Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/cZ2N3DIT-NQ_MDe7rQ_1Mc5yuT4.roa
File: cZ2N3DIT-NQ_MDe7rQ_1Mc5yuT4.roa (raw, json)
Hash identifier: y/9hd0Lo1KQ/MrRS1GxAIsb59pu7P/24vUz0iJYCc6Q=
Subject key identifier: 71:9D:8D:DC:32:13:F8:D4:3F:30:37:BB:AD:0F:F5:31:CE:72:B9:3E
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 01856E6FAC60A1051FE77E3B28D2B926E5CC
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/cZ2N3DIT-NQ_MDe7rQ_1Mc5yuT4.roa
Signing time: Sun 01 Jan 2023 17:44:50 +0000
ROA not before: Sun 01 Jan 2023 17:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57971
IP address blocks: 5.59.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:ac:60:a1:05:1f:e7:7e:3b:28:d2:b9:26:e5:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 1 17:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=719d8ddc3213f8d43f3037bbad0ff531ce72b93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5f:04:21:32:ce:1e:99:45:90:fe:de:a1:92:
59:f8:e0:3e:7f:fa:5b:3d:c5:94:e1:19:93:01:cf:
10:67:33:2b:b0:d6:cd:3d:d6:96:2a:bc:4f:a2:5c:
33:7e:c7:e8:4d:ca:e2:16:b8:8c:1a:6c:a0:24:47:
b9:77:37:49:88:34:32:2f:13:c6:22:4a:40:0a:9d:
ed:9f:27:f4:2a:38:6e:fe:1a:5f:12:a1:f8:c1:9d:
44:71:c3:5c:97:77:81:99:b8:8a:b1:9f:26:db:a8:
a7:66:11:58:90:b5:2c:d8:54:d2:93:69:2c:d7:47:
fa:07:fa:a2:d0:2d:15:33:cd:1d:42:39:17:95:96:
45:43:cc:71:4a:75:f2:b1:76:cc:22:e7:54:64:48:
00:7d:ac:61:81:6a:b6:ec:8c:f3:15:c3:a8:30:29:
ad:ad:fe:39:a9:3e:0d:69:f1:67:c1:7d:40:ba:cb:
8e:df:dd:97:ec:82:de:b2:64:58:fd:d4:59:66:cb:
20:1f:99:b3:50:34:e6:03:a9:96:52:cf:85:6c:9e:
d7:79:91:4d:92:70:6d:9c:fe:da:87:3b:74:12:a4:
3c:d9:a9:74:15:6f:f8:c8:5a:b0:21:39:c3:87:43:
6c:4f:4a:9c:cf:b4:25:e8:79:ab:6b:f3:78:ee:b0:
74:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9D:8D:DC:32:13:F8:D4:3F:30:37:BB:AD:0F:F5:31:CE:72:B9:3E
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/cZ2N3DIT-NQ_MDe7rQ_1Mc5yuT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:1f:7c:6b:94:9c:07:11:2c:34:e3:85:90:12:a3:ff:a9:94:
a9:80:fe:34:3b:1d:49:25:4a:77:5b:2a:5a:79:66:7f:bb:df:
4b:63:09:ed:1e:1b:00:b1:37:2d:47:f9:43:73:67:d1:9f:23:
79:20:11:04:90:4f:0e:fa:8d:2c:bd:e4:76:6b:de:56:3c:9c:
4a:81:e9:3d:2e:e9:c8:ac:2d:54:fe:26:9f:24:04:f7:3e:21:
25:2e:c8:b2:e8:91:f3:32:69:85:e1:93:9b:83:6e:5d:41:82:
21:37:48:af:79:18:b7:20:64:9c:25:03:40:7a:1d:0f:5a:c0:
c5:91:41:fb:62:52:a7:81:9a:33:07:46:b6:fc:6c:ea:75:bb:
e4:69:b4:c1:bd:8e:92:8e:30:c3:37:d4:df:86:a7:aa:80:32:
fe:c3:26:fc:89:5e:48:47:8c:5b:de:b4:6b:1e:57:32:36:31:
d8:00:74:c2:9e:a0:73:7d:4a:a6:fe:97:54:fc:2c:bc:51:0b:
c2:c2:9a:34:76:b5:d8:8a:d9:40:0b:43:74:65:b5:e6:c0:21:
7b:c4:c8:b5:0b:6f:4b:09:b4:2a:ab:e4:ce:17:9d:ff:4f:c6:
d0:12:15:ab:5f:f3:cf:ce:6e:6e:45:35:bb:f4:40:a9:24:4c:
4b:52:18:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org