Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS216253.roa
File: AS216253.roa (raw, json)
Hash identifier: c5KJGtdf/Zh4BsluKQdnHHirdDsWsMtbExq7vyALxlo=
Subject key identifier: 0A:FC:40:24:00:FF:FA:89:01:18:77:C2:1A:A1:DB:F9:B9:4B:F0:23
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0C3E172D466F8838103C6C6FACB064FF057DEAAE
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS216253.roa
Signing time: Sun 07 Jul 2024 13:04:34 +0000
ROA not before: Sun 07 Jul 2024 12:59:34 +0000
ROA not after: Sun 06 Jul 2025 13:04:34 +0000
asID: 216253
IP address blocks: 141.11.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 06:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:3e:17:2d:46:6f:88:38:10:3c:6c:6f:ac:b0:64:ff:05:7d:ea:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jul 7 12:59:34 2024 GMT
Not After : Jul 6 13:04:34 2025 GMT
Subject: CN=0AFC402400FFFA89011877C21AA1DBF9B94BF023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:fa:36:1d:97:b2:15:29:7c:b5:38:ad:12:
7c:0b:a9:e8:f1:b5:47:d6:e0:97:5d:bb:9c:29:29:
2b:5f:4b:02:09:35:f4:3b:8b:30:7e:7b:39:18:d6:
d6:78:3c:2b:3d:47:f3:ff:bc:96:26:c8:ec:e3:88:
6f:f8:28:c1:3c:05:da:99:27:73:8c:23:76:a1:3d:
f0:ef:41:f3:69:e3:08:ee:20:d9:2f:9b:88:4b:9c:
62:aa:8d:c1:b5:20:2a:0f:c9:8f:08:d0:5e:4f:a9:
cc:70:b9:1f:9a:5c:fc:da:bf:65:79:0f:df:1b:6e:
56:55:4a:eb:50:60:1e:36:f3:fa:4b:d0:14:89:bc:
2c:ae:e3:1f:93:69:2f:15:f6:cf:69:3d:94:4a:e3:
f2:78:8c:b7:62:4d:59:6b:02:4f:64:90:4c:51:d6:
19:30:35:be:02:48:13:52:9e:bc:8b:d6:a2:51:67:
90:02:7b:b3:0b:e7:cc:97:97:2f:ac:f8:e8:e4:3f:
95:2c:e8:95:07:b6:2d:c6:be:a1:0a:22:38:9e:65:
d5:cd:4b:02:2e:4b:4d:97:58:3a:70:d0:8e:88:5f:
34:7c:d9:81:84:3c:c0:05:29:1a:c7:d2:b3:70:92:
d8:b4:38:31:41:36:7c:64:66:ad:8d:13:ff:65:5c:
1b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:FC:40:24:00:FF:FA:89:01:18:77:C2:1A:A1:DB:F9:B9:4B:F0:23
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS216253.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.100.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:e2:be:f2:75:dc:70:5b:44:2c:ef:0d:ce:d2:73:d2:66:19:
e8:e8:98:1c:ca:1a:e3:ea:6d:d0:c7:8d:5d:1b:e8:d6:ee:fc:
cf:ce:7a:12:53:aa:7c:1d:22:e8:59:85:66:77:23:53:70:de:
9e:68:76:12:fb:d7:b7:80:8f:f2:d9:d8:fe:7f:d8:9f:14:f9:
9b:eb:ab:aa:23:25:c9:48:61:08:27:27:a4:86:44:c0:d1:27:
36:c5:75:44:fb:53:ed:14:d3:1d:70:ca:85:69:44:ad:c0:45:
0e:b4:cf:fd:18:69:a4:8b:57:e4:91:d3:9d:3e:58:ed:52:8e:
c4:e2:4e:ae:b8:c6:53:9a:aa:76:80:ab:ac:91:54:e9:ae:40:
1e:4b:94:f1:33:c1:f3:2c:95:1e:9c:3a:d0:4b:75:9d:13:bb:
91:35:35:d8:1a:f6:bf:21:1d:2e:1a:73:bc:42:77:2b:74:b4:
6d:b2:38:ff:c0:65:dc:c9:9b:cb:79:41:86:8a:4d:03:04:90:
d9:ff:13:55:14:22:08:1c:7d:38:f2:2d:a7:57:88:dc:1d:f5:
f5:80:53:59:71:be:b2:0b:6f:fd:95:1c:e3:07:93:cd:32:6d:
51:d2:7d:e0:4f:5b:f8:a2:b9:d1:4c:50:08:8b:23:20:64:32:
1d:04:c2:a7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUDD4XLUZviDgQPGxvrLBk/wV96q4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDA3MDcxMjU5MzRaFw0yNTA3MDYxMzA0MzRaMDMxMTAvBgNV
BAMTKDBBRkM0MDI0MDBGRkZBODkwMTE4NzdDMjFBQTFEQkY5Qjk0QkYwMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7JPo2HZeyFSl8tTitEnwLqejx
tUfW4Jddu5wpKStfSwIJNfQ7izB+ezkY1tZ4PCs9R/P/vJYmyOzjiG/4KME8BdqZ
J3OMI3ahPfDvQfNp4wjuINkvm4hLnGKqjcG1ICoPyY8I0F5PqcxwuR+aXPzav2V5
D98bblZVSutQYB428/pL0BSJvCyu4x+TaS8V9s9pPZRK4/J4jLdiTVlrAk9kkExR
1hkwNb4CSBNSnryL1qJRZ5ACe7ML58yXly+s+OjkP5Us6JUHti3GvqEKIjieZdXN
SwIuS02XWDpw0I6IXzR82YGEPMAFKRrH0rNwkti0ODFBNnxkZq2NE/9lXBttAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUCvxAJAD/+okBGHfCGqHb+blL8CMwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTMjE2MjUzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjQtk
MA0GCSqGSIb3DQEBCwUAA4IBAQCc4r7yddxwW0Qs7w3O0nPSZhno6Jgcyhrj6m3Q
x41dG+jW7vzPznoSU6p8HSLoWYVmdyNTcN6eaHYS+9e3gI/y2dj+f9ifFPmb66uq
IyXJSGEIJyekhkTA0Sc2xXVE+1PtFNMdcMqFaUStwEUOtM/9GGmki1fkkdOdPljt
Uo7E4k6uuMZTmqp2gKuskVTprkAeS5TxM8HzLJUenDrQS3WdE7uRNTXYGva/IR0u
GnO8QncrdLRtsjj/wGXcyZvLeUGGik0DBJDZ/xNVFCIIHH048i2nV4jcHfX1gFNZ
cb6yC2/9lRzjB5PNMm1R0n3gT1v4ornRTFAIiyMgZDIdBMKn
-----END CERTIFICATE-----
Generated at Sat Aug 17 07:46:30 2024 by rpki-client on console-fra.rpki-client.org