Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215355.roa
File: AS215355.roa (raw, json)
Hash identifier: 9qCZ57uVEyjo6z3xuhWXU77WFGpxtwGRBLYOFDjAOCw=
Subject key identifier: C1:C3:E5:B4:88:FA:84:BC:9D:2B:B4:24:F6:2B:7D:4C:F7:41:88:17
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 314E2B08E03D329D7FB4580B2A01B63C75C00D4A
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215355.roa
Signing time: Sat 09 Mar 2024 12:02:52 +0000
ROA not before: Sat 09 Mar 2024 11:57:52 +0000
ROA not after: Sat 08 Mar 2025 12:02:52 +0000
asID: 215355
IP address blocks: 141.11.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 10:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:4e:2b:08:e0:3d:32:9d:7f:b4:58:0b:2a:01:b6:3c:75:c0:0d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Mar 9 11:57:52 2024 GMT
Not After : Mar 8 12:02:52 2025 GMT
Subject: CN=C1C3E5B488FA84BC9D2BB424F62B7D4CF7418817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4d:15:c1:da:a0:ee:4b:d7:81:20:99:45:bc:
7b:c8:ad:eb:9d:45:e2:1c:20:4c:c1:0b:7b:06:1c:
0c:b0:e9:7c:18:b5:4f:bc:47:49:5b:aa:fc:65:88:
6e:80:9b:0f:16:9a:7f:41:f2:55:a8:eb:90:74:af:
fc:3d:6a:ec:27:9b:22:e3:77:06:9d:f4:d4:db:a9:
60:69:a9:bd:a7:ba:3e:57:56:7b:56:2c:74:f4:b3:
06:54:11:ec:1d:c2:ca:96:60:0c:a5:2a:d9:40:db:
22:f0:44:85:09:df:4c:ee:0f:8c:f8:89:cb:2d:00:
2d:b1:9f:4f:e7:3b:5b:7d:c1:e6:48:cd:f0:09:c0:
c2:ff:2d:42:ef:6d:72:dc:db:98:a0:cc:64:6d:4d:
6b:2f:c2:4f:e1:65:ba:8a:37:bd:fa:36:24:93:09:
89:73:17:8c:10:dc:ff:9d:9e:e2:93:97:82:52:cf:
99:b2:07:00:d2:b2:34:b9:69:fd:00:fe:e3:ba:83:
60:01:62:19:4e:1b:64:19:e3:40:19:a8:48:71:34:
da:f8:f9:ae:43:46:4a:a3:07:05:b9:7f:89:2d:97:
bd:d3:2c:f2:81:7a:2c:d0:04:86:8b:c2:91:1f:ca:
78:c1:52:3c:8e:36:44:80:ae:26:57:21:4c:82:63:
fa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C3:E5:B4:88:FA:84:BC:9D:2B:B4:24:F6:2B:7D:4C:F7:41:88:17
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS215355.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.118.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b5:2d:89:e0:eb:c3:01:23:86:d8:13:1e:b3:4d:8b:5f:28:
ee:63:10:43:5e:e3:4f:35:b6:36:f9:65:7c:db:a7:77:14:8b:
09:48:87:34:4b:ac:5d:d1:e2:4c:f9:00:ce:7c:6c:b4:85:e7:
7a:28:d0:cc:68:d0:d5:3f:fa:76:9e:c3:83:bf:ab:d5:a9:d5:
da:68:8e:3a:f7:56:db:75:fa:dd:68:f1:d6:9a:ae:f8:3a:29:
30:e9:3a:dc:5f:f4:08:18:ff:40:8a:1a:07:77:8d:0e:9c:dc:
20:6b:f1:c1:03:f5:59:02:46:84:84:70:53:ca:2c:ab:31:3c:
ab:b4:84:8c:01:aa:06:f5:84:28:78:84:43:c1:da:20:28:f7:
5b:e0:65:9a:73:77:e8:89:0f:e6:84:ba:9d:29:94:78:5f:fa:
12:0e:24:d3:43:b1:cf:f6:6e:8e:49:50:8a:01:59:18:7e:7c:
d9:92:15:e5:c8:dd:f4:da:4e:22:e7:b6:c1:dd:f6:7c:74:3f:
89:e8:03:7c:81:55:14:ce:51:ea:3c:39:b1:42:f8:f4:4a:6d:
f6:b1:e3:30:35:12:b6:b6:a9:7f:d2:aa:9a:ab:45:a2:56:62:
54:f9:7d:b2:38:a8:08:cd:97:97:a0:6c:a9:57:ba:8c:24:1e:
cf:df:0d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 15:26:16 2024 by rpki-client on console-ams.rpki-client.org