Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
File: AS43260.roa (raw, json)
Hash identifier: BaSULgkwk8+XBjn+5/2u9tSG2Csd+kA56HFWG9bC1Ew=
Subject key identifier: BF:75:95:38:3A:23:D8:78:30:18:E3:65:B3:8E:C1:81:97:62:26:38
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 2A1FD011A7334BFA1BB5793C437962EC8FE44EC4
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
Signing time: Thu 16 May 2024 18:41:57 +0000
ROA not before: Thu 16 May 2024 18:36:57 +0000
ROA not after: Thu 15 May 2025 18:41:57 +0000
asID: 43260
IP address blocks: 141.11.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 16:20:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:1f:d0:11:a7:33:4b:fa:1b:b5:79:3c:43:79:62:ec:8f:e4:4e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: May 16 18:36:57 2024 GMT
Not After : May 15 18:41:57 2025 GMT
Subject: CN=BF7595383A23D8783018E365B38EC18197622638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:be:89:2d:62:58:81:fa:36:10:b7:0a:53:24:
48:27:fc:e5:3d:e7:49:a6:6d:af:d3:f3:07:23:ce:
bb:81:24:56:fe:7f:a1:a1:7d:9e:dc:5b:0f:77:c4:
af:c2:63:33:dd:0e:e7:89:28:59:9b:bf:ad:1c:09:
99:a4:a5:1d:49:51:1a:22:e4:e1:13:12:21:6b:46:
fd:22:6f:10:83:fa:d2:0b:ad:8c:69:84:68:64:5c:
59:00:6d:2d:30:24:ce:10:61:bf:3b:18:ff:03:fc:
a3:54:59:3a:fb:0c:a1:8f:6b:c3:f4:f4:7c:35:5e:
21:73:e4:22:39:3d:c3:fa:bd:6c:48:fd:ef:c8:41:
39:de:45:34:43:c5:57:f9:bf:25:72:41:59:30:3e:
3c:c1:5a:78:a5:70:f7:27:d7:7f:fc:91:d6:0d:e7:
90:bd:42:95:88:17:34:03:76:b4:11:97:f5:61:d1:
d9:ff:51:d2:5d:e6:10:96:2f:80:95:95:5a:b1:87:
39:bb:ca:80:78:c0:f7:37:b3:24:14:0b:64:29:fd:
6d:9b:80:80:de:51:40:e8:c5:f1:87:cf:95:ec:21:
36:1f:ff:2a:05:aa:6b:57:12:df:6c:fa:1a:b9:a3:
8d:5c:84:c7:53:9e:8c:49:a6:ee:26:94:5b:55:fd:
dc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:75:95:38:3A:23:D8:78:30:18:E3:65:B3:8E:C1:81:97:62:26:38
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.24.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ae:bc:61:2d:7b:89:69:d3:44:4c:0b:c1:c0:6a:99:cc:52:
c0:a5:91:ba:b5:f1:a9:e7:d4:6f:f1:50:93:21:c8:dc:68:e6:
36:93:01:39:6d:25:5e:2e:a3:39:50:8f:a4:e0:a5:fc:28:9f:
81:c5:9a:20:8e:68:b5:09:f0:44:b9:ba:0d:e5:fe:24:7a:59:
c6:9f:07:77:09:f7:f2:11:bc:8d:e6:5c:83:68:8b:f5:cd:bb:
e7:83:df:0f:5a:93:81:77:fc:37:c1:b4:00:b9:3b:96:e7:1e:
bb:2c:7b:af:7e:a1:1e:28:f6:6c:32:c4:55:b2:0e:f3:20:b6:
9e:ec:41:15:66:47:c1:2e:6c:47:97:a3:6d:b3:81:6a:12:48:
34:f2:cb:f8:be:93:43:53:e5:32:b3:ff:48:02:a5:85:9c:37:
e2:c9:77:c2:bd:d9:c7:30:1d:47:22:bb:4c:a0:cc:03:a7:c8:
30:10:94:0a:b2:9b:e7:16:ad:68:b5:89:c1:50:b5:89:f3:68:
31:fc:24:36:83:44:49:60:7b:a7:62:60:79:bc:50:16:b8:c1:
f0:13:76:fb:bf:13:de:a4:28:91:59:90:2a:11:0a:6e:8d:d4:
1e:0e:54:b7:81:d0:8a:f7:51:cb:87:0f:e9:9c:fd:5b:af:0f:
89:f6:d7:a2
-----BEGIN CERTIFICATE-----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Generated at Mon Jul 1 17:35:14 2024 by rpki-client on console-fra.rpki-client.org