Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/X5GbAsY-IkWqcD_62-lhzb1BMeY.roa
File: X5GbAsY-IkWqcD_62-lhzb1BMeY.roa (raw, json)
Hash identifier: PocP9qDwOr9UnQWCHa5605bWNQS8YnTCkhfXV32Zxw4=
Subject key identifier: 5F:91:9B:02:C6:3E:22:45:AA:70:3F:FA:DB:E9:61:CD:BD:41:31:E6
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0188113200E13AEE5968B89AE1E19EBC6AB5
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/X5GbAsY-IkWqcD_62-lhzb1BMeY.roa
Signing time: Fri 12 May 2023 18:21:09 +0000
ROA not before: Fri 12 May 2023 18:21:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 5.59.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 18:22:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:11:32:00:e1:3a:ee:59:68:b8:9a:e1:e1:9e:bc:6a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: May 12 18:21:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f919b02c63e2245aa703ffadbe961cdbd4131e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:02:0c:53:35:d5:8e:3f:3f:f8:64:bf:e0:e8:
d9:54:52:0b:86:f4:a0:1d:22:88:fc:09:4f:7c:0e:
05:41:12:92:fd:a3:03:21:0e:84:e7:ab:5e:af:31:
fc:55:b1:d3:b3:64:84:e8:d8:24:8c:b5:c3:97:49:
6b:d0:1d:98:79:b6:12:17:9d:fa:90:12:aa:b1:1d:
6f:d6:a9:5d:17:7a:24:0e:b0:7e:97:73:c1:17:79:
5f:0f:eb:84:f7:08:1a:46:cb:1a:f2:b2:b2:75:7b:
e8:76:be:a1:7a:00:72:67:d8:f5:25:c2:bf:3a:28:
ff:94:2b:eb:00:68:e8:a1:3c:92:e9:71:0c:7c:62:
59:3c:49:03:51:be:91:00:43:4e:04:a1:43:ba:33:
ef:33:2e:57:a3:44:e4:a9:0a:c5:6d:e8:24:3f:3a:
47:74:0e:b6:b0:97:ad:1e:d8:17:af:08:ed:dc:86:
c5:58:7e:aa:9e:3c:48:73:0f:5d:ed:50:17:d5:9c:
06:97:fe:b2:35:8e:b6:9d:e0:7c:9e:21:eb:78:0c:
4f:c8:bb:4f:73:a1:6b:a6:4f:fc:a8:8a:5e:99:73:
43:54:be:67:28:85:d5:f4:99:5f:5a:5d:66:d6:a3:
f3:49:d7:94:fb:19:2a:1c:b7:4b:38:3a:4e:52:8d:
56:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:91:9B:02:C6:3E:22:45:AA:70:3F:FA:DB:E9:61:CD:BD:41:31:E6
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/X5GbAsY-IkWqcD_62-lhzb1BMeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.60.0/24
Signature Algorithm: sha256WithRSAEncryption
84:83:60:76:02:29:3a:31:cf:0f:f3:0d:b2:91:7e:20:10:d2:
a7:9f:48:c7:11:42:5b:96:2e:a9:f9:64:02:0d:56:cd:45:5e:
0f:f1:ef:69:85:07:28:d0:c6:4a:4e:74:40:3c:df:c1:93:8f:
2f:57:71:16:1c:8e:b3:5e:be:be:bd:9b:25:38:a5:66:a7:b5:
f8:56:01:8e:61:2c:1c:23:cc:ad:28:b3:38:64:83:d8:ad:cf:
ed:b0:8a:5e:0a:7c:b5:af:c8:8c:94:0b:2f:7e:10:d1:34:6f:
6e:7d:cb:22:ca:aa:ec:fa:1b:8a:bd:6c:3c:81:5b:b9:54:80:
e2:0c:69:ff:4c:62:46:3a:09:92:3e:5d:90:fd:f9:9b:68:b8:
5b:ac:8d:f9:37:72:f9:67:9a:6a:eb:09:79:26:d2:3f:7c:45:
00:5a:fe:86:3a:54:4a:bc:77:eb:a9:f3:a1:14:53:68:b8:85:
e6:21:99:5a:88:b2:b8:50:bd:25:e5:b4:01:60:92:9d:77:11:
5b:8b:46:1c:1e:dc:76:06:9a:d4:f1:2d:ec:0c:59:6c:d0:db:
a9:22:14:9f:e2:ec:ca:c5:df:97:e7:ca:0b:64:da:f8:04:1c:
8b:1a:07:24:f1:ac:20:7a:99:d2:5a:7e:a4:3a:1d:5f:d8:a7:
72:af:02:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org