Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211975.roa
File: AS211975.roa (raw, json)
Hash identifier: 6NBy+xEURATA39+WGZu7QdXShQdQswKrErwahkJVusE=
Subject key identifier: 2E:1B:F8:DF:3E:0B:C2:A5:F8:D6:B9:3A:85:0B:6D:7C:2D:71:98:96
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 26469EA4736DFF9333BB360BF49EA5A2060B8C59
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211975.roa
Signing time: Wed 03 Jul 2024 00:01:56 +0000
ROA not before: Tue 02 Jul 2024 23:56:56 +0000
ROA not after: Wed 02 Jul 2025 00:01:56 +0000
asID: 211975
IP address blocks: 141.11.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 00:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:46:9e:a4:73:6d:ff:93:33:bb:36:0b:f4:9e:a5:a2:06:0b:8c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jul 2 23:56:56 2024 GMT
Not After : Jul 2 00:01:56 2025 GMT
Subject: CN=2E1BF8DF3E0BC2A5F8D6B93A850B6D7C2D719896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:42:50:61:f4:0d:62:ba:93:77:90:2b:8f:
eb:fa:c3:50:be:44:0a:19:6c:d3:46:8a:85:84:75:
cc:6d:cd:f9:bf:74:51:cc:ea:83:80:7c:8b:5c:7a:
d4:a1:ea:da:db:e3:39:65:23:3d:8f:e1:0d:74:0e:
35:24:71:a7:d8:ef:21:a6:bb:3b:62:24:0f:03:d5:
f9:d0:38:98:17:a9:6f:d9:81:4a:b3:d4:26:9a:db:
90:61:ff:79:8d:85:95:71:61:1a:56:34:b7:0e:ee:
e9:3e:7e:27:9b:11:89:d7:ac:ba:a3:b7:73:35:8b:
af:c8:0e:1c:bb:2a:bf:83:56:ed:aa:b5:de:6c:56:
34:7c:22:fc:01:3e:7c:d0:8f:c3:22:b2:88:99:d9:
64:ac:9b:af:a9:1e:9e:07:1b:d9:8a:1c:6a:bf:65:
2f:45:23:9c:61:d0:d7:fa:29:3e:c6:16:fc:e5:ad:
9d:60:c4:17:94:97:ca:25:d3:15:55:1d:72:b2:be:
6e:c3:9b:35:77:e5:00:6f:c0:43:3f:50:c9:5e:a2:
b4:42:83:ce:b3:80:75:86:bd:d0:37:89:23:ea:81:
87:d1:02:f3:2b:df:d6:1f:a0:97:c8:5e:a3:cf:4e:
4f:66:87:53:57:ae:4b:1b:7b:66:71:03:a6:c0:74:
bd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1B:F8:DF:3E:0B:C2:A5:F8:D6:B9:3A:85:0B:6D:7C:2D:71:98:96
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS211975.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.124.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:8e:8f:1e:74:d3:36:36:9c:9a:5a:12:e4:ed:07:4f:e9:eb:
70:63:90:17:17:a1:19:d8:6d:ac:fe:96:06:28:11:11:e9:0a:
85:f4:e6:77:89:2c:10:f6:39:fd:0c:90:8d:6a:f7:ee:ce:c4:
0f:04:34:b5:99:2e:da:ea:3c:a9:ad:36:0f:01:f6:11:01:4a:
6e:81:20:bf:11:03:4b:18:7f:27:62:a8:8c:47:63:36:40:87:
fa:fd:12:c0:13:d6:55:20:52:24:f4:2b:c5:43:4e:56:27:0d:
60:3a:bb:70:24:f9:d3:6b:b3:03:be:75:fc:a1:0e:06:48:66:
58:60:15:4b:06:8a:a4:07:a8:e2:64:af:b0:b4:dd:ea:61:9a:
40:59:dc:09:ef:1b:d9:6c:7a:c8:39:3f:d8:94:fe:6d:72:d3:
81:0d:7c:17:43:b6:8e:9d:d9:e4:9e:b2:af:b8:06:d3:6f:15:
dc:0c:22:0e:80:f3:3d:41:1e:01:4d:84:04:c8:6d:88:c6:55:
60:8b:c3:88:bd:1d:1d:73:22:3e:3f:16:21:51:1a:c8:bb:6c:
7b:0e:bc:56:b6:53:63:db:c7:45:1a:94:45:5c:09:d4:00:43:
20:14:de:16:00:14:b4:74:32:0b:f2:93:f9:39:bd:2f:a7:69:
bd:d7:6f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 03:05:04 2024 by rpki-client on console-fra.rpki-client.org