Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/5hXtRn_Qemh6OtbWHjzNhIGyGJA.roa
File: 5hXtRn_Qemh6OtbWHjzNhIGyGJA.roa (raw, json)
Hash identifier: nMDeuDjySJamP4tD4frZNSr64+refBW4EhslmqKcXLs=
Subject key identifier: E6:15:ED:46:7F:D0:7A:68:7A:3A:D6:D6:1E:3C:CD:84:81:B2:18:90
Certificate issuer: /CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Certificate serial: 01922EB3CED3798FBECB5D7D37CA8F3523EC
Authority key identifier: 28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/5hXtRn_Qemh6OtbWHjzNhIGyGJA.roa
Signing time: Thu 26 Sep 2024 14:19:48 +0000
ROA not before: Thu 26 Sep 2024 14:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60446
IP address blocks: 2.59.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:b3:ce:d3:79:8f:be:cb:5d:7d:37:ca:8f:35:23:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Validity
Not Before: Sep 26 14:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e615ed467fd07a687a3ad6d61e3ccd8481b21890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f2:57:14:07:9d:4b:f2:90:d2:d6:49:e4:5e:
92:18:5f:44:de:2e:63:e3:18:cc:25:9c:c5:4f:3c:
fb:93:54:91:09:94:8d:66:ea:70:ce:6c:ec:23:d7:
b4:6a:9b:1b:1b:55:9f:29:59:2f:c1:93:c4:d2:a8:
d5:02:f0:da:8f:ec:e9:08:9c:08:ab:ba:1f:d7:37:
8d:62:2d:c2:3b:50:8e:95:1b:f9:94:21:d2:1e:3e:
dc:2b:bb:61:72:ea:e7:4b:2d:05:ed:60:c9:62:06:
39:10:70:65:73:4a:7d:27:4b:a0:7a:77:c5:f6:8f:
87:2b:55:52:84:0a:22:2d:0b:dd:3e:42:ef:a5:c5:
82:19:ac:79:1a:08:d4:e3:38:b1:d1:18:9c:62:05:
70:1c:0b:22:8e:30:ad:42:6a:b1:b6:e4:b6:c8:be:
2a:87:17:47:d8:b6:a5:bf:17:45:50:fb:5c:a9:95:
84:76:51:ab:45:78:41:f1:87:49:da:57:01:3c:9a:
57:8d:bb:ad:53:31:c1:3a:6f:05:d9:54:3f:0e:01:
4c:f3:d9:9d:64:04:e4:fd:09:a1:43:42:2a:d2:9e:
7c:0f:ea:b8:1b:75:02:cc:84:47:79:c1:9d:43:a7:
b6:f8:93:fd:07:09:4c:a7:e7:78:14:fc:19:31:30:
c7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:15:ED:46:7F:D0:7A:68:7A:3A:D6:D6:1E:3C:CD:84:81:B2:18:90
X509v3 Authority Key Identifier:
keyid:28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/5hXtRn_Qemh6OtbWHjzNhIGyGJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/KP1m5DoQRjOye6xTm5i9-Ov6ya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.119.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a2:54:2d:b2:cf:9f:0f:73:71:38:c2:60:29:18:96:52:e4:
77:20:3e:a5:ac:a8:d4:34:f7:e9:47:3d:cf:9b:cb:e8:18:b5:
8d:ec:b9:8d:2c:b4:36:6f:e1:c8:1e:76:71:8f:9c:05:7e:66:
db:c8:97:7c:06:15:15:a8:86:5f:30:3c:89:2d:9e:d5:81:c8:
21:d9:6b:6e:48:44:29:6a:ae:e1:13:4c:4e:1f:da:e6:d7:83:
80:b8:9d:bc:0d:5f:52:c3:0a:78:57:41:fe:b5:88:11:74:66:
c9:4e:02:9d:55:e9:b3:4b:1c:42:f9:07:1b:d2:92:57:0d:49:
f1:9b:08:29:6e:55:a8:58:bf:62:db:d9:06:5c:e2:49:cb:9f:
c3:1f:a9:7a:5a:82:bb:33:62:4e:06:03:62:21:5c:e4:e7:69:
64:d2:84:cd:3d:7c:9c:fd:f5:7d:ef:e4:ba:f0:00:6b:f3:ba:
8e:d9:d8:b3:05:99:12:f4:ec:0e:15:81:06:69:c2:d7:42:ff:
e3:3c:ae:60:69:a0:e0:c6:33:26:76:7b:9f:e0:9a:e6:9b:89:
98:a7:cd:f4:96:32:9f:86:0e:51:b7:a0:ee:5a:8d:e8:70:d6:
bc:73:dd:7a:70:ef:02:74:45:86:b8:4f:d2:b4:7f:72:ba:a5:
a3:49:3c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:43:01 2025 by rpki-client