Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214828.roa
File: AS214828.roa (raw, json)
Hash identifier: U7ekpe6oWQohkUj0+FKS4D7QsPLBA0qShaRZ2snG8fg=
Subject key identifier: 23:27:C1:DA:78:8B:27:5C:3B:4A:90:30:D9:A0:B8:89:47:08:25:C4
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 51EA349ECA79BCE24B2D5EBA32D22043FE6CD884
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214828.roa
Signing time: Sat 17 Aug 2024 06:18:27 +0000
ROA not before: Sat 17 Aug 2024 06:13:27 +0000
ROA not after: Sat 16 Aug 2025 06:18:27 +0000
asID: 214828
IP address blocks: 141.11.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:ea:34:9e:ca:79:bc:e2:4b:2d:5e:ba:32:d2:20:43:fe:6c:d8:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Aug 17 06:13:27 2024 GMT
Not After : Aug 16 06:18:27 2025 GMT
Subject: CN=2327C1DA788B275C3B4A9030D9A0B889470825C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b0:7d:97:46:3d:44:58:b4:e5:21:97:ff:8d:
df:72:97:c1:0e:be:74:3e:62:d0:f8:b5:e5:e6:aa:
90:36:19:ad:20:9c:cc:4e:08:78:a9:1c:5e:78:a3:
c2:49:f0:86:94:a4:7b:ab:d8:93:22:2b:5b:d5:db:
d6:b4:ae:d6:d1:40:66:17:41:fd:0b:8a:f4:5c:06:
1b:17:f6:f6:0c:10:68:f4:7e:b9:ef:4f:5f:ea:4a:
31:fc:de:34:54:cb:06:b0:01:08:e0:e5:8a:ad:4d:
1b:3e:43:17:d6:f3:08:07:36:49:de:d1:12:4e:5a:
56:30:8d:d0:8c:7e:24:4f:2a:90:66:68:10:e8:06:
4a:65:b3:47:f0:4a:90:7b:77:44:00:0e:ef:7d:ac:
9f:c9:50:c3:1d:af:d1:d8:59:44:2a:2e:19:88:39:
7f:9a:c9:69:76:c1:e2:b7:ef:dd:1d:11:d8:79:94:
d6:11:11:9a:90:56:fc:41:8b:99:f6:f5:7a:f0:25:
a1:39:63:90:1d:63:d7:07:cd:5c:93:72:70:96:ce:
a8:3e:48:88:b7:65:8d:a1:69:be:62:7d:ef:39:e3:
0a:5a:ad:8b:ec:00:da:14:5b:47:63:18:2c:94:c8:
4a:2d:ec:d7:90:11:ae:1c:ed:dd:d4:d0:d8:86:6d:
81:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:27:C1:DA:78:8B:27:5C:3B:4A:90:30:D9:A0:B8:89:47:08:25:C4
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214828.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.100.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:8e:1b:84:f7:c9:60:4e:a2:35:3a:64:c3:52:f0:6b:10:c8:
a4:96:11:2f:7e:39:11:61:f9:6c:67:6b:57:69:3a:c8:c1:59:
0b:12:08:91:e7:30:41:ad:1c:90:fd:9c:8a:a0:4d:ad:09:c3:
68:7f:38:44:be:f0:39:cd:cd:50:4b:11:20:9d:6c:eb:7b:6d:
85:37:f5:05:aa:dc:be:59:5e:e8:d8:ca:1a:a1:65:70:4e:4a:
61:7a:b3:2c:cb:5e:b5:a8:9d:ef:76:af:aa:ba:77:70:69:ed:
94:66:98:ca:8e:34:97:43:0f:f5:6e:ca:22:ef:73:4c:92:87:
f3:ac:cd:c6:63:d8:e5:95:34:c0:89:95:4a:fe:4d:95:01:41:
0c:69:55:36:b5:0e:1d:43:5e:ba:3b:56:e4:a1:44:b4:4d:6c:
76:e3:46:ec:48:aa:d2:03:0d:fa:7a:27:78:f5:5c:8e:5d:ec:
3f:60:89:3e:b6:49:60:ed:a6:d4:83:1c:ee:1d:a5:f6:d4:21:
67:74:0f:4c:b3:e1:26:4a:1a:7e:54:2a:84:19:d6:d7:89:ee:
4e:0b:08:ae:32:7e:f4:00:9c:55:10:66:d2:7f:0b:8a:6e:0d:
a6:59:07:63:9a:5a:d2:2a:fb:1b:79:c0:0c:a6:1f:04:28:91:
75:33:63:5c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUUeo0nsp5vOJLLV66MtIgQ/5s2IQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDA4MTcwNjEzMjdaFw0yNTA4MTYwNjE4MjdaMDMxMTAvBgNV
BAMTKDIzMjdDMURBNzg4QjI3NUMzQjRBOTAzMEQ5QTBCODg5NDcwODI1QzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDesH2XRj1EWLTlIZf/jd9yl8EO
vnQ+YtD4teXmqpA2Ga0gnMxOCHipHF54o8JJ8IaUpHur2JMiK1vV29a0rtbRQGYX
Qf0LivRcBhsX9vYMEGj0frnvT1/qSjH83jRUywawAQjg5YqtTRs+QxfW8wgHNkne
0RJOWlYwjdCMfiRPKpBmaBDoBkpls0fwSpB7d0QADu99rJ/JUMMdr9HYWUQqLhmI
OX+ayWl2weK3790dEdh5lNYREZqQVvxBi5n29XrwJaE5Y5AdY9cHzVyTcnCWzqg+
SIi3ZY2hab5ife854wparYvsANoUW0djGCyUyEot7NeQEa4c7d3U0NiGbYF/AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUIyfB2niLJ1w7SpAw2aC4iUcIJcQwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMjE0ODI4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjQtk
MA0GCSqGSIb3DQEBCwUAA4IBAQCrjhuE98lgTqI1OmTDUvBrEMiklhEvfjkRYfls
Z2tXaTrIwVkLEgiR5zBBrRyQ/ZyKoE2tCcNofzhEvvA5zc1QSxEgnWzre22FN/UF
qty+WV7o2MoaoWVwTkpherMsy161qJ3vdq+qundwae2UZpjKjjSXQw/1bsoi73NM
kofzrM3GY9jllTTAiZVK/k2VAUEMaVU2tQ4dQ166O1bkoUS0TWx240bsSKrSAw36
eid49VyOXew/YIk+tklg7abUgxzuHaX21CFndA9Ms+EmShp+VCqEGdbXie5OCwiu
Mn70AJxVEGbSfwuKbg2mWQdjmlrSKvsbecAMph8EKJF1M2Nc
Generated at Thu Nov 7 03:28:41 2024 by rpki-client on console-fra.rpki-client.org