Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/VLDNKtswE6XLvH1TGuvXtY66tEM.roa
File: VLDNKtswE6XLvH1TGuvXtY66tEM.roa (raw, json)
Hash identifier: 4UFynn4P9RocsrkEx7cEJuwxB253U4zf9POBA93f6rM=
Subject key identifier: 54:B0:CD:2A:DB:30:13:A5:CB:BC:7D:53:1A:EB:D7:B5:8E:BA:B4:43
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 01856E6FAEEB52ABFBA3C8B5202051014373
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/VLDNKtswE6XLvH1TGuvXtY66tEM.roa
Signing time: Sun 01 Jan 2023 17:44:51 +0000
ROA not before: Sun 01 Jan 2023 17:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212109
IP address blocks: 5.59.182.0/24 maxlen: 24
5.59.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:ae:eb:52:ab:fb:a3:c8:b5:20:20:51:01:43:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 1 17:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54b0cd2adb3013a5cbbc7d531aebd7b58ebab443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a7:f5:49:d5:22:58:e1:21:19:7d:cf:74:d3:
08:87:69:05:64:36:bd:80:cd:b8:43:5b:25:6d:da:
62:d4:12:cc:00:66:8f:3f:17:ba:53:e9:e2:a8:71:
be:04:87:20:f2:57:2c:54:94:46:69:fe:7f:7c:b9:
db:9f:8f:31:25:ee:c0:8a:e3:5f:d3:c5:18:46:50:
a3:3f:38:cf:c2:1d:b1:3b:87:6e:d8:06:5b:90:1b:
a1:55:d9:79:d5:ff:f8:1d:f8:1a:41:c5:d8:ca:29:
b4:78:63:d7:a6:d9:8b:5a:23:e5:1e:3f:b1:18:1f:
30:ff:2b:83:70:8c:ce:f5:3c:8c:d0:e0:7e:bf:c0:
7f:09:11:8c:ab:a0:90:9b:3f:e8:5a:d0:15:28:b4:
86:e1:08:0d:07:47:81:e7:83:fc:c3:6c:80:e4:35:
94:79:be:b0:01:95:92:94:bd:85:2c:42:3d:25:e1:
87:67:6b:e9:68:91:06:91:09:90:0e:ea:32:77:74:
59:e3:20:2d:66:f2:22:50:79:d5:46:33:10:d7:ef:
d2:62:17:35:39:a6:4e:ce:73:13:55:2a:b5:f1:03:
6c:fb:69:79:8d:ba:bb:10:13:a2:14:3c:26:e2:e1:
7d:e8:28:96:b3:d9:44:b9:51:84:65:d9:07:af:48:
12:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B0:CD:2A:DB:30:13:A5:CB:BC:7D:53:1A:EB:D7:B5:8E:BA:B4:43
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/VLDNKtswE6XLvH1TGuvXtY66tEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.182.0/24
5.59.241.0/24
Signature Algorithm: sha256WithRSAEncryption
93:4d:7f:b3:22:a6:e5:2b:64:64:32:66:e1:3a:36:5c:96:2d:
e7:b4:65:0b:cd:ac:ff:83:e8:07:91:ca:34:a9:b3:1e:ce:89:
c0:d4:25:c3:e1:2b:aa:e3:9f:29:f3:e7:b7:c0:9a:91:2c:52:
cb:cb:08:81:69:ae:b4:6a:25:7c:ea:87:eb:77:72:04:97:73:
79:2a:81:d3:0d:45:70:16:b1:10:24:c8:68:3b:e4:63:7a:54:
9b:b9:c2:41:dc:55:85:6c:f5:c0:dd:ab:a1:9a:4a:48:ae:82:
66:eb:51:5e:50:9c:af:11:d0:f1:8b:51:aa:0b:c3:0c:b5:14:
f9:ce:62:e7:ea:35:ba:ec:86:3b:27:4e:e3:f5:8c:57:cd:c0:
93:06:62:de:53:fd:37:40:99:29:88:c8:f0:87:ab:95:3e:6e:
a4:9e:5d:db:03:5a:cb:e6:d6:87:d9:b9:0d:d3:fc:b5:d1:ec:
5f:c1:84:a2:1f:7c:94:9c:1d:87:2c:a1:ad:b5:c8:30:a6:4d:
68:fe:04:41:d3:e4:e7:2c:98:e4:50:99:64:8a:f0:0f:06:69:
53:d1:0f:87:16:76:df:55:7e:81:0b:e4:0c:40:6f:7f:e6:d5:
95:33:83:11:a5:57:12:b3:3c:48:63:7a:dd:49:43:e8:f5:be:
35:93:91:3d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVub67rUqv7o8i1ICBRAUNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NDgxMTE5YWZlMWJmZjIyOWZhY2Q0ZWY5YzhjNjFiMGZh
YmVhZjIwHhcNMjMwMTAxMTc0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGIwY2QyYWRiMzAxM2E1Y2JiYzdkNTMxYWViZDdiNThlYmFiNDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6f1SdUiWOEhGX3PdNMIh2kFZDa9
gM24Q1slbdpi1BLMAGaPPxe6U+niqHG+BIcg8lcsVJRGaf5/fLnbn48xJe7AiuNf
08UYRlCjPzjPwh2xO4du2AZbkBuhVdl51f/4HfgaQcXYyim0eGPXptmLWiPlHj+x
GB8w/yuDcIzO9TyM0OB+v8B/CRGMq6CQmz/oWtAVKLSG4QgNB0eB54P8w2yA5DWU
eb6wAZWSlL2FLEI9JeGHZ2vpaJEGkQmQDuoyd3RZ4yAtZvIiUHnVRjMQ1+/SYhc1
OaZOznMTVSq18QNs+2l5jbq7EBOiFDwm4uF96CiWs9lEuVGEZdkHr0gSCQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFSwzSrbMBOly7x9Uxrr17WOurRDMB8GA1UdIwQY
MBaAFLlIERmv4b/yKfrNTvnIxhsPq+ryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAt
OWI5YmNlMTVlMGM2LzEvVkxETkt0c3dFNlhMdkgxVEd1dlh0WTY2dEVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAtOWI5YmNlMTVlMGM2
LzEvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABTu2AwQA
BTvxMA0GCSqGSIb3DQEBCwUAA4IBAQCTTX+zIqblK2RkMmbhOjZcli3ntGULzaz/
g+gHkco0qbMezonA1CXD4Suq458p8+e3wJqRLFLLywiBaa60aiV86ofrd3IEl3N5
KoHTDUVwFrEQJMhoO+RjelSbucJB3FWFbPXA3auhmkpIroJm61FeUJyvEdDxi1Gq
C8MMtRT5zmLn6jW67IY7J07j9YxXzcCTBmLeU/03QJkpiMjwh6uVPm6knl3bA1rL
5taH2bkN0/y10exfwYSiH3yUnB2HLKGttcgwpk1o/gRB0+TnLJjkUJlkivAPBmlT
0Q+HFnbfVX6BC+QMQG9/5tWVM4MRpVcSszxIY3rdSUPo9b41k5E9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org