Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
File: AS25198.roa (raw, json)
Hash identifier: s5S3IYbdLpgVde0KGegdT5/w36IfSTRt4ZOOc8BGE+c=
Subject key identifier: F2:16:24:E5:50:9F:44:CB:FA:4E:47:C0:06:95:61:93:84:84:AF:F4
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 653906460494D0114918C1EE13C2390658E7A532
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
Signing time: Tue 20 Jun 2023 08:43:04 +0000
ROA not before: Tue 20 Jun 2023 08:38:04 +0000
ROA not after: Tue 18 Jun 2024 08:43:04 +0000
asID: 25198
IP address blocks: 141.11.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:39:06:46:04:94:d0:11:49:18:c1:ee:13:c2:39:06:58:e7:a5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jun 20 08:38:04 2023 GMT
Not After : Jun 18 08:43:04 2024 GMT
Subject: CN=F21624E5509F44CBFA4E47C0069561938484AFF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:ab:22:b1:e0:24:d7:9b:eb:91:ba:d7:c7:
7f:98:6c:66:13:46:58:6c:68:cc:0e:26:2b:20:9c:
f0:f4:da:c0:6d:49:56:5a:4a:24:5a:3c:54:3d:f8:
d6:59:a6:9a:e8:87:7f:0d:54:f8:6a:a4:c6:99:64:
4b:83:8c:b0:24:f6:83:af:bc:68:11:74:49:12:f0:
e4:74:2c:fa:32:b3:6d:8b:46:12:b7:8c:e3:91:60:
f0:bc:8d:10:93:64:8b:4b:fa:20:47:95:1f:48:de:
a8:d9:52:1c:a5:a2:c6:c7:33:f9:61:7e:67:e6:68:
79:3e:74:b2:50:a3:b8:ba:65:78:5a:17:d6:98:36:
c9:d0:55:33:9e:59:49:f6:a5:e6:5c:84:7f:fa:81:
a8:16:f3:03:04:85:b7:b1:5b:fc:80:a9:43:8f:49:
c4:dc:23:08:ed:da:ec:d3:04:6b:48:68:50:5d:70:
2c:35:bb:fc:6e:7b:5d:db:1d:52:ad:20:87:10:25:
57:2a:cd:99:3e:91:d1:58:e1:51:ac:8d:29:dd:13:
22:48:0b:7d:dc:a3:52:32:83:26:6e:d4:2c:27:56:
02:30:81:aa:57:67:40:c0:30:42:c4:30:f9:a6:cb:
eb:a9:61:48:ed:01:be:47:7c:6d:e8:9f:78:b7:79:
e1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:16:24:E5:50:9F:44:CB:FA:4E:47:C0:06:95:61:93:84:84:AF:F4
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.251.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:e0:42:c2:f8:71:92:5b:c9:61:0c:39:fb:a6:8d:7a:69:21:
b9:1d:41:a0:ae:bb:e1:7f:56:a6:f9:14:08:9e:c0:92:c8:14:
a7:a8:46:c9:f6:fe:f7:aa:83:38:40:86:32:17:5e:c5:e1:53:
94:95:2b:51:3c:58:0c:3c:85:99:d8:8c:e0:05:d5:b6:c5:a7:
2b:84:e2:d3:21:4c:71:ab:06:7c:a3:e6:49:7c:7d:1e:a7:7e:
e6:61:57:21:54:91:6f:7a:86:b7:f0:43:1d:24:8b:02:97:a7:
3c:69:2a:cf:56:86:5a:fd:db:fd:c7:4f:ef:ed:36:6c:54:5c:
44:af:cc:e4:44:a1:a3:6f:30:94:fc:57:ac:59:af:8f:38:b5:
81:fa:8b:a7:13:bc:f4:b0:9f:5c:8c:76:3a:d7:d6:07:16:69:
d5:75:0b:79:28:f4:84:f7:60:5a:89:de:3a:21:cc:f7:07:d7:
0d:d7:be:a1:18:d5:70:05:2c:4a:e5:fa:8b:b1:2b:4e:ce:ff:
c1:df:96:0b:0d:aa:34:01:ca:d8:c4:b0:68:b2:b2:4f:47:38:
0a:ef:37:e5:88:0c:4e:9c:2e:74:e4:49:8b:72:77:40:f9:a4:
07:ea:a1:d2:00:a5:82:c1:0f:dd:e6:c4:ca:ad:6e:10:8b:94:
3d:ae:7f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org