Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS36231.roa
File: AS36231.roa (raw, json)
Hash identifier: spPd1yVTyr33U56Qj9VJkJ5ld9LRoIMl2bD6bsHMVqU=
Subject key identifier: DB:B5:7A:D7:5B:37:4E:F9:7A:79:B5:5A:3E:A4:0C:EF:AB:74:D8:DE
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 2046725B5B32F99C8FD0D5A737F972003EE05EEB
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS36231.roa
Signing time: Mon 11 Sep 2023 18:46:35 +0000
ROA not before: Mon 11 Sep 2023 18:41:35 +0000
ROA not after: Mon 09 Sep 2024 18:46:35 +0000
asID: 36231
IP address blocks: 141.11.136.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:46:72:5b:5b:32:f9:9c:8f:d0:d5:a7:37:f9:72:00:3e:e0:5e:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Sep 11 18:41:35 2023 GMT
Not After : Sep 9 18:46:35 2024 GMT
Subject: CN=DBB57AD75B374EF97A79B55A3EA40CEFAB74D8DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d9:57:9a:4f:4a:d7:db:97:a0:29:ba:af:86:
a0:8b:c9:fb:c3:b8:94:3a:7b:4f:91:f1:5e:57:1e:
7f:90:9e:ea:4f:ef:b3:c5:d1:c0:10:66:e4:4f:ac:
28:cd:60:78:51:4e:44:2f:08:e8:f2:fa:5c:31:48:
1a:96:10:87:4f:49:5d:0a:95:1c:c4:f0:b5:2b:35:
f6:95:2c:88:6d:8d:3b:e5:24:b4:d8:d6:21:c4:58:
90:fb:7b:a9:b8:9c:6f:7b:3c:e8:40:ad:ec:c1:3d:
40:b6:5d:b9:87:03:b7:ef:0a:e6:0c:d0:8e:29:be:
33:48:ff:bc:06:d9:5f:b8:ac:5f:c6:40:42:7e:64:
d7:a2:f1:75:29:4e:01:93:7b:9c:17:20:4c:c4:19:
7b:53:bc:89:99:ef:59:61:ba:89:d5:75:ca:3d:91:
cc:06:57:25:8c:85:66:d9:82:15:66:1f:46:f1:91:
89:5d:cd:66:ca:f2:93:b7:04:d4:70:21:ac:99:23:
9c:e4:4e:c8:18:dd:17:40:98:1c:3d:f5:d8:dd:8c:
09:e2:c2:12:21:80:cc:b5:9d:fc:a0:88:7a:cf:2f:
db:17:4d:e7:82:8e:97:48:49:4d:20:c0:dd:4a:f9:
3f:e5:1f:85:a1:cc:41:5b:df:16:ac:60:d5:0f:10:
73:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B5:7A:D7:5B:37:4E:F9:7A:79:B5:5A:3E:A4:0C:EF:AB:74:D8:DE
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS36231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.136.0/23
Signature Algorithm: sha256WithRSAEncryption
23:5a:8d:fa:e8:5c:d1:96:b6:ca:76:92:be:7f:4d:16:b4:69:
e8:72:18:cc:1f:ed:9c:88:2e:28:60:17:16:13:8f:39:7d:67:
4a:6b:45:d0:25:4e:72:cf:9d:1e:ee:27:a1:f5:20:e8:29:95:
ea:79:20:63:4d:81:62:33:a2:49:d2:49:98:c0:4c:05:25:74:
3b:f1:a5:e1:0e:7b:f7:9f:c7:16:17:8a:d7:9b:84:6b:d2:1d:
60:40:e8:d1:13:2a:3f:51:09:f5:82:04:9b:c3:eb:fb:17:2c:
be:4e:8f:63:8f:9f:be:26:24:d4:17:d9:3f:7c:a7:f0:93:f9:
4a:d0:41:45:a0:ee:5c:4d:31:98:b4:ca:7c:28:dd:67:1f:88:
50:4f:8d:84:d1:29:0a:91:e9:4e:a2:73:c6:0e:8d:ad:9c:8a:
68:a5:40:4a:b6:06:98:37:89:de:6f:26:03:94:58:77:96:3d:
b0:77:81:a2:46:35:f8:ab:1b:97:cf:1f:38:43:5e:06:aa:8f:
67:0c:a3:fa:c5:ce:56:f3:79:0c:4c:23:b1:82:12:32:b7:90:
47:af:e0:a4:74:d5:a7:b8:33:f0:a9:f2:97:13:c3:d0:e4:54:
ac:63:0c:5c:4c:80:f6:d2:ff:82:75:38:9c:13:0c:fd:4a:af:
e5:dc:64:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 17 04:52:12 2023 by rpki-client on console-ams.rpki-client.org