Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212298.roa
File: AS212298.roa (raw, json)
Hash identifier: J1ywS9+W9f/KRHwAi626VWztbeICEOXU3xrF512Dv9M=
Subject key identifier: A4:46:BF:39:C5:FB:99:7B:9D:44:5E:85:EB:0F:DA:3A:33:8B:EC:57
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 572DED1E19DFEF6488D722A8A2D9247BBC2D5444
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212298.roa
Signing time: Tue 27 Dec 2022 14:44:35 +0000
ROA not before: Tue 27 Dec 2022 14:39:35 +0000
ROA not after: Tue 26 Dec 2023 14:44:35 +0000
asID: 212298
IP address blocks: 141.11.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:2d:ed:1e:19:df:ef:64:88:d7:22:a8:a2:d9:24:7b:bc:2d:54:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Dec 27 14:39:35 2022 GMT
Not After : Dec 26 14:44:35 2023 GMT
Subject: CN=A446BF39C5FB997B9D445E85EB0FDA3A338BEC57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:21:96:ed:85:ce:76:3d:47:57:7e:38:e1:d5:
c9:f9:74:cf:61:a4:62:a7:f6:ae:ca:66:f8:22:5f:
29:7f:96:17:03:b9:af:63:98:83:58:0b:1f:aa:91:
90:3b:4c:9a:cd:fc:a6:cc:88:fc:13:61:0f:87:ce:
56:49:b8:07:64:b2:74:1c:38:39:e9:57:a5:91:0d:
e3:ba:81:d5:eb:ae:40:d0:d1:38:7f:b1:93:e8:c6:
b8:fa:b8:bb:f9:41:28:4a:4f:ee:b8:19:f8:ad:c2:
f4:ad:e7:56:a2:0b:91:9d:9f:ac:c3:be:86:fc:7e:
c2:18:13:b7:bb:3e:78:cb:2e:5e:07:94:4d:fd:26:
05:5b:5f:07:52:d7:7d:96:20:08:d6:f7:04:99:b9:
7e:59:3a:f7:91:5d:db:d7:84:66:00:13:35:d1:ba:
6e:c0:fa:16:3d:86:e4:3c:38:85:fd:bd:70:c4:e7:
a3:15:3b:2c:fc:02:45:a5:c2:5b:96:7d:f6:d3:a6:
53:36:0f:43:2d:c1:0a:26:9c:36:d8:df:e9:d1:23:
34:82:56:09:a4:2b:fb:6a:bb:b1:7d:3b:c9:66:42:
96:76:fc:4c:df:02:89:d1:69:cd:a3:3f:1a:6b:10:
25:5d:ef:2f:0b:4f:33:2a:f4:60:61:ed:ae:f0:88:
be:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:46:BF:39:C5:FB:99:7B:9D:44:5E:85:EB:0F:DA:3A:33:8B:EC:57
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS212298.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.35.0/24
Signature Algorithm: sha256WithRSAEncryption
61:66:d8:9d:8a:9c:09:a4:d6:ea:6c:53:e4:6f:f3:bb:71:ac:
c7:2a:0a:b1:92:e0:3b:71:67:10:ee:33:bb:99:fd:d4:22:0c:
ea:a7:e6:0a:4f:a3:af:09:72:44:69:a7:91:31:63:a8:5e:a0:
44:d0:95:98:c0:32:f6:a6:ba:41:50:49:26:64:5d:52:3e:42:
ee:fd:eb:9c:6a:49:e2:8a:29:7d:bd:66:a1:b5:04:35:7c:37:
4b:1a:42:02:53:be:5b:58:ea:62:77:66:91:c6:63:f8:bd:cb:
2b:3e:97:87:2b:06:3f:90:d6:e8:81:f7:44:ec:8d:4b:b5:ca:
63:a0:e3:e8:c9:d4:07:0b:8d:ce:14:de:b8:64:3b:6d:84:46:
45:8a:ff:51:09:bf:d4:cc:3e:ab:d1:31:e1:f1:fa:81:62:34:
3d:9b:1c:2d:48:32:f9:90:35:73:6f:9c:30:97:5d:33:4b:25:
20:e5:a1:57:6d:e4:89:c6:6b:f0:32:8d:b6:83:b8:e6:63:1e:
a9:71:00:19:6e:13:67:31:50:a5:4a:cd:b2:6d:d0:58:37:93:
51:7a:51:28:e2:8b:55:27:40:65:ec:f1:d2:a4:97:a5:88:64:
41:96:aa:0e:22:61:fe:9a:9b:f6:75:b2:28:67:06:c3:14:38:
0f:7a:37:96
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUVy3tHhnf72SI1yKootkke7wtVEQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yMjEyMjcxNDM5MzVaFw0yMzEyMjYxNDQ0MzVaMDMxMTAvBgNV
BAMTKEE0NDZCRjM5QzVGQjk5N0I5RDQ0NUU4NUVCMEZEQTNBMzM4QkVDNTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtIZbthc52PUdXfjjh1cn5dM9h
pGKn9q7KZvgiXyl/lhcDua9jmINYCx+qkZA7TJrN/KbMiPwTYQ+HzlZJuAdksnQc
ODnpV6WRDeO6gdXrrkDQ0Th/sZPoxrj6uLv5QShKT+64GfitwvSt51aiC5Gdn6zD
vob8fsIYE7e7PnjLLl4HlE39JgVbXwdS132WIAjW9wSZuX5ZOveRXdvXhGYAEzXR
um7A+hY9huQ8OIX9vXDE56MVOyz8AkWlwluWffbTplM2D0MtwQomnDbY3+nRIzSC
VgmkK/tqu7F9O8lmQpZ2/EzfAonRac2jPxprECVd7y8LTzMq9GBh7a7wiL5fAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUpEa/OcX7mXudRF6F6w/aOjOL7FcwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMjEyMjk4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjQsj
MA0GCSqGSIb3DQEBCwUAA4IBAQBhZtidipwJpNbqbFPkb/O7cazHKgqxkuA7cWcQ
7jO7mf3UIgzqp+YKT6OvCXJEaaeRMWOoXqBE0JWYwDL2prpBUEkmZF1SPkLu/euc
akniiil9vWahtQQ1fDdLGkICU75bWOpid2aRxmP4vcsrPpeHKwY/kNbogfdE7I1L
tcpjoOPoydQHC43OFN64ZDtthEZFiv9RCb/UzD6r0THh8fqBYjQ9mxwtSDL5kDVz
b5wwl10zSyUg5aFXbeSJxmvwMo22g7jmYx6pcQAZbhNnMVClSs2ybdBYN5NRelEo
4otVJ0Bl7PHSpJeliGRBlqoOImH+mpv2dbIoZwbDFDgPejeW
Generated at Fri Aug 18 00:38:09 2023 by rpki-client on console-ams.rpki-client.org