Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/BJX26iM23sT2BQorxcHoKlr4AFk.roa
File: BJX26iM23sT2BQorxcHoKlr4AFk.roa (raw, json)
Hash identifier: lFgTQ0wawk9vdLyN4oYgrhRWqI0jrhnADJoHsjirb40=
Subject key identifier: 04:95:F6:EA:23:36:DE:C4:F6:05:0A:2B:C5:C1:E8:2A:5A:F8:00:59
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 018AB85D4E53A7BA1F93E342EEBB4191C9B9
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/BJX26iM23sT2BQorxcHoKlr4AFk.roa
Signing time: Thu 21 Sep 2023 15:30:37 +0000
ROA not before: Thu 21 Sep 2023 15:30:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44837
IP address blocks: 5.59.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b8:5d:4e:53:a7:ba:1f:93:e3:42:ee:bb:41:91:c9:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Sep 21 15:30:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0495f6ea2336dec4f6050a2bc5c1e82a5af80059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:11:c4:22:4c:24:82:6b:77:5d:7e:3b:3d:
35:ff:3f:ab:48:3c:2f:7c:52:4c:8b:4e:b1:60:5f:
9e:c0:64:d0:f5:07:a3:db:92:6c:cf:97:d6:34:ea:
0f:7d:87:c6:ee:9b:cf:b9:e5:52:32:6c:44:1a:53:
25:fb:8d:61:d9:54:c1:3b:4d:d2:e4:ff:7b:48:3b:
68:d9:ec:ce:bf:b2:a3:6c:85:3e:d8:2f:64:fa:06:
6a:81:72:0e:51:ee:66:a9:0e:e3:26:e8:d8:f0:c4:
eb:93:b6:7e:6b:b1:31:af:8e:21:4b:45:f6:ba:13:
c2:08:96:f1:52:e7:21:38:90:b9:f2:5b:97:f7:69:
92:6e:4d:4c:d9:40:49:95:19:06:2a:6b:c6:79:d3:
ff:23:b3:7e:ef:41:1c:8b:3c:d9:83:ca:57:6a:13:
81:a3:f8:ca:e7:0b:51:94:99:54:30:01:23:4f:b8:
1c:1a:59:18:76:8d:51:2a:f5:02:05:56:d0:f0:33:
40:62:ad:57:5b:5b:df:cb:fb:12:14:b0:dd:dd:ef:
8b:66:6a:14:00:82:39:c1:7a:05:1a:a0:4f:62:6b:
c9:02:e7:b3:f7:b6:3b:c2:07:86:e9:12:6e:30:89:
97:1b:bc:6c:ec:89:90:af:19:32:36:87:7d:75:1b:
a2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:95:F6:EA:23:36:DE:C4:F6:05:0A:2B:C5:C1:E8:2A:5A:F8:00:59
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/BJX26iM23sT2BQorxcHoKlr4AFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.243.0/24
Signature Algorithm: sha256WithRSAEncryption
59:5c:bc:7a:5c:1e:84:4b:26:99:b8:b3:cd:15:14:57:c4:df:
d3:5f:2a:05:47:a8:18:ed:a7:e3:16:0a:2c:ec:ff:5b:8d:ab:
b9:df:1e:76:0c:dd:0d:67:7c:de:ae:40:92:a4:3e:93:21:a6:
1d:4b:90:8e:3b:41:44:30:34:d5:a5:93:51:d5:4d:94:be:2b:
3a:7e:cd:95:05:3c:f2:e9:ce:ed:b0:05:25:16:9f:9e:55:31:
d5:d6:65:f6:b6:e3:56:33:e5:75:d2:03:9d:68:56:44:16:9f:
b6:75:ba:e8:19:ae:48:ff:3e:96:47:f7:57:5b:56:39:48:43:
27:32:8a:fd:38:ed:9a:27:eb:e8:33:74:61:2a:11:1f:77:f5:
9b:93:67:f0:ec:20:78:f4:98:3d:e3:d2:e3:4d:a2:d9:55:fd:
76:29:19:80:af:33:47:3a:46:25:6b:ac:99:49:57:d4:12:68:
ad:6c:87:9f:b1:c4:57:1c:72:31:f8:0c:87:0d:dd:f1:20:b9:
a3:f5:85:39:90:12:3e:10:63:ec:89:39:00:91:ce:bf:da:c2:
fb:e2:63:00:23:b6:a8:2a:1a:c9:8f:22:a8:71:07:9c:2b:aa:
bd:c9:29:52:a0:53:77:eb:f7:e3:86:c8:cf:8f:d7:11:a9:fb:
35:b0:be:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org