Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211584.roa
File: AS211584.roa (raw, json)
Hash identifier: 98P0HZV49yOJD59jQHX4Uzk1it2xVroPp8P2kLvs4kc=
Subject key identifier: 12:ED:85:5D:52:06:46:CB:48:C3:D3:10:4E:FC:60:41:18:38:91:83
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 526EC1E7ED15CF3FF3C84734F5D517EED987D6C3
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211584.roa
Signing time: Tue 10 Jan 2023 19:54:42 +0000
ROA not before: Tue 10 Jan 2023 19:49:42 +0000
ROA not after: Tue 09 Jan 2024 19:54:42 +0000
asID: 211584
IP address blocks: 141.11.140.0/22 maxlen: 24
141.11.156.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:6e:c1:e7:ed:15:cf:3f:f3:c8:47:34:f5:d5:17:ee:d9:87:d6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jan 10 19:49:42 2023 GMT
Not After : Jan 9 19:54:42 2024 GMT
Subject: CN=12ED855D520646CB48C3D3104EFC604118389183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b4:24:1b:16:7f:8a:e8:6a:74:9d:81:4c:6d:
ef:82:28:c4:71:9c:f2:67:f6:83:f6:0e:c3:df:ac:
eb:8c:42:4f:08:9d:c2:c8:52:15:fe:10:80:69:a1:
d1:a8:85:8f:c2:30:ab:7b:a7:ca:4e:b6:b9:47:b7:
cb:c5:0e:1a:c3:12:91:8e:09:c8:36:32:2e:bf:9e:
ec:b4:d7:f2:9b:3d:d5:a7:de:03:78:4b:84:89:b7:
cd:b7:76:a5:dc:af:6f:7b:f6:8e:9e:c6:f6:66:6b:
16:a8:da:6a:ee:e7:d2:54:90:87:c1:02:84:d6:2a:
6a:e6:c1:f3:96:1a:90:1d:7c:19:e2:68:85:2a:f9:
17:c2:aa:9a:2c:5c:e9:9b:a5:62:5c:ed:fd:89:c6:
84:b7:91:d5:db:5c:37:ce:ab:c7:0c:96:8d:92:75:
55:c4:bb:c7:3d:0e:90:2a:87:c0:23:db:c4:a2:bd:
4f:98:8f:2d:35:f5:04:85:57:9a:6b:39:dd:00:46:
e1:d6:06:d0:f1:ac:65:7c:ca:df:1a:49:1f:23:d5:
cf:da:79:47:e5:24:d3:5c:97:20:72:24:23:e5:ca:
0e:ed:f9:70:f0:a9:77:01:5f:7c:fa:fc:58:86:ca:
11:9d:2a:9d:a4:7c:fc:57:4a:f9:10:68:37:fc:51:
4c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:ED:85:5D:52:06:46:CB:48:C3:D3:10:4E:FC:60:41:18:38:91:83
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211584.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.140.0/22
141.11.156.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:fd:f7:66:51:61:18:6e:d8:76:18:21:be:5c:b8:7f:4f:2e:
26:be:76:63:40:9f:9b:cd:b3:5f:44:5e:c4:7b:db:84:36:75:
0a:aa:86:79:ee:cd:78:ee:cf:87:1d:6c:f1:56:38:f9:84:6b:
e1:fb:c9:ee:be:72:c7:ca:66:84:1f:18:66:5b:05:9a:40:b1:
b4:f7:c7:01:fe:52:8a:66:2b:d1:16:3f:3f:f8:37:b6:9e:de:
fa:c8:07:d3:db:ff:ee:b8:fd:0a:ed:1d:6d:d3:69:99:3f:0d:
c4:8e:12:66:aa:68:11:40:4a:91:62:b2:db:48:01:0e:92:0d:
23:ae:48:a4:ed:3b:42:00:ca:4d:f8:0a:c9:57:40:04:e2:cd:
d4:03:42:6e:cb:a5:97:3d:64:1d:01:a7:d7:ef:a9:b8:65:ad:
78:7b:2a:e9:d5:5f:49:45:07:b9:26:0c:85:95:8d:31:b7:8b:
9c:79:13:c0:57:8e:e9:af:99:af:5b:ee:cf:3b:0f:21:92:da:
c5:ac:c4:1a:7c:ac:16:5b:bd:1c:8e:26:18:49:80:27:a9:99:
4b:f4:db:ff:49:48:4a:8c:7c:95:76:f6:bf:af:6e:57:d2:09:
36:67:be:11:ca:48:98:f0:69:61:52:9c:a8:a9:14:45:ab:60:
af:8f:ea:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org