Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/KMkLnPuLoyuGwQIcmGZNmPc8J3k.roa
File: KMkLnPuLoyuGwQIcmGZNmPc8J3k.roa (raw, json)
Hash identifier: suJ1PYd0ruVO8h8GGS7v5KouSoNRyWajdVmD8caXqp4=
Subject key identifier: 28:C9:0B:9C:FB:8B:A3:2B:86:C1:02:1C:98:66:4D:98:F7:3C:27:79
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0189E466515C445C608EC33E3F082274F6E9
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/KMkLnPuLoyuGwQIcmGZNmPc8J3k.roa
Signing time: Fri 11 Aug 2023 11:40:57 +0000
ROA not before: Fri 11 Aug 2023 11:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212271
IP address blocks: 5.59.248.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:66:51:5c:44:5c:60:8e:c3:3e:3f:08:22:74:f6:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Aug 11 11:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28c90b9cfb8ba32b86c1021c98664d98f73c2779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ad:e7:02:ce:c3:c3:33:d9:58:19:c4:17:ce:
bd:8c:c9:f5:5c:46:53:a0:39:ae:f8:3c:ff:9f:bd:
12:9d:be:aa:b4:3d:04:d0:b5:8a:e6:73:40:ea:9b:
58:20:bb:b7:ed:06:3f:23:fd:90:a8:54:97:cd:85:
53:2a:e7:02:6a:2a:d5:aa:27:99:11:6d:8d:ab:0f:
6e:ee:46:c5:94:f5:d2:b1:1a:0d:00:28:76:65:bb:
76:4e:e2:f8:7f:34:ed:d7:32:6f:ca:97:21:50:46:
8b:3a:ea:86:4d:ea:35:32:ed:d3:51:e0:39:0d:c2:
d8:f6:92:ea:45:cf:b2:fc:35:35:1b:aa:9e:61:c3:
73:e4:cb:3e:21:ee:9c:30:9a:18:9c:61:01:38:18:
9b:cf:52:15:cf:63:56:c8:d8:33:87:6c:b5:ea:96:
1a:67:78:69:5b:c7:de:cc:ca:99:72:13:ee:a2:b0:
fb:b2:3f:7e:6c:61:86:4b:2c:a3:fc:c6:bc:56:a8:
ef:20:7f:e9:a3:31:08:07:cd:33:dc:e9:8a:a4:1c:
69:1e:44:79:65:9d:aa:7f:7d:aa:17:d4:47:db:fc:
22:ea:36:c8:1b:8d:2a:84:f7:bb:94:c5:b7:55:50:
3a:8a:6d:a5:c8:f8:3f:9c:e6:71:13:6f:85:51:ec:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C9:0B:9C:FB:8B:A3:2B:86:C1:02:1C:98:66:4D:98:F7:3C:27:79
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/KMkLnPuLoyuGwQIcmGZNmPc8J3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.248.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:32:ad:83:31:a9:c3:ad:8f:3d:a1:5a:35:4e:d5:51:3c:77:
31:ba:85:6f:a1:cf:17:03:66:88:b8:75:bf:e7:b0:91:79:ed:
09:65:b2:24:85:9b:51:ec:9b:b2:56:96:bf:9c:66:f0:8f:67:
5e:a4:84:8e:72:9e:83:88:f1:9a:60:2c:3b:48:48:80:cb:93:
fe:7d:c3:74:8c:72:56:c1:c3:3c:48:f1:47:03:8b:05:98:e4:
09:4a:3b:6b:a3:fe:b6:84:ad:27:c3:6f:12:f3:56:44:7b:ff:
40:92:73:0d:b7:4a:ac:70:49:32:af:42:c4:9b:81:cf:98:8b:
5c:c4:14:c3:ff:ef:0e:c7:b8:78:76:fc:78:79:5a:a7:8f:46:
a4:c6:ba:fa:51:c7:48:fe:d8:49:11:30:16:99:03:cb:13:52:
04:54:6a:74:2d:23:b7:2f:2e:48:42:57:84:e1:cf:38:36:c0:
95:61:ed:f6:43:71:e4:93:b1:bc:92:a7:be:79:3f:da:b0:df:
1b:3e:37:5a:cb:f2:5f:9d:17:4a:7e:19:e7:bb:9b:41:41:15:
4e:82:a8:36:d7:9e:6c:70:1f:d6:7b:ae:b6:66:1d:1e:76:71:
d0:95:0e:92:85:cf:fc:ef:a5:10:ae:5a:49:41:71:ff:fc:cb:
41:e6:12:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org