Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS53243.roa
File: AS53243.roa (raw, json)
Hash identifier: z1KZqkpwCOLemREIkeDmJhncL4Az9fSsf/A4YMTt/nQ=
Subject key identifier: E5:C4:79:92:6D:B1:BB:45:A7:5E:50:89:B1:AD:37:EE:62:86:BE:E3
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 77373781DA983F4BFC25B30D367DDA77677E5DF4
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS53243.roa
Signing time: Fri 26 Jul 2024 14:26:34 +0000
ROA not before: Fri 26 Jul 2024 14:21:34 +0000
ROA not after: Fri 25 Jul 2025 14:26:34 +0000
asID: 53243
IP address blocks: 141.11.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 19:42:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:37:37:81:da:98:3f:4b:fc:25:b3:0d:36:7d:da:77:67:7e:5d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jul 26 14:21:34 2024 GMT
Not After : Jul 25 14:26:34 2025 GMT
Subject: CN=E5C479926DB1BB45A75E5089B1AD37EE6286BEE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:35:d5:b2:c8:a3:2c:0a:d3:2b:5f:ef:4b:7c:
d4:22:11:9a:e4:f2:31:72:24:78:7c:8d:33:71:dc:
92:97:93:7c:ef:e1:64:41:40:4a:7e:0f:b4:45:a0:
52:3c:03:5d:b2:66:87:95:6d:f4:40:9d:b6:6c:6a:
53:dc:7e:ba:8b:31:67:4d:0f:ae:cb:c7:9d:73:55:
56:76:fe:35:25:33:13:b3:43:57:e5:e0:f6:98:b5:
94:8c:f8:46:e2:18:49:fa:78:a9:1f:38:08:0c:85:
e4:8c:41:29:26:ba:07:d4:20:5b:9b:9d:84:f0:8e:
56:69:43:02:9f:e8:dc:ec:0c:91:cf:f1:76:98:ee:
17:21:64:37:1d:ba:d7:ec:4c:b2:6d:b6:ac:60:ac:
2d:d6:9c:00:bf:6d:8a:97:94:0b:0b:05:89:44:9d:
87:c7:b0:ff:14:76:44:85:14:61:6b:59:a5:0d:34:
ad:1b:86:59:53:80:5b:a4:96:a7:bf:ca:19:a0:34:
59:c4:6a:b9:ec:0e:2d:2f:d6:f2:07:f8:d4:20:e2:
18:7a:40:16:cb:64:f2:50:af:76:15:12:26:b9:9e:
5e:31:00:85:02:aa:40:34:88:b9:53:4d:32:50:3d:
1c:1f:fa:29:ca:66:93:ef:0c:6a:df:45:c6:da:dd:
88:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C4:79:92:6D:B1:BB:45:A7:5E:50:89:B1:AD:37:EE:62:86:BE:E3
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS53243.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.240.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:57:91:26:83:c3:18:8a:0e:06:07:af:55:eb:ac:b4:86:e8:
2a:1c:b2:08:e8:2f:5a:fb:42:38:ad:e5:f8:69:20:c1:fc:cc:
26:24:c9:36:78:ae:97:be:b4:a8:06:92:b4:b8:4a:bc:96:83:
d2:ef:2f:9b:9a:f4:94:e5:8b:9d:73:67:28:00:e2:55:c0:b3:
d2:78:2f:d3:21:0a:11:c4:f6:83:66:4e:dc:27:4e:12:4b:04:
fc:fd:85:31:e0:d6:9d:bf:df:21:82:8a:c7:a5:80:5e:56:84:
c5:71:1f:54:0a:a3:3a:b9:6f:bc:0f:e0:65:c7:56:ff:81:4d:
fe:b9:07:6b:09:84:3c:77:59:af:6b:02:0e:ad:b8:68:5b:49:
00:1e:d5:3c:2e:ea:39:b2:44:95:aa:49:44:bf:ad:f0:de:05:
73:4c:8d:dd:19:3c:b9:4d:75:25:ba:e6:eb:81:05:e8:d4:a4:
36:29:60:50:6a:f7:9f:81:8c:d1:ae:97:f5:20:ad:f9:80:f4:
1c:a8:ad:d8:50:7c:ec:8f:11:ac:5c:22:a2:81:c7:bc:8a:cd:
75:20:d6:54:e1:c7:44:a8:52:46:a8:53:c7:15:a9:99:3e:e1:
64:08:1d:6e:b0:21:72:61:70:f3:71:cc:b9:6b:7f:1c:72:00:
97:a8:11:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 21:00:55 2024 by rpki-client on console-fra.rpki-client.org