Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215035.roa
File: AS215035.roa (raw, json)
Hash identifier: jTtUofXF8XJD6d+B1813xVRjrWWFlKODHAKLZAfQI5g=
Subject key identifier: 32:D2:FD:29:D6:FA:63:93:1C:B9:FF:45:D3:E5:52:F0:F9:F0:1A:F1
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 5E70A44EDFD3F98BD8BA19DE349A34CEC6DF8EA0
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215035.roa
Signing time: Sun 25 Aug 2024 09:30:56 +0000
ROA not before: Sun 25 Aug 2024 09:25:56 +0000
ROA not after: Sun 24 Aug 2025 09:30:56 +0000
asID: 215035
IP address blocks: 141.11.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 00:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:70:a4:4e:df:d3:f9:8b:d8:ba:19:de:34:9a:34:ce:c6:df:8e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Aug 25 09:25:56 2024 GMT
Not After : Aug 24 09:30:56 2025 GMT
Subject: CN=32D2FD29D6FA63931CB9FF45D3E552F0F9F01AF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:10:21:72:24:16:69:71:8e:f3:d9:21:67:25:
20:cb:f1:86:4f:3e:e8:e6:7b:9e:2c:1c:b3:df:70:
e3:83:97:4a:b5:09:b5:ff:0c:39:70:2d:11:b6:7e:
63:73:df:24:36:52:ce:0f:44:5e:bf:69:55:97:54:
eb:3b:9c:6d:8c:4b:9e:bb:d9:0f:60:01:2f:5f:8e:
1d:58:fa:23:8d:55:07:fc:6e:2d:c6:5e:0b:d0:31:
97:1f:95:ef:a9:bf:8a:a3:ab:e3:71:06:12:9c:a2:
a5:78:3e:c5:2c:6d:97:cc:c9:c4:12:a2:cc:a7:2d:
86:4e:eb:95:41:89:e8:bc:16:58:72:b5:da:95:e7:
29:0f:e2:a2:6f:e2:b6:0f:c0:f0:cb:f2:e7:ca:01:
ad:34:09:36:84:6c:eb:65:ba:6d:0f:1c:cb:31:2e:
04:c0:cb:5b:80:c3:fa:e8:66:57:3d:e3:f2:21:5c:
35:2d:ab:68:f8:e4:6d:ac:53:e4:b2:fa:93:cd:aa:
2f:1d:70:76:60:a2:e7:ee:64:36:a5:f9:be:15:f2:
e8:5e:5a:bf:6e:a9:5e:27:4d:08:60:2e:34:07:79:
a9:df:5a:83:39:2b:cb:89:08:f8:dd:20:6e:5d:03:
91:69:9d:4e:44:43:76:89:3e:8f:92:d6:d1:1e:c0:
bb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D2:FD:29:D6:FA:63:93:1C:B9:FF:45:D3:E5:52:F0:F9:F0:1A:F1
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.245.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:25:5c:b8:e9:1c:80:52:51:df:b2:b0:9d:a8:b1:cd:da:4f:
71:22:d4:f9:76:2f:3d:8f:c8:29:75:25:60:21:72:0f:47:c1:
9e:56:26:c0:89:4b:40:97:2e:ec:ae:37:97:f8:22:0b:f6:70:
f2:6c:42:09:e7:5c:23:5c:d0:6e:b7:1e:f9:81:56:bf:da:f1:
61:49:e9:7c:8d:47:37:ca:1c:50:d4:2b:6d:03:0f:a2:9e:d6:
dd:91:f9:84:e4:71:43:21:91:46:37:78:51:be:65:08:2a:f8:
de:7f:c8:9f:f7:29:d4:31:69:ad:11:09:9b:02:7a:33:78:a3:
96:cd:6d:ac:7c:cb:6c:36:df:fe:eb:fb:b4:f4:37:e0:0a:56:
b3:87:32:b6:f4:40:0d:b0:bf:0b:02:0d:e6:90:f6:e4:29:f1:
5b:36:41:3a:29:13:77:44:13:be:97:f6:2e:8f:b8:4f:58:1c:
dd:6e:91:c9:da:09:41:1c:b1:96:5e:f0:5b:df:69:bb:c9:39:
b4:1e:38:57:91:2e:b6:2c:02:4e:8d:eb:6c:0e:16:6f:be:bb:
b8:35:5b:bd:de:85:66:01:78:ef:fe:ad:7e:58:7f:08:bf:04:
54:46:37:25:a3:c9:62:57:1c:db:dd:e2:5e:7e:25:ee:b9:4a:
1e:1c:51:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 02:30:07 2024 by rpki-client on console-fra.rpki-client.org