Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS57974.roa
File: AS57974.roa (raw, json)
Hash identifier: J3n/KrQE4UzH9Q6Y/5DHVKRMwRE1SW4jcko+LZRJmKM=
Subject key identifier: 2B:7B:61:A7:05:29:49:F0:47:76:1C:AE:5B:50:82:B2:1A:E7:83:FB
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 1A14A9B7D0C71214BB770BA4533626E8DC5DAB66
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS57974.roa
Signing time: Wed 11 Oct 2023 10:48:54 +0000
ROA not before: Wed 11 Oct 2023 10:43:54 +0000
ROA not after: Wed 09 Oct 2024 10:48:54 +0000
asID: 57974
IP address blocks: 141.11.220.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:14:a9:b7:d0:c7:12:14:bb:77:0b:a4:53:36:26:e8:dc:5d:ab:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Oct 11 10:43:54 2023 GMT
Not After : Oct 9 10:48:54 2024 GMT
Subject: CN=2B7B61A7052949F047761CAE5B5082B21AE783FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:36:78:21:09:19:71:3e:54:a2:7c:86:45:
80:35:e9:2f:07:c4:c6:98:17:c9:ee:5e:83:41:64:
24:c6:65:ed:6f:d9:34:94:28:05:d8:62:51:c7:a5:
63:8d:23:b2:2c:30:7e:ea:26:f9:55:96:8d:cf:55:
7a:50:ff:88:50:8a:7b:83:0b:4f:d6:3c:f1:c8:12:
f8:54:f4:cc:9f:ae:89:f6:c3:f1:69:3d:df:b8:b6:
a4:8d:22:6f:6c:ce:ac:f8:3f:ef:eb:2e:77:6d:1f:
d5:f8:fd:11:da:ba:e1:f1:ad:74:b5:4d:d1:61:a1:
5d:9f:56:48:97:39:4b:d8:78:c1:8b:df:db:3a:9c:
82:a4:82:b5:cc:74:28:8d:db:5d:15:29:5e:c6:a9:
04:c7:52:73:52:ec:9d:e1:7d:9e:fa:35:4e:ec:81:
b8:f9:a0:fc:20:15:ea:87:ad:96:c5:40:04:d5:66:
c3:78:32:04:34:ec:ad:42:28:02:6a:69:d9:04:c7:
3d:a0:66:65:ac:ae:90:97:cd:1e:50:39:bb:fa:76:
95:7f:f0:a0:69:c3:39:a3:19:cf:a9:89:42:3e:9c:
b9:e1:78:02:a5:f4:fc:d8:52:dd:67:a5:f6:88:74:
43:a9:61:2c:9e:f2:95:85:95:b3:76:a9:4b:d6:3c:
48:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:7B:61:A7:05:29:49:F0:47:76:1C:AE:5B:50:82:B2:1A:E7:83:FB
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS57974.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.220.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:ea:78:dd:65:7d:82:c9:74:cc:a7:a5:4b:7e:fe:0b:46:1c:
87:cb:7f:e6:83:cd:cd:0c:f3:d8:1d:b5:c5:98:a8:36:42:17:
b8:1e:1a:85:bb:cd:8f:74:02:c0:f5:27:5e:e7:0e:76:42:ef:
55:11:f6:f2:ab:36:34:9a:21:cf:6e:8d:47:6f:3d:19:11:78:
44:81:d8:5e:e1:5b:1f:fc:4a:2c:d4:d7:3d:6e:d1:14:79:e4:
2f:63:23:cb:2a:30:5f:72:36:fb:a2:a8:67:28:ec:24:ab:c7:
1e:71:43:14:9d:ce:5a:68:66:af:16:66:73:e9:3b:90:0d:ac:
56:de:a7:eb:75:86:dc:03:da:5a:8c:72:6d:07:08:d8:ae:da:
cc:fe:3f:f7:63:33:89:48:18:1b:08:84:0a:a5:1a:e8:dd:05:
28:1b:d7:94:d6:26:3d:2a:33:9d:b7:8d:ba:9a:8d:e9:b4:67:
ee:12:30:35:22:4e:ca:16:99:44:06:80:7a:cc:7d:cb:32:0f:
d4:bb:b2:76:19:64:ec:d1:b7:a4:a0:e7:29:26:3d:b1:4c:1e:
6a:76:36:4f:3d:45:41:00:b1:86:3b:2c:35:ca:0f:e5:98:e9:
64:4c:c1:30:d8:80:82:48:19:99:1a:ee:bb:18:7e:b7:4a:ad:
5e:7f:cb:87
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUGhSpt9DHEhS7dwukUzYm6Nxdq2YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yMzEwMTExMDQzNTRaFw0yNDEwMDkxMDQ4NTRaMDMxMTAvBgNV
BAMTKDJCN0I2MUE3MDUyOTQ5RjA0Nzc2MUNBRTVCNTA4MkIyMUFFNzgzRkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC76zZ4IQkZcT5UonyGRYA16S8H
xMaYF8nuXoNBZCTGZe1v2TSUKAXYYlHHpWONI7IsMH7qJvlVlo3PVXpQ/4hQinuD
C0/WPPHIEvhU9Myfron2w/FpPd+4tqSNIm9szqz4P+/rLndtH9X4/RHauuHxrXS1
TdFhoV2fVkiXOUvYeMGL39s6nIKkgrXMdCiN210VKV7GqQTHUnNS7J3hfZ76NU7s
gbj5oPwgFeqHrZbFQATVZsN4MgQ07K1CKAJqadkExz2gZmWsrpCXzR5QObv6dpV/
8KBpwzmjGc+piUI+nLnheAKl9PzYUt1npfaIdEOpYSye8pWFlbN2qUvWPEg3AgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUK3thpwUpSfBHdhyuW1CCshrng/swHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNTc5NzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGNC9ww
DQYJKoZIhvcNAQELBQADggEBAKTqeN1lfYLJdMynpUt+/gtGHIfLf+aDzc0M89gd
tcWYqDZCF7geGoW7zY90AsD1J17nDnZC71UR9vKrNjSaIc9ujUdvPRkReESB2F7h
Wx/8SizU1z1u0RR55C9jI8sqMF9yNvuiqGco7CSrxx5xQxSdzlpoZq8WZnPpO5AN
rFbep+t1htwD2lqMcm0HCNiu2sz+P/djM4lIGBsIhAqlGujdBSgb15TWJj0qM523
jbqajem0Z+4SMDUiTsoWmUQGgHrMfcsyD9S7snYZZOzRt6Sg5ykmPbFMHmp2Nk89
RUEAsYY7LDXKD+WY6WRMwTDYgIJIGZka7rsYfrdKrV5/y4c=
Generated at Mon Nov 13 10:18:13 2023 by rpki-client on console-fra.rpki-client.org