Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS60647.roa
File: AS60647.roa (raw, json)
Hash identifier: CaLLo3Sgz9jfg3qpYGREhB9GDYDl7njIzJOQoCrKoyk=
Subject key identifier: DD:98:58:2E:3D:A2:A0:DF:73:6B:C8:E2:C1:18:A9:02:F9:C1:DF:B5
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0CE8AB884F00908CD63A1A40C5A6FB8C7A3A9801
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS60647.roa
Signing time: Thu 11 Jul 2024 08:04:26 +0000
ROA not before: Thu 11 Jul 2024 07:59:26 +0000
ROA not after: Thu 10 Jul 2025 08:04:26 +0000
asID: 60647
IP address blocks: 141.11.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 10:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:e8:ab:88:4f:00:90:8c:d6:3a:1a:40:c5:a6:fb:8c:7a:3a:98:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jul 11 07:59:26 2024 GMT
Not After : Jul 10 08:04:26 2025 GMT
Subject: CN=DD98582E3DA2A0DF736BC8E2C118A902F9C1DFB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:88:bf:28:bf:d9:53:85:41:1b:65:c6:3d:
cf:e6:80:12:b7:5c:a4:59:8a:22:c5:b9:d7:ce:01:
19:88:aa:fe:39:2a:c1:d7:11:a2:8c:16:7d:56:2a:
f7:eb:37:1d:2b:62:e4:3e:26:96:c6:f8:f8:a7:c0:
55:88:54:48:82:1e:62:d7:b6:69:bc:80:43:a9:9d:
d7:44:bd:82:35:11:2b:ea:68:6a:f7:fb:38:ec:1d:
e9:f9:ea:42:ba:fb:65:10:66:ae:bd:41:6a:f1:6d:
f6:88:bd:05:18:fd:db:35:96:c9:12:8b:a0:00:4d:
af:91:f8:23:bc:dc:e5:84:6c:b4:b7:08:fa:df:16:
e6:cd:f9:be:8a:b2:d8:87:51:de:d3:1d:75:66:9f:
aa:1c:89:7a:3d:9f:d4:dc:fb:09:ac:39:2a:3b:37:
29:f2:81:5a:28:2a:0b:60:67:d5:1f:ad:ce:f4:26:
01:e7:f9:7c:06:54:71:11:48:11:9c:5d:74:64:20:
c0:69:75:87:80:58:84:08:86:19:ce:33:56:b4:98:
27:bd:82:cb:1d:25:d5:9b:20:cc:d5:66:c8:ab:93:
1a:42:7c:24:f3:6b:2a:d1:5a:15:53:60:87:19:0e:
83:60:ce:9e:c1:b3:db:76:5b:9d:66:99:a0:ae:02:
a5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:98:58:2E:3D:A2:A0:DF:73:6B:C8:E2:C1:18:A9:02:F9:C1:DF:B5
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS60647.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.48.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e3:f5:17:df:24:46:7b:62:68:1d:58:0c:86:bb:0b:e0:53:
4b:12:4e:34:25:a0:91:74:65:9f:fd:6f:d0:a8:4b:ff:b9:83:
fd:5a:ab:35:61:41:22:19:e1:1a:fc:7c:2a:24:62:db:e1:38:
5b:83:00:a2:05:17:ef:b7:83:91:86:25:a2:13:62:5a:47:c3:
0e:50:d7:27:c1:b8:17:63:22:0e:72:45:33:31:a5:d8:3d:97:
e9:81:54:31:aa:eb:92:99:0e:af:a7:8f:06:5b:0a:21:49:9e:
1f:89:a2:d8:99:d0:9d:53:0c:df:2c:cf:fa:e7:98:87:1a:ae:
12:59:1a:3f:9e:09:6c:55:b9:0d:ff:d0:f6:95:71:02:9e:d2:
b8:f7:3e:00:c4:e4:56:4b:19:89:54:46:ac:d4:a7:ef:e1:d3:
5e:b9:0c:9a:63:5c:08:b1:23:5a:5e:cd:84:ce:64:c1:de:d1:
8e:72:4f:62:4f:12:17:1a:00:f9:7a:6f:a8:a4:85:0a:57:46:
66:83:33:5f:c8:ab:62:f7:db:81:91:09:ab:1d:ba:62:7f:e6:
c9:86:63:59:32:14:f6:f9:2c:66:f7:1c:e2:b8:f6:75:1a:f0:
07:8c:bf:c8:0c:5c:ca:20:1b:c7:77:b5:6e:72:20:87:e5:1c:
99:39:0d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:40:41 2024 by rpki-client on console-ams.rpki-client.org