Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/CT35euhmN_U1a1ruzLIf1Zjw87k.roa
File: CT35euhmN_U1a1ruzLIf1Zjw87k.roa (raw, json)
Hash identifier: fRx+YlUX9AkRDMevqDtAuJK0dDt1w968gLymRWSUrRw=
Subject key identifier: 09:3D:F9:7A:E8:66:37:F5:35:6B:5A:EE:CC:B2:1F:D5:98:F0:F3:B9
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 018CC7945D490974EBB0B0A1B29100A787E5
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/CT35euhmN_U1a1ruzLIf1Zjw87k.roa
Signing time: Tue 02 Jan 2024 00:30:38 +0000
ROA not before: Tue 02 Jan 2024 00:30:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203324
IP address blocks: 5.59.238.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 19:24:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:5d:49:09:74:eb:b0:b0:a1:b2:91:00:a7:87:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 2 00:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=093df97ae86637f5356b5aeeccb21fd598f0f3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0e:ed:c9:f9:ab:05:3b:62:f2:5d:95:43:66:
75:d5:58:e7:d3:cb:35:6d:79:57:3d:ad:e4:80:14:
4f:da:34:f2:0e:5e:ce:b8:03:ba:e7:cf:4d:e8:a2:
95:cf:63:a9:a7:60:7a:f4:2d:55:af:6e:ab:a5:bd:
a5:b8:67:cf:0f:fb:4a:59:38:0c:1f:69:c1:4b:79:
15:99:86:75:32:2d:1d:a4:38:2b:4e:87:b1:c0:a3:
37:36:f6:9a:b7:2f:48:40:37:ee:2a:84:b2:63:da:
4e:8f:78:b2:29:e8:28:08:58:17:cb:0a:08:ac:f4:
39:55:dd:cc:ab:a0:02:bd:b7:fc:d0:f4:ce:9e:07:
73:35:32:c2:e8:39:73:58:bd:6c:1b:99:ba:2b:0b:
dd:9d:84:bc:cb:4c:08:2c:a0:30:4b:3c:8a:45:f4:
5c:b7:44:0a:53:40:38:f4:80:38:07:8e:db:5b:19:
f7:d1:84:2b:f5:3d:40:af:fd:1b:93:ce:96:1a:70:
60:a8:ad:63:61:02:d6:af:c2:59:b3:38:c2:21:b0:
fd:b5:89:14:c6:e6:17:35:ec:fe:87:6f:c9:86:86:
46:5e:59:a4:0f:fb:87:69:0a:ac:0e:8c:a2:3a:b3:
91:34:cc:34:67:f2:0a:84:60:4c:e2:cc:c9:26:90:
65:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3D:F9:7A:E8:66:37:F5:35:6B:5A:EE:CC:B2:1F:D5:98:F0:F3:B9
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/CT35euhmN_U1a1ruzLIf1Zjw87k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.238.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:9b:39:75:2a:7f:15:fc:fd:7a:b6:35:02:3d:f9:55:66:c2:
cb:3b:49:2d:c1:5b:fb:1e:e8:e1:d1:54:d0:35:39:0a:e7:53:
c9:c8:79:f2:ea:0c:81:b4:2c:bb:b3:3f:b4:ce:dd:10:a1:3c:
2b:42:89:0d:fa:76:fb:d6:ee:74:70:23:96:f3:c6:83:cf:27:
b1:07:6f:17:7c:e3:3a:5b:57:58:23:dc:db:d9:ae:75:78:24:
85:9f:d1:2d:2f:4a:af:a9:91:3e:11:b9:0c:a9:8b:02:73:f0:
2c:5b:31:57:e5:f2:da:2c:70:72:47:62:38:75:bd:f0:de:4d:
7b:13:73:93:24:bd:bb:01:68:52:d7:b4:ca:be:03:e4:15:d1:
bc:28:b9:74:70:5f:3d:71:c4:98:43:1d:54:b6:f2:05:c3:5b:
8f:4f:ef:34:7e:4f:73:95:ae:a1:84:fe:1a:6a:56:bf:28:5c:
a9:e7:0a:19:bc:0b:df:2f:f1:19:25:5e:25:11:65:7f:89:d4:
16:60:57:77:35:08:49:23:bd:4e:f2:fa:9c:12:09:be:2c:b8:
c9:07:08:ce:ba:d7:57:04:6b:c5:26:c5:7c:29:32:74:9b:c5:
cf:61:77:96:e8:21:15:3c:1b:63:5c:66:b4:96:22:7f:ab:ed:
16:39:50:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org