Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa
File: AS58212.roa (raw, json)
Hash identifier: QlwFRejyqhJM/qFswiesWc6f3ftOgg64AzbIolrzmIE=
Subject key identifier: 62:81:44:1F:26:16:7C:C5:8D:59:E5:19:73:1F:32:2B:F3:88:C9:9A
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 277475081F34A25389DCB693FE0A1B60A8F7ECBE
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa
Signing time: Thu 02 Mar 2023 13:30:04 +0000
ROA not before: Thu 02 Mar 2023 13:25:04 +0000
ROA not after: Thu 29 Feb 2024 13:30:04 +0000
asID: 58212
IP address blocks: 141.11.224.0/23 maxlen: 24
141.11.226.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:74:75:08:1f:34:a2:53:89:dc:b6:93:fe:0a:1b:60:a8:f7:ec:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Mar 2 13:25:04 2023 GMT
Not After : Feb 29 13:30:04 2024 GMT
Subject: CN=6281441F26167CC58D59E519731F322BF388C99A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f4:0c:ce:09:09:c7:ac:05:9f:55:d5:1e:24:
55:d6:b0:c6:b1:d9:7c:0a:5d:2c:b7:34:e6:7c:36:
cc:b7:ba:db:4b:d3:05:01:ba:21:1f:70:a3:9e:55:
17:7d:0c:c9:09:68:19:a5:e0:84:b7:09:0e:82:20:
bb:f9:5f:e8:e2:7f:c9:1e:bc:89:4c:67:21:ed:95:
a2:0c:91:05:67:b5:20:82:c4:49:c6:33:6b:e4:89:
0a:02:d2:c2:a5:c6:af:c4:cc:67:f3:f8:55:10:c7:
37:74:65:e5:51:fd:2f:6a:32:82:a9:24:93:de:bf:
dc:ba:24:32:90:5d:c1:1a:22:ea:23:9c:72:d1:90:
7f:4f:bd:15:a3:2c:2d:fe:b6:7b:b9:60:79:46:78:
d4:99:2b:2d:af:85:a1:24:04:e6:66:ac:37:f5:16:
9f:f8:42:e9:7a:08:52:ec:bd:6a:b8:c4:c9:2c:51:
04:06:a3:b1:fe:3c:ac:59:28:1e:72:98:c8:4e:65:
18:03:0d:7b:06:b7:73:75:f4:3e:55:de:f4:70:13:
9e:25:6b:05:0a:41:e5:18:be:38:bd:fa:c1:49:23:
d2:b5:3a:fa:af:5a:a6:68:2f:c8:f2:c2:a9:bf:06:
22:05:95:40:91:92:aa:e4:e1:c3:64:7d:05:a7:ef:
d0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:81:44:1F:26:16:7C:C5:8D:59:E5:19:73:1F:32:2B:F3:88:C9:9A
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.224.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:38:90:23:9d:19:f7:a2:be:e6:1e:34:05:63:bd:79:b9:a7:
b9:57:90:c9:98:e8:41:17:66:e7:9f:c4:22:24:95:a8:02:51:
1c:9e:28:af:47:6a:91:d6:fb:fb:4b:88:30:96:19:db:d5:a7:
f9:e9:0d:55:51:66:22:55:cf:c7:aa:fa:2f:13:2c:10:fb:cf:
cf:7d:71:39:0f:63:b7:81:69:fd:d9:45:d8:34:b2:e0:27:e5:
63:e1:bc:16:da:b3:73:e5:d1:5c:a1:3e:2d:73:93:b0:0e:ae:
3b:23:bb:60:fe:1b:81:d6:4f:4d:bb:ae:42:65:f1:d1:a8:ce:
02:d3:a3:0c:38:30:34:1e:1a:df:a2:fc:e8:30:1c:a9:4b:e3:
8a:2c:8a:4c:7b:76:d9:d2:a1:ea:9b:53:64:9e:53:65:a7:33:
60:83:b2:02:32:97:eb:d7:b5:02:08:7e:2c:38:ea:ca:fb:05:
8e:09:9d:e5:18:45:38:84:7e:fb:54:5c:eb:2d:f2:56:bf:f4:
3d:37:6c:4b:f9:5f:47:59:b1:71:1d:df:30:59:3d:e9:6d:ae:
67:ce:40:48:c1:77:59:1d:78:15:65:af:4e:2d:7f:2d:d3:ce:
e7:52:9b:4c:c5:1e:b7:53:35:93:71:cc:5f:dd:91:d6:a0:8d:
72:bf:4e:cb
-----BEGIN CERTIFICATE-----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Generated at Thu Nov 2 00:35:01 2023 by rpki-client on console-fra.rpki-client.org