Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS205450.roa
File: AS205450.roa (raw, json)
Hash identifier: O3272NAVKX4K+5/V6k33HBK+s+MyJiiY3E8RyQMhwk4=
Subject key identifier: AF:EC:8B:4E:3C:84:4C:8A:B6:FC:15:E8:FB:EC:1C:80:67:69:E1:B6
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 784433F3A5E7F1BF027E8024BE5C5BBEC84F650C
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS205450.roa
Signing time: Wed 09 Oct 2024 12:43:25 +0000
ROA not before: Wed 09 Oct 2024 12:38:25 +0000
ROA not after: Wed 08 Oct 2025 12:43:25 +0000
asID: 205450
IP address blocks: 141.11.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:44:33:f3:a5:e7:f1:bf:02:7e:80:24:be:5c:5b:be:c8:4f:65:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Oct 9 12:38:25 2024 GMT
Not After : Oct 8 12:43:25 2025 GMT
Subject: CN=AFEC8B4E3C844C8AB6FC15E8FBEC1C806769E1B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:82:8c:6b:5e:d5:11:8f:49:43:b7:49:78:
04:0b:75:1b:f6:e4:34:1e:4c:a0:cb:ab:ee:12:6a:
c8:c8:8f:2d:c9:b3:62:4f:0f:15:06:cc:81:a2:ce:
b6:7d:d9:2e:1d:77:43:09:7c:d9:f7:10:e5:6e:3f:
a7:8d:86:1e:04:2e:37:e7:e7:79:80:55:57:10:2c:
42:46:57:33:04:37:ed:c7:8a:36:e1:a2:b0:86:fc:
fd:5d:a2:9c:fd:11:b8:fc:a5:e7:b3:27:36:75:32:
75:ce:78:c6:88:ca:5c:0f:81:27:f9:cd:71:01:c9:
84:bf:07:35:ae:e1:4e:af:55:e2:ce:fc:d7:d4:83:
78:5a:61:ab:12:be:1b:cb:07:50:38:c5:ec:3e:a7:
d9:af:a5:fb:3c:36:e1:e0:4d:8c:39:78:53:de:d3:
b6:41:09:75:a3:8d:b5:6a:d0:5a:fa:0a:f3:4e:a4:
a1:31:b4:16:67:ce:50:d2:dc:de:79:24:9f:d6:23:
8e:0a:f2:34:66:1e:ff:08:b7:56:62:1f:f4:97:fa:
3e:59:18:6c:04:ee:42:f3:94:d4:b3:cb:5b:36:bb:
d4:2d:83:1a:56:46:13:63:ec:48:6d:4c:a6:49:39:
2d:92:ac:a6:6c:de:b9:c7:15:18:b6:70:7c:09:58:
47:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EC:8B:4E:3C:84:4C:8A:B6:FC:15:E8:FB:EC:1C:80:67:69:E1:B6
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS205450.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f0:b6:97:04:5f:1f:ee:04:b0:d3:a2:16:10:6d:f2:3d:a0:
c0:71:e2:39:b7:3f:a4:78:95:12:3a:64:59:3f:a9:ec:21:35:
22:f0:c6:94:88:af:ba:27:d3:5c:4b:67:6c:2d:9b:bd:9a:fb:
1a:31:0d:4a:44:7d:b9:ee:5f:01:aa:5f:d8:ea:ab:75:40:59:
6e:d3:7d:d3:63:04:c1:d6:29:bc:3b:20:df:41:83:db:02:97:
d9:20:ae:1c:ae:f0:4e:3e:16:d8:55:7b:da:57:71:99:cf:1b:
61:da:de:89:6b:66:c6:c1:da:1d:f5:df:bc:f4:94:13:6f:d8:
cb:9e:51:d6:a4:30:a4:d0:be:c8:7b:ad:34:77:38:e0:ad:05:
40:8f:7c:d7:39:e0:ec:0b:91:1e:58:c8:ae:af:98:30:09:df:
0b:3a:bf:0f:b2:af:2a:44:cd:6a:5b:85:f6:29:a6:01:ad:38:
22:8a:0d:c0:b3:66:29:56:23:77:07:3b:77:6d:b0:ed:1d:c7:
47:4b:03:35:10:dd:2c:07:1a:55:48:c8:e0:27:c4:11:d8:d6:
6d:e5:e2:a9:57:e5:e1:ff:fc:c8:b8:a1:0a:9f:8c:02:7e:66:
cb:ed:a3:06:bc:21:a6:01:bb:b1:2e:d1:b9:86:be:e7:ae:2c:
94:fe:ea:44
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUeEQz86Xn8b8CfoAkvlxbvshPZQwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDEwMDkxMjM4MjVaFw0yNTEwMDgxMjQzMjVaMDMxMTAvBgNV
BAMTKEFGRUM4QjRFM0M4NDRDOEFCNkZDMTVFOEZCRUMxQzgwNjc2OUUxQjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL74KMa17VEY9JQ7dJeAQLdRv2
5DQeTKDLq+4SasjIjy3Js2JPDxUGzIGizrZ92S4dd0MJfNn3EOVuP6eNhh4ELjfn
53mAVVcQLEJGVzMEN+3HijbhorCG/P1dopz9Ebj8peezJzZ1MnXOeMaIylwPgSf5
zXEByYS/BzWu4U6vVeLO/NfUg3haYasSvhvLB1A4xew+p9mvpfs8NuHgTYw5eFPe
07ZBCXWjjbVq0Fr6CvNOpKExtBZnzlDS3N55JJ/WI44K8jRmHv8It1ZiH/SX+j5Z
GGwE7kLzlNSzy1s2u9QtgxpWRhNj7EhtTKZJOS2SrKZs3rnHFRi2cHwJWEe7AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUr+yLTjyETIq2/BXo++wcgGdp4bYwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMjA1NDUwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjQsF
MA0GCSqGSIb3DQEBCwUAA4IBAQCg8LaXBF8f7gSw06IWEG3yPaDAceI5tz+keJUS
OmRZP6nsITUi8MaUiK+6J9NcS2dsLZu9mvsaMQ1KRH257l8Bql/Y6qt1QFlu033T
YwTB1im8OyDfQYPbApfZIK4crvBOPhbYVXvaV3GZzxth2t6Ja2bGwdod9d+89JQT
b9jLnlHWpDCk0L7Ie600dzjgrQVAj3zXOeDsC5EeWMiur5gwCd8LOr8Psq8qRM1q
W4X2KaYBrTgiig3As2YpViN3Bzt3bbDtHcdHSwM1EN0sBxpVSMjgJ8QR2NZt5eKp
V+Xh//zIuKEKn4wCfmbL7aMGvCGmAbuxLtG5hr7nriyU/upE
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:30 2025 by rpki-client