Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
File: AS30823.roa (raw, json)
Hash identifier: G4BF37qoOMKelZUKN/5ZnLDp5ESbzNK2lfAtq/tO0rE=
Subject key identifier: 55:2F:EC:F7:DC:51:21:20:61:4E:68:29:43:A4:ED:9B:CD:DA:D3:86
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0BECAD0ABB355E5BA97E16A1F540CD0DF4B03423
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
Signing time: Tue 27 Dec 2022 14:44:36 +0000
ROA not before: Tue 27 Dec 2022 14:39:36 +0000
ROA not after: Tue 26 Dec 2023 14:44:36 +0000
asID: 30823
IP address blocks: 141.11.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ec:ad:0a:bb:35:5e:5b:a9:7e:16:a1:f5:40:cd:0d:f4:b0:34:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Dec 27 14:39:36 2022 GMT
Not After : Dec 26 14:44:36 2023 GMT
Subject: CN=552FECF7DC512120614E682943A4ED9BCDDAD386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:07:3c:af:0b:ba:17:5c:b2:69:91:c7:bc:e2:
3b:cd:66:ca:36:19:f7:88:0d:29:48:28:8c:88:87:
24:dc:3d:50:69:c7:f7:68:0d:58:09:65:e4:af:43:
94:c4:dc:3b:e0:09:ee:50:e6:07:ea:fc:e6:0d:0f:
bb:3a:e2:c6:96:6e:4d:3b:fe:8a:91:58:db:77:12:
80:f4:2d:5a:77:eb:91:a7:b7:67:ad:d2:88:35:bf:
c0:f8:44:4b:7c:f4:94:fe:e0:c2:2f:52:a4:37:b7:
0d:0c:e4:1f:88:de:86:75:cc:cc:37:1e:0c:70:16:
57:a7:73:eb:95:66:8c:bb:cc:69:76:33:dd:40:a7:
96:58:42:33:7c:f2:3f:4c:d0:56:3b:ca:66:a3:a5:
37:12:55:0a:4e:8f:c1:6d:9f:c5:30:75:8c:2e:94:
59:23:88:6e:10:ac:76:ba:bc:0c:2f:94:97:16:1c:
b2:fb:78:22:59:d6:94:cd:ec:cf:d6:26:07:2a:70:
7b:ee:49:61:41:d8:54:80:ea:96:da:57:f3:20:f8:
b7:9d:de:53:19:ef:86:0b:bf:fc:ba:e2:df:0c:bc:
f3:f7:9b:cb:dd:75:f4:36:c4:5b:5e:6a:9b:94:ac:
43:cd:ec:69:d0:10:e5:14:ad:37:4a:d7:f7:4a:53:
d0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2F:EC:F7:DC:51:21:20:61:4E:68:29:43:A4:ED:9B:CD:DA:D3:86
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS30823.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.45.0/24
Signature Algorithm: sha256WithRSAEncryption
87:de:59:00:21:a3:6d:7b:15:08:c8:f3:91:8d:e7:53:c0:6d:
26:58:e0:1b:78:24:e7:84:47:4c:7c:a9:23:7e:b3:99:11:81:
f0:b6:17:ce:27:53:ee:8e:c9:d9:b2:30:4c:56:40:b8:66:22:
a1:a5:b3:33:9e:fd:93:85:a0:e9:c8:71:4e:4e:cc:09:7f:c8:
f6:f9:48:cc:df:a2:38:83:ca:45:f8:5c:04:d6:ee:5b:46:f8:
9c:3a:36:69:a7:f2:36:a2:89:3d:0a:65:45:ad:da:de:52:8e:
cb:fc:d9:a9:40:b7:ff:20:46:3a:e3:52:bd:01:a5:36:b8:58:
00:fa:ad:29:ad:97:1f:2b:6b:c5:12:0e:dd:f5:1b:42:a6:33:
7e:08:db:0e:21:69:8a:b5:9d:d7:90:be:63:a1:58:88:75:0a:
67:53:6d:f8:90:1c:8c:5f:48:ba:29:42:46:c0:3d:06:99:a3:
32:72:b5:51:ae:7a:97:b4:e2:f9:c6:3c:8e:46:30:9e:1a:f8:
9d:17:03:56:e6:1a:66:38:78:cc:7e:f3:8e:8e:42:cf:77:80:
1a:67:46:ee:94:c5:36:13:8c:83:a5:3f:b6:a6:95:bd:de:b0:
59:ab:23:0d:d2:bf:3f:65:31:ce:ad:ad:2b:e5:ba:08:e9:d2:
bd:6f:d6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org