Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/4BTZVUGOJDZD1w19k_lpDLJGCw4.roa
File: 4BTZVUGOJDZD1w19k_lpDLJGCw4.roa (raw, json)
Hash identifier: /4WyZStm+WuasvTLrVlPpToERYtIs3gOGFVCXNlp3F4=
Subject key identifier: E0:14:D9:55:41:8E:24:36:43:D7:0D:7D:93:F9:69:0C:B2:46:0B:0E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019043873E3688BC1E0B42BB1D4BE9E1BB37
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/4BTZVUGOJDZD1w19k_lpDLJGCw4.roa
Signing time: Sun 23 Jun 2024 05:17:35 +0000
ROA not before: Sun 23 Jun 2024 05:17:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215343
IP address blocks: 2.59.252.0/26 maxlen: 26
Validation: Failed, certificate revoked on Tue 25 Jun 2024 03:19:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:43:87:3e:36:88:bc:1e:0b:42:bb:1d:4b:e9:e1:bb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 23 05:17:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e014d955418e243643d70d7d93f9690cb2460b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e2:4a:9e:46:20:c0:da:2d:a3:27:ec:cf:92:
a6:c8:46:4a:8d:d4:11:06:d4:67:3e:4a:c6:8e:7d:
e4:bd:35:af:12:92:82:fd:a9:7f:6f:ad:57:12:cd:
31:ad:20:fa:0e:36:95:a0:86:e1:c0:aa:9b:b0:ee:
a3:90:1c:6d:ea:81:43:ae:b2:66:5f:da:1b:65:b2:
01:e4:5c:b0:15:2f:ec:f7:8b:a8:03:48:ce:40:5a:
80:7c:13:5e:0a:ab:19:f0:9d:a1:a8:0d:cc:9b:cc:
99:6c:23:d7:9c:d8:b0:25:8c:7c:39:53:dc:aa:0c:
6a:eb:9c:11:d9:bb:99:df:07:10:72:16:ca:01:4c:
fa:17:93:41:36:4b:71:28:3b:b6:92:4a:9c:76:09:
bb:ef:dd:6c:fc:c4:87:e1:4b:84:88:43:cd:81:b2:
1a:4e:95:07:45:60:69:29:f2:f3:a3:e7:d5:d8:bb:
fe:11:41:17:9f:8e:4a:21:28:37:38:4a:56:ce:14:
d9:a9:b5:ed:48:6e:74:76:5e:1b:9c:1d:b7:24:4b:
df:f8:a3:e9:aa:13:4a:6d:48:54:22:51:00:ec:d0:
c8:a3:1a:32:0a:5a:c3:7e:8c:ca:5e:b7:68:7f:d7:
f7:a2:2c:f1:90:da:ef:01:3d:db:9b:72:13:4d:57:
7e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:14:D9:55:41:8E:24:36:43:D7:0D:7D:93:F9:69:0C:B2:46:0B:0E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/4BTZVUGOJDZD1w19k_lpDLJGCw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.252.0/26
Signature Algorithm: sha256WithRSAEncryption
68:53:fe:b5:49:3a:b1:ea:dd:5a:0e:4a:0c:0a:fc:75:fa:b5:
17:da:6a:79:9a:97:21:0c:8b:b9:b1:22:03:95:3e:9f:93:1c:
37:1d:00:73:78:45:a0:bc:b5:a7:37:14:4d:fe:71:a1:f7:dc:
69:57:61:f6:c4:d7:e8:67:a2:e7:44:e0:4b:c2:b5:e9:12:f3:
9c:19:96:6e:86:8e:30:6b:47:60:41:fc:23:6a:81:25:30:45:
b1:50:94:ce:7b:30:d7:c3:ba:73:1b:3c:dd:7c:a0:e1:e0:45:
44:28:52:b6:ab:d8:51:83:1a:27:6a:60:c6:34:0a:11:e2:4c:
82:35:fe:73:cc:e7:e2:c6:cc:76:d2:c0:e3:10:b6:21:7e:f8:
18:bb:43:0e:1a:46:d7:16:88:0d:97:22:c1:02:56:73:bc:00:
b2:79:92:04:31:0e:17:b1:c8:04:73:a8:95:d3:86:95:22:a2:
1d:04:1d:2f:d9:20:d8:6d:2a:71:c9:5c:13:ed:d9:e5:1e:08:
6a:91:3b:a4:16:92:d3:82:bf:3f:45:5d:89:7a:1c:ef:5b:e5:
bb:ad:3d:0c:0f:c5:dc:c5:a8:ce:b0:8f:f2:84:bb:c8:75:c5:
10:19:63:10:e6:7f:c8:aa:a2:d4:09:77:9e:a9:03:82:1a:8d:
8c:04:95:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 06:21:35 2024 by rpki-client on console-fra.rpki-client.org