Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
File: AS43260.roa (raw, json)
Hash identifier: 1e+CyHQU2AepgxrgLEDBR4tjOTiEeQi3VmcEwZ9wKOQ=
Subject key identifier: 99:B0:07:39:C3:89:AA:23:63:D4:4B:12:36:FA:28:44:63:B8:BF:10
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 015E525B331F364D26A9DFDF6A52180849231C14
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
Signing time: Tue 04 Apr 2023 00:00:12 +0000
ROA not before: Mon 03 Apr 2023 23:55:12 +0000
ROA not after: Tue 02 Apr 2024 00:00:12 +0000
asID: 43260
IP address blocks: 141.11.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:5e:52:5b:33:1f:36:4d:26:a9:df:df:6a:52:18:08:49:23:1c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Apr 3 23:55:12 2023 GMT
Not After : Apr 2 00:00:12 2024 GMT
Subject: CN=99B00739C389AA2363D44B1236FA284463B8BF10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:58:8b:8d:4f:f1:f3:d7:9f:f5:3d:47:f2:
71:bb:85:f3:13:e0:19:39:de:74:87:07:5c:a4:7e:
45:a4:f0:b7:37:ff:b4:6d:5a:58:bf:1a:27:d9:f9:
76:37:ee:ea:33:04:fc:a8:16:b1:ee:e6:f1:74:c5:
34:35:ee:05:35:35:e2:66:e0:ee:57:b9:70:8c:dc:
d2:ae:c6:48:e1:e0:e4:84:28:f4:2c:91:df:1a:46:
f2:6e:a9:64:a3:92:0a:50:70:47:13:19:44:09:96:
b8:a5:10:bc:d5:b9:b7:2f:96:86:40:b9:83:36:65:
7f:2c:95:f7:0c:63:47:dc:90:bc:1d:81:99:f8:a4:
1f:88:f8:44:cc:64:dd:b3:db:46:22:b5:81:96:d9:
4c:af:4f:f8:d8:06:c2:a2:0e:f9:ed:6f:6f:be:48:
84:93:71:a0:8b:b6:3d:2d:a3:a8:d2:a1:ac:a6:e0:
46:49:56:b9:2f:99:22:bc:77:2e:56:a1:c4:ca:4a:
7e:64:15:75:55:b9:e5:92:d4:72:5b:fb:74:61:98:
65:00:76:05:0f:4d:2e:a8:f4:81:e0:ec:ca:38:b3:
3b:43:3e:68:f1:ad:6b:8f:30:09:a2:0e:39:19:c9:
9c:fb:34:91:a5:89:35:24:8e:ae:27:bd:c6:d3:9d:
93:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B0:07:39:C3:89:AA:23:63:D4:4B:12:36:FA:28:44:63:B8:BF:10
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS43260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.96.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:f6:af:49:cc:71:7e:11:30:3d:28:52:5e:02:8a:f6:c3:01:
f6:2c:4d:6a:44:c5:5f:11:5d:4d:40:93:9f:46:31:88:eb:0d:
26:14:dc:75:6e:93:a0:93:d7:4b:db:da:8c:bf:ce:ae:79:5a:
f1:64:ef:13:07:1e:9a:dd:57:47:1c:29:ba:5b:e9:cf:05:0f:
a5:23:40:3d:e1:2e:dd:fc:e0:ee:c9:c1:0d:8d:a5:97:8a:7a:
f6:68:12:80:77:95:09:7a:05:07:62:bc:41:2f:50:44:49:24:
1d:2a:69:44:c1:df:49:b9:68:b6:b8:fa:75:e4:ac:75:b3:ae:
a1:3c:20:6f:2e:9f:28:43:83:1b:5a:d4:51:d4:fd:96:31:da:
63:ef:5d:b1:5f:ca:70:62:bb:e6:e9:8e:24:a4:9a:fc:99:7e:
ef:68:01:54:cb:7d:5e:4a:f8:65:28:9a:a6:dc:76:ca:d0:09:
db:c5:de:a7:39:a4:1a:5c:d0:81:48:6a:fa:01:a2:62:81:65:
50:1f:78:05:74:d8:a5:d9:a9:d4:a5:b9:35:aa:0f:bb:a5:bb:
2e:2a:71:4f:db:1e:1b:77:5b:fb:72:40:43:73:bc:e7:84:8d:
2a:86:24:ee:ae:27:18:f8:bd:5f:f9:44:60:d5:98:e7:2e:d6:
c3:14:09:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org