Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/ag111wRbUrD_DvPHnY_BCferc3k.roa
File: ag111wRbUrD_DvPHnY_BCferc3k.roa (raw, json)
Hash identifier: ueu/ens5eIeUYZqVAOijcPCynm+uLsa9d7elSwq+Xwo=
Subject key identifier: 6A:0D:75:D7:04:5B:52:B0:FF:0E:F3:C7:9D:8F:C1:09:F7:AB:73:79
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0188112E568D1BC71F957C51BC7130ACA800
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/ag111wRbUrD_DvPHnY_BCferc3k.roa
Signing time: Fri 12 May 2023 18:17:09 +0000
ROA not before: Fri 12 May 2023 18:17:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203324
IP address blocks: 5.59.238.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:11:2e:56:8d:1b:c7:1f:95:7c:51:bc:71:30:ac:a8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: May 12 18:17:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a0d75d7045b52b0ff0ef3c79d8fc109f7ab7379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a1:1a:70:0c:55:2d:91:a6:ee:ed:aa:cd:1e:
9b:a0:35:33:82:11:1b:3e:78:9f:ad:f1:39:9b:f1:
53:84:26:02:35:e8:8d:e7:95:0d:36:f4:25:a2:b5:
ba:05:98:7e:8a:1b:57:c9:13:b2:d2:c3:ec:e4:ef:
78:81:a9:d3:a0:58:af:d9:3b:59:67:03:f6:ae:f5:
d9:19:a9:4c:74:7e:f4:a4:d0:3d:b1:84:71:31:12:
cd:bc:66:2b:86:1b:c7:b2:e6:2c:5b:50:a4:25:73:
7b:80:10:56:58:93:85:9c:0e:48:11:c0:17:51:94:
ee:88:85:16:4d:13:78:74:f5:5b:9e:c9:c8:40:61:
c6:c0:66:c6:15:7d:54:91:6d:fd:24:96:d4:9d:79:
1b:1f:a1:88:7e:1e:e4:b3:62:4c:2c:17:c4:66:f1:
c2:c2:0e:b4:43:7d:a3:92:9b:fa:ef:f0:5c:ac:55:
ed:ff:0e:18:38:a7:e6:f8:b4:f1:0b:3f:c4:be:82:
7b:4c:c3:8b:05:80:b2:4a:60:2f:38:47:3d:f3:a3:
67:0c:78:b1:1b:91:75:3a:4b:9b:05:eb:d9:29:15:
82:84:f3:95:06:bf:a6:46:f8:6a:aa:49:ff:54:79:
46:f3:d4:98:9f:31:0c:20:ca:63:de:c9:ca:10:9d:
92:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:0D:75:D7:04:5B:52:B0:FF:0E:F3:C7:9D:8F:C1:09:F7:AB:73:79
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/ag111wRbUrD_DvPHnY_BCferc3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.238.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:e4:a1:25:48:eb:05:33:f7:a5:80:8b:9d:a2:2a:2f:71:8d:
02:83:2a:35:b6:3c:96:5e:c6:82:00:80:cf:9b:c2:27:47:b4:
c2:0b:17:e7:fe:e8:72:1c:c7:e5:db:cf:3f:01:bd:34:97:18:
16:00:ed:89:fe:a3:46:8a:70:f9:8f:61:41:72:0b:fe:b6:cf:
ca:54:d6:0f:34:d4:b7:46:1f:61:13:30:4c:8f:95:e7:b4:30:
43:b2:07:f2:6b:a9:9d:60:00:e8:0f:1a:2b:1e:97:d0:14:2e:
5d:56:05:41:34:15:e1:86:6f:da:9d:d6:97:3c:73:ef:10:68:
fc:fb:d6:d9:e0:e4:27:c7:c7:cf:b2:43:ce:72:a2:ed:40:d6:
f6:c7:37:54:b2:83:af:c2:12:a8:28:ec:b8:9e:7b:de:d9:82:
75:55:a7:4c:da:3a:06:7b:bd:79:f8:c4:e8:26:c4:cd:8e:d5:
cd:88:df:cc:39:28:49:71:54:64:39:d2:e0:ca:62:24:9a:71:
7c:50:18:6c:cb:69:85:a9:65:9c:bc:80:9f:2d:97:ee:3e:2c:
eb:a8:59:ed:3d:2f:57:57:d9:33:b3:72:73:e2:26:4f:04:84:
76:91:83:19:97:db:a8:e9:02:da:7c:8c:19:2f:06:bc:a5:a1:
50:b3:2c:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgRLlaNG8cflXxRvHEwrKgAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NDgxMTE5YWZlMWJmZjIyOWZhY2Q0ZWY5YzhjNjFiMGZh
YmVhZjIwHhcNMjMwNTEyMTgxNzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTBkNzVkNzA0NWI1MmIwZmYwZWYzYzc5ZDhmYzEwOWY3YWI3Mzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqEacAxVLZGm7u2qzR6boDUzghEb
PnifrfE5m/FThCYCNeiN55UNNvQlorW6BZh+ihtXyROy0sPs5O94ganToFiv2TtZ
ZwP2rvXZGalMdH70pNA9sYRxMRLNvGYrhhvHsuYsW1CkJXN7gBBWWJOFnA5IEcAX
UZTuiIUWTRN4dPVbnsnIQGHGwGbGFX1UkW39JJbUnXkbH6GIfh7ks2JMLBfEZvHC
wg60Q32jkpv67/BcrFXt/w4YOKfm+LTxCz/EvoJ7TMOLBYCySmAvOEc986NnDHix
G5F1OkubBevZKRWChPOVBr+mRvhqqkn/VHlG89SYnzEMIMpj3snKEJ2SQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGoNddcEW1Kw/w7zx52PwQn3q3N5MB8GA1UdIwQY
MBaAFLlIERmv4b/yKfrNTvnIxhsPq+ryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAt
OWI5YmNlMTVlMGM2LzEvYWcxMTF3UmJVckRfRHZQSG5ZX0JDZmVyYzNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAtOWI5YmNlMTVlMGM2
LzEvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBTvuMA0G
CSqGSIb3DQEBCwUAA4IBAQBN5KElSOsFM/elgIudoiovcY0Cgyo1tjyWXsaCAIDP
m8InR7TCCxfn/uhyHMfl288/Ab00lxgWAO2J/qNGinD5j2FBcgv+ts/KVNYPNNS3
Rh9hEzBMj5XntDBDsgfya6mdYADoDxorHpfQFC5dVgVBNBXhhm/andaXPHPvEGj8
+9bZ4OQnx8fPskPOcqLtQNb2xzdUsoOvwhKoKOy4nnve2YJ1VadM2joGe715+MTo
JsTNjtXNiN/MOShJcVRkOdLgymIkmnF8UBhsy2mFqWWcvICfLZfuPizrqFntPS9X
V9kzs3Jz4iZPBIR2kYMZl9uo6QLafIwZLwa8paFQsyxe
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org