Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS202662.roa
File: AS202662.roa (raw, json)
Hash identifier: e/VIN08MaXx4gr38Lz68qL/FFonGf/lZpGnRA5gjDFU=
Subject key identifier: EC:12:0E:50:B7:7B:DE:0F:A3:40:94:68:BF:A9:38:E1:40:27:EE:7F
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 08560C077E88CF920D2050E072630DBF06C1A0D7
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS202662.roa
Signing time: Sat 18 Jan 2025 19:53:51 +0000
ROA not before: Sat 18 Jan 2025 19:48:51 +0000
ROA not after: Sat 17 Jan 2026 19:53:51 +0000
asID: 202662
IP address blocks: 141.11.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:56:0c:07:7e:88:cf:92:0d:20:50:e0:72:63:0d:bf:06:c1:a0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jan 18 19:48:51 2025 GMT
Not After : Jan 17 19:53:51 2026 GMT
Subject: CN=EC120E50B77BDE0FA3409468BFA938E14027EE7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9b:b1:42:5d:83:63:aa:99:86:89:27:59:62:
bd:8d:44:02:71:09:83:1b:f9:0b:88:76:17:8c:a1:
23:4e:e1:09:84:f3:16:8b:68:05:ae:60:4f:b3:14:
2e:c8:0d:74:f8:95:d3:55:4a:49:e0:73:e5:6e:21:
f3:ab:06:3e:8c:57:f7:70:ae:20:dd:72:5e:22:cd:
77:c5:9b:72:8e:59:92:4b:ac:7d:ec:13:7b:db:6f:
b3:7a:e7:b2:09:f5:af:5e:68:dc:7d:a6:7a:26:65:
1a:72:65:f1:c8:2d:66:a5:7a:91:d9:9a:00:a3:a5:
55:14:b0:ff:88:bc:db:0b:f0:31:9c:aa:b1:7a:7f:
fb:be:a8:4c:c6:23:93:19:cf:43:8a:7d:b2:67:14:
d6:8d:60:36:eb:27:31:1e:fc:50:5c:ae:81:20:45:
01:14:7d:45:b7:ce:8f:31:35:1a:c3:21:21:5f:d7:
b7:5e:59:45:e4:45:b2:bd:fb:eb:d0:81:5b:57:46:
e4:0c:61:cc:a3:c7:7e:c0:ce:f5:0e:ec:c2:cd:74:
4e:ec:dd:53:55:75:6b:d5:51:8d:72:2c:0b:7b:e5:
5d:5d:d7:8b:40:30:e6:65:23:54:f6:22:73:16:d6:
06:5d:36:e9:91:73:b5:3d:e0:13:15:d9:1c:8c:37:
94:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:12:0E:50:B7:7B:DE:0F:A3:40:94:68:BF:A9:38:E1:40:27:EE:7F
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS202662.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.125.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:d8:d5:f4:5b:8a:28:1c:5d:be:ae:04:a2:74:cf:44:6d:74:
e1:41:bc:61:1a:6d:d7:c2:3b:65:6b:6a:32:89:be:50:6e:c3:
8d:a2:ce:3f:b5:c2:1f:91:27:fc:26:49:2e:63:79:b4:69:c4:
15:29:8d:82:c8:b7:cd:fb:5f:7c:24:c3:a9:49:79:1b:20:53:
83:fb:55:0c:b9:4b:4e:74:c9:5c:5a:00:ce:98:34:1c:b4:88:
8a:72:91:f6:08:5b:56:65:12:5b:e8:3a:dd:41:c1:e6:df:10:
90:9c:20:9e:f3:c3:cf:f5:dd:ed:c3:74:b2:df:54:40:31:ec:
24:81:d0:37:a9:88:14:7b:79:47:e9:d1:33:7b:3d:7e:93:63:
a0:b3:6b:07:30:5e:cd:45:4e:ef:9c:fc:5b:e7:c4:21:79:a0:
39:ee:12:40:e3:e9:43:5b:b4:37:5f:8a:5f:51:ea:71:36:55:
c7:79:cf:d2:cc:17:05:94:c6:67:0e:01:33:ca:10:7d:e3:77:
4d:92:2e:d9:d0:63:cc:50:67:bc:f7:96:7e:53:26:d4:2d:d1:
23:47:85:64:66:d5:76:a1:98:06:b4:cc:f9:a8:b4:9c:8c:e0:
ab:65:ae:63:9a:b0:40:3c:29:59:d1:19:41:df:b3:14:78:57:
f9:9d:8d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:09 2025 by rpki-client