Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214882.roa
File: AS214882.roa (raw, json)
Hash identifier: WusTLkW3phB/U7In4Vu4PcJIBhKj/lOgZDSgSReOM+M=
Subject key identifier: 59:3A:F5:BB:49:CB:7B:31:9C:08:B8:4A:40:A3:67:ED:CC:1F:84:B6
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 345DF69775EDF04BFA391AED2D76370901314FEF
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214882.roa
Signing time: Sat 29 Jun 2024 03:23:58 +0000
ROA not before: Sat 29 Jun 2024 03:18:58 +0000
ROA not after: Sat 28 Jun 2025 03:23:58 +0000
asID: 214882
IP address blocks: 141.11.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 00:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:5d:f6:97:75:ed:f0:4b:fa:39:1a:ed:2d:76:37:09:01:31:4f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 29 03:18:58 2024 GMT
Not After : Jun 28 03:23:58 2025 GMT
Subject: CN=593AF5BB49CB7B319C08B84A40A367EDCC1F84B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:82:12:6b:5c:46:ca:2d:23:ff:54:f7:c8:50:
52:bf:1f:06:76:5a:dd:86:95:21:fd:b7:d9:23:a6:
76:51:d2:d0:29:30:bc:75:69:1d:ec:42:03:c7:73:
5c:1c:c0:d7:9e:75:b8:f6:aa:53:7d:bd:55:25:b4:
93:1b:b9:2f:7a:1d:9e:40:7c:66:d3:c9:c9:aa:b4:
16:34:70:f0:6b:fb:58:1a:8b:b7:9a:4b:04:01:1b:
00:02:c2:31:4e:dc:40:a4:e6:39:4b:52:5f:52:d8:
20:5b:e3:5e:ad:3e:a2:40:35:16:19:94:2f:6a:a5:
24:a2:a6:bb:f8:01:ee:ff:ec:22:00:ae:3a:e5:1f:
6f:26:09:63:27:cb:a3:db:96:29:94:36:6f:dd:55:
8e:27:ef:72:12:9e:e4:55:32:4e:bd:5e:83:62:81:
24:a1:61:79:26:5b:ca:8d:17:7b:54:c7:f6:4c:6a:
2a:0d:57:72:53:f3:fc:d1:a8:7b:99:86:17:00:d9:
de:87:20:74:69:ba:67:d2:97:26:f7:84:bb:ab:6d:
10:16:af:36:8b:b2:d2:b6:06:1a:ce:1e:d4:42:68:
e1:e2:2f:0e:b7:3c:13:8f:7e:ab:2b:8e:09:f4:8b:
96:37:7b:c8:27:d9:07:6d:0c:15:de:e1:e6:a2:41:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3A:F5:BB:49:CB:7B:31:9C:08:B8:4A:40:A3:67:ED:CC:1F:84:B6
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS214882.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.161.0/24
Signature Algorithm: sha256WithRSAEncryption
20:81:74:c5:a1:4e:7b:8c:fa:20:32:de:35:71:b8:40:b6:63:
76:21:ea:35:96:c1:7d:9b:1d:88:32:3b:2c:d4:82:41:cc:fc:
4c:03:58:69:aa:09:5d:ca:57:74:07:4c:1d:09:3e:80:89:dc:
01:12:dd:5e:48:75:8d:0e:d3:49:3c:b1:1e:f8:3a:38:24:b2:
cb:cb:e1:b6:5d:20:a6:7c:27:3b:16:8c:90:30:13:b7:cd:4b:
c8:12:2e:1b:d7:51:6c:a1:22:2a:3b:08:b1:dd:65:0b:9a:90:
ec:c1:00:f9:56:8a:37:4f:60:b1:3c:2f:93:fe:b5:76:a9:d8:
d8:0f:f1:77:45:81:ff:a9:bb:95:5f:cb:17:3d:a5:d1:4f:c9:
ec:3f:32:5e:9c:17:e7:c8:2f:d1:66:ad:09:1e:89:23:58:f3:
d3:df:92:22:b6:31:03:2d:a9:02:24:42:c5:a1:59:38:30:d9:
b8:e2:00:87:b1:4f:5f:1f:8d:5c:59:0a:a1:c6:71:a0:a1:ac:
a6:1c:9b:15:82:22:fd:c7:31:ef:95:6d:b0:85:73:bb:a8:a8:
0d:7d:ba:79:76:2d:d9:61:03:42:bf:46:8f:39:b2:12:26:43:
2c:1b:96:7f:a3:05:75:39:8e:26:36:3d:9a:83:15:22:02:41:
ac:a2:43:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:55:41 2025 by rpki-client