Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vmrfjMzHdYhguv_j1h49lLM-82s.roa
File: vmrfjMzHdYhguv_j1h49lLM-82s.roa (raw, json)
Hash identifier: cfoBIqeRxrFvmqXi01Kk3goz+YzFXd948srdJfHlzKc=
Subject key identifier: BE:6A:DF:8C:CC:C7:75:88:60:BA:FF:E3:D6:1E:3D:94:B3:3E:F3:6B
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0187B981C18F6C08775285DB15520ABAAA7E
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vmrfjMzHdYhguv_j1h49lLM-82s.roa
Signing time: Tue 25 Apr 2023 17:41:41 +0000
ROA not before: Tue 25 Apr 2023 17:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 5.59.238.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 18:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b9:81:c1:8f:6c:08:77:52:85:db:15:52:0a:ba:aa:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Apr 25 17:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be6adf8cccc7758860baffe3d61e3d94b33ef36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fd:66:db:1c:8d:de:d3:50:77:76:76:de:17:
b7:c9:bf:f3:ff:35:05:d8:8a:7e:8e:c4:36:df:72:
29:b9:e1:af:9a:ae:8d:1f:22:b3:7b:17:8a:ec:46:
5e:24:a6:b8:ac:4d:21:76:77:de:14:9c:54:0d:d5:
30:45:8f:86:79:4e:58:39:9d:0c:da:e2:03:90:4a:
5b:60:01:b5:72:cf:7b:31:9c:70:ae:74:a6:52:c5:
ee:98:86:b1:da:54:55:c3:14:65:31:fe:17:65:1d:
1c:87:34:57:b9:40:ad:19:04:89:97:79:fd:d8:49:
d2:56:03:6e:aa:8f:53:51:b4:74:de:92:e7:6b:9f:
d0:66:99:90:f0:2a:bc:4c:a2:ed:7f:8f:fb:c2:41:
92:9b:20:91:a1:2d:37:04:35:e9:7b:60:bc:9c:b7:
ef:8b:d1:88:0c:2d:5d:c3:92:55:97:51:5f:4b:4a:
26:6b:2f:c4:97:c2:8d:aa:5b:84:27:c6:76:c0:d6:
71:f8:bd:33:d8:90:18:27:a4:65:2a:5d:14:4c:06:
3a:fd:52:b0:c3:41:f5:8d:c6:14:3d:1f:e6:2e:64:
40:e2:20:09:78:50:08:ad:bb:44:4c:a0:5d:ea:62:
93:bf:8d:ba:07:69:a9:f3:38:ee:55:5e:d7:3c:43:
e7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6A:DF:8C:CC:C7:75:88:60:BA:FF:E3:D6:1E:3D:94:B3:3E:F3:6B
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vmrfjMzHdYhguv_j1h49lLM-82s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.238.0/23
Signature Algorithm: sha256WithRSAEncryption
90:6a:05:08:6e:aa:cf:dc:b9:00:56:9e:a6:95:56:93:75:e6:
39:51:08:31:64:78:6c:aa:35:b5:67:54:01:67:24:89:7b:7e:
c8:b0:a1:a7:ac:e8:ba:f5:92:9b:96:c8:94:6e:be:0a:1b:d8:
68:d6:ff:bb:ca:ea:75:2d:46:45:27:01:f2:af:16:0f:dd:f6:
36:e8:91:e3:cc:e2:13:ab:78:10:87:9f:44:2c:12:54:35:c8:
99:37:5b:0c:c3:32:d8:85:95:ad:93:02:14:5f:fc:a8:1d:97:
86:1b:6b:54:5f:3f:00:cd:f0:02:39:d7:fc:a6:ec:05:5b:53:
04:39:8b:38:1a:a1:30:a7:00:b5:5a:1a:25:e9:13:b7:cf:29:
89:e1:f3:cd:b0:38:3a:2d:98:c9:f1:2f:59:45:07:e9:32:d6:
77:02:6e:6f:4d:92:16:8d:ca:2d:a9:19:62:e6:0d:34:ef:48:
7b:47:62:1a:fa:bc:56:45:78:e8:67:bd:eb:1c:69:cd:9e:3a:
a6:ae:44:bf:10:65:05:b0:11:71:4e:30:c3:f2:50:18:9c:ba:
9e:73:d0:15:27:80:ca:21:59:0d:3a:a5:a6:bc:13:c4:d3:95:
91:fd:28:4d:09:6e:1a:34:97:91:ef:50:01:b0:d4:4c:c7:bc:
e4:4f:9f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org