Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214800.roa
File: AS214800.roa (raw, json)
Hash identifier: erQNiTIEKtKk+Ivd7/IdiaJvUOGYHNpi2jJUyCMozb8=
Subject key identifier: CB:CD:43:02:6E:9A:0F:CB:0C:45:63:EC:BD:C4:D1:27:9E:58:71:4D
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 2382DE44AC47877C361D5E2358A4D3D9C394BDBB
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214800.roa
Signing time: Sun 09 Jun 2024 15:21:37 +0000
ROA not before: Sun 09 Jun 2024 15:16:37 +0000
ROA not after: Sun 08 Jun 2025 15:21:37 +0000
asID: 214800
IP address blocks: 141.11.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 08:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:82:de:44:ac:47:87:7c:36:1d:5e:23:58:a4:d3:d9:c3:94:bd:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 9 15:16:37 2024 GMT
Not After : Jun 8 15:21:37 2025 GMT
Subject: CN=CBCD43026E9A0FCB0C4563ECBDC4D1279E58714D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ca:fa:5c:52:97:06:14:a6:77:b8:3a:72:61:
c2:85:8c:23:ef:b2:da:79:b1:b5:e9:f1:fb:ad:52:
fd:a2:26:ab:8d:1e:0f:6d:af:fc:af:40:ae:b0:47:
6a:00:bc:2e:9d:cd:09:0d:b3:50:1b:9d:3e:81:6c:
0b:92:2e:56:22:6a:cb:41:65:46:b1:ae:9c:16:b1:
6b:51:0c:5f:d4:61:78:01:bb:86:80:0c:d5:f6:45:
68:d1:73:39:63:a9:9b:9c:8e:a2:65:bd:2c:2d:0d:
23:69:74:f9:84:83:40:02:7a:c7:5d:be:23:64:ec:
0d:d1:23:31:95:e0:96:4d:c8:8f:b7:bc:c5:21:87:
58:21:7a:99:c0:fc:58:7c:83:b6:32:bf:b2:5f:c6:
28:27:cd:a2:da:4c:50:dd:32:b9:b5:8e:da:db:27:
6d:6f:79:0e:39:49:f3:9e:4b:3f:c0:76:92:bb:5f:
68:c9:8c:f5:ba:f5:35:8c:af:f7:02:e3:8d:aa:97:
73:94:6a:3e:35:96:6b:a0:ca:d1:ba:75:0a:58:b6:
c6:58:ee:d7:17:5e:a3:38:07:cb:1c:57:ae:2d:2c:
0c:4e:39:1d:0c:e1:6c:5f:a3:bb:d1:98:4b:14:76:
80:96:ad:61:a1:28:f0:24:ca:7b:04:9d:d4:13:f1:
fd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:CD:43:02:6E:9A:0F:CB:0C:45:63:EC:BD:C4:D1:27:9E:58:71:4D
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214800.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.48.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:57:9c:03:f0:77:df:08:f4:4a:c2:47:a3:e5:e3:67:f6:a1:
0e:2e:82:19:59:d7:2e:e6:30:59:e2:96:a0:86:ea:e9:00:c1:
9a:3b:39:1f:a6:db:11:5c:03:86:b5:7a:3d:ee:12:47:5c:5b:
da:e7:7a:eb:c3:f0:18:ed:68:10:58:8c:ca:9a:24:70:52:02:
c2:65:96:14:ea:bc:ee:a4:99:16:e4:2d:5f:f8:59:e2:02:e7:
9a:2a:19:2a:15:fa:82:d9:ba:5b:96:08:ca:a4:99:7f:5a:a3:
26:d4:67:76:c4:4c:ae:19:b1:2d:0b:7e:30:38:e2:1d:c6:60:
22:37:fc:a3:cb:c7:31:a7:93:97:5e:18:39:39:6e:ef:7e:79:
98:e6:83:0d:4e:0f:ed:d7:30:b7:e0:a6:66:77:d8:fa:cf:5a:
cc:8a:3e:f7:07:d8:cf:47:eb:5e:6d:7d:f7:86:36:d5:37:c6:
1a:ce:bd:ed:57:03:91:e5:a0:56:0a:4a:c8:68:cb:e6:74:5c:
d6:9f:3a:6d:2d:1b:cb:8f:c0:12:05:fd:22:e3:05:7d:08:83:
25:1d:5b:c8:19:98:dd:e0:8b:cd:f0:e8:88:c1:95:68:c6:19:
ea:af:15:59:10:9d:af:4c:ed:8b:53:f5:21:18:ef:a8:89:58:
8c:70:33:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 10:21:57 2024 by rpki-client on console-ams.rpki-client.org