:2c:1c:43:e0:c9:09:77:bf:3a:b7:
3f:50:cd:88:23:3a:d6:04:97:08:13:17:23:34:06:
71:ce:0c:ff:a1:fc:3a:3c:f3:f1:14:13:4a:09:91:
8a:f6:d8:59:41:34:b5:4c:93:44:17:b3:72:e7:1b:
0b:dd:61:09:9d:81:e0:47:b7:94:88:3c:81:07:33:
87:d0:ff:a3:56:5e:86:1f:56:be:00:07:4d:8a:eb:
06:b5:d2:33:0f:e2:bb:a1:db:f1:1a:a1:45:22:a9:
ba:40:60:91:ec:42:75:9c:f8:3b:30:bc:24:d8:dd:
bf:c2:21:2f:c4:03:97:37:24:0d:47:17:dc:db:2e:
d1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:65:28:E6:88:E6:66:5A:46:E7:D0:9D:81:80:A3:F9:A1:FE:E0:F4
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS16125.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.54.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:23:19:71:85:e1:ca:70:f4:7b:e7:eb:ca:9e:99:d6:bb:70:
1f:5c:ca:37:ad:a7:fb:d1:c3:cd:e6:ee:15:cd:30:68:db:a7:
9a:8e:8b:85:ee:32:85:88:76:ef:49:1e:d3:8c:23:46:f2:c1:
b1:17:1b:da:9a:fe:97:dc:d0:b3:83:cb:13:ff:de:5e:28:b8:
de:46:26:8e:d2:81:5b:04:cc:c1:52:4c:1b:f7:fd:42:41:46:
ee:15:a0:34:f9:2d:36:8b:1b:fe:3b:c2:bd:0f:0b:de:a0:1f:
00:bd:62:31:09:25:4d:63:98:34:f2:02:a1:d4:03:64:ea:f6:
f1:bb:f8:84:e7:3b:bb:c2:d3:12:c1:40:18:97:85:cc:21:8f:
72:af:15:02:05:bc:f4:da:04:8a:15:95:10:1c:65:47:23:03:
e8:3e:23:f7:b7:ee:22:82:98:fd:2c:0f:df:b1:23:c9:6b:3f:
6b:42:38:f3:13:be:ff:c2:ee:f9:1c:bf:9f:37:bc:50:be:91:
be:16:12:27:72:b7:e3:65:ac:b1:42:8b:e2:d0:f2:59:61:43:
5e:f4:c9:86:48:c9:42:58:01:0c:db:f4:95:8b:04:e5:78:b4:
ad:b8:02:33:16:64:3c:16:78:63:59:a2:35:2f:d6:d3:dc:0f:
fb:d6:20:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:43 2025 by rpki-client