Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS54252.roa
File: AS54252.roa (raw, json)
Hash identifier: 9fWItEnhk49rU5foBR+eQTWt9oti5MYthoa3Gn9V9os=
Subject key identifier: 35:E4:E7:CC:DD:0B:0A:DB:04:9E:FE:FD:48:7F:2A:50:EE:21:5B:B4
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 734696F4326B7DF1B6B96B64A39D7E79F342F603
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS54252.roa
Signing time: Tue 17 Sep 2024 12:43:19 +0000
ROA not before: Tue 17 Sep 2024 12:38:19 +0000
ROA not after: Tue 16 Sep 2025 12:43:19 +0000
asID: 54252
IP address blocks: 141.11.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 00:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:46:96:f4:32:6b:7d:f1:b6:b9:6b:64:a3:9d:7e:79:f3:42:f6:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Sep 17 12:38:19 2024 GMT
Not After : Sep 16 12:43:19 2025 GMT
Subject: CN=35E4E7CCDD0B0ADB049EFEFD487F2A50EE215BB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:25:fa:6a:aa:7d:6a:11:54:18:5f:4d:85:13:
64:a4:9c:a2:eb:2a:13:96:16:aa:93:dc:c3:68:f7:
e9:59:31:10:80:30:b9:14:74:b6:4f:27:08:a1:d9:
41:5a:96:22:bd:b9:2f:eb:33:8c:b4:85:34:cb:18:
a4:21:54:82:f1:8c:33:a9:e6:7d:8b:26:4c:1d:47:
3a:78:7e:f9:0c:64:4a:cb:3b:65:f4:94:4f:5b:f6:
f3:0c:71:8c:c3:7f:c6:b5:16:e6:de:d6:2f:b8:fa:
fe:c3:97:08:15:a2:68:cc:62:e5:c1:b5:88:f1:01:
84:2f:cf:05:ee:ef:b6:ae:d1:86:c7:f1:96:44:42:
c2:dd:aa:8d:9b:25:a5:a6:c6:a7:24:a0:ac:82:01:
03:7f:1f:05:6a:0f:5c:c6:b4:7c:21:d5:56:61:de:
d5:00:b0:40:00:e8:c4:6f:f5:60:8c:3a:3b:c0:20:
d6:8b:b3:2e:1d:f2:32:30:cc:13:89:3a:d3:7f:a6:
6e:c3:ae:83:0a:a4:81:5f:78:25:54:05:03:0a:b3:
17:74:69:d5:44:6f:c5:51:a1:df:23:d8:82:35:e8:
9d:97:1b:70:a2:6d:62:24:90:17:04:a1:3a:07:5a:
11:17:59:80:79:18:33:fe:8e:d3:e3:ba:ac:4d:9a:
6f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E4:E7:CC:DD:0B:0A:DB:04:9E:FE:FD:48:7F:2A:50:EE:21:5B:B4
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS54252.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.39.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:40:4b:80:d3:35:91:8e:9c:85:61:09:26:86:fe:b7:e7:11:
9d:4f:c5:02:4c:a1:cb:54:94:3c:42:db:cd:d1:de:62:ce:d7:
eb:36:87:0c:4a:9a:f5:99:bb:32:94:59:bf:0a:6a:ed:4a:42:
d5:93:ee:cd:a0:26:3a:fe:7e:81:bd:31:f7:88:4e:6a:dd:b9:
5f:c9:1a:b8:bd:dc:54:e2:d4:de:75:f7:75:95:7e:f7:83:20:
9d:66:df:dd:08:cc:88:56:ca:65:3a:49:c1:b1:47:18:7f:73:
cf:1a:d0:71:9a:b1:c4:dc:a6:99:bc:fb:37:b6:25:7f:43:0c:
14:c1:e3:07:37:e8:48:ad:76:fa:75:45:b8:a5:b0:58:86:d0:
45:79:31:86:6d:31:36:3b:00:d5:05:98:57:b4:19:29:7e:68:
11:2c:17:1a:d8:2a:9d:3e:bf:4f:80:61:83:71:2b:08:76:4c:
e5:a6:47:8e:a7:35:0c:47:5d:5a:15:7f:cc:eb:4c:c5:a5:8d:
bb:df:b0:4a:ce:14:97:e1:d4:20:d0:d2:f0:bf:c8:df:f7:c3:
35:92:2f:a2:91:9c:f1:f7:bb:19:4d:e3:36:1b:31:d9:0f:3b:
82:2a:23:51:8c:3e:b9:50:30:fb:83:59:5b:e6:e4:41:d8:16:
cc:94:81:c2
-----BEGIN CERTIFICATE-----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Generated at Fri Nov 15 03:17:28 2024 by rpki-client on console-fra.rpki-client.org