Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/xkUpPAQ7eWz-i1MN71zEEFptnEM.roa
File: xkUpPAQ7eWz-i1MN71zEEFptnEM.roa (raw, json)
Hash identifier: 7e61ywtuyinEonieIyskTzLL9Y7+G6TgM+tCSMiLu/E=
Subject key identifier: C6:45:29:3C:04:3B:79:6C:FE:8B:53:0D:EF:5C:C4:10:5A:6D:9C:43
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0189E46650AC87E975242C782B51EEB0784E
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/xkUpPAQ7eWz-i1MN71zEEFptnEM.roa
Signing time: Fri 11 Aug 2023 11:40:57 +0000
ROA not before: Fri 11 Aug 2023 11:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204958
IP address blocks: 5.59.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:66:50:ac:87:e9:75:24:2c:78:2b:51:ee:b0:78:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Aug 11 11:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c645293c043b796cfe8b530def5cc4105a6d9c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:af:e7:20:6d:4b:da:76:01:02:c4:d6:3f:fd:
5f:e5:15:3a:2b:2c:de:f5:78:c9:22:06:da:0f:1f:
e0:37:fd:e8:8c:4d:a7:99:c2:a9:d0:e0:af:39:de:
3a:bc:97:5b:8d:8c:72:4d:92:aa:f8:fa:e1:00:8c:
ac:fd:7a:74:14:16:28:8c:a7:5e:54:9c:1a:f5:53:
a2:eb:bf:47:82:bf:cb:61:3c:e2:1a:c6:d9:c8:35:
4e:1d:55:ea:dd:fc:be:6d:96:2c:76:89:53:c6:27:
5d:64:c2:6c:11:43:c1:ec:7d:8d:88:be:0b:fd:39:
9e:dd:d6:6e:cf:57:19:50:e6:a5:cb:b1:41:d9:14:
ee:8d:db:3e:6a:13:11:f8:3a:e7:21:8f:ba:c1:c6:
77:08:74:fc:52:6a:a9:8d:92:3c:1d:75:3d:5f:6c:
28:b5:62:7e:d8:d0:b0:6f:fa:0b:dc:58:f9:8a:90:
62:86:73:e6:55:ff:b6:07:83:1f:96:98:58:71:7f:
3b:09:c4:bc:07:2b:71:f5:77:4b:5e:89:9a:ac:46:
b1:4e:46:0e:a5:21:22:dd:40:3a:92:ec:fc:67:20:
96:a7:fb:9d:8f:7e:ff:34:c7:ef:2d:c4:04:77:f8:
22:8f:88:a0:24:fe:ce:4c:20:8d:4b:7d:68:31:5e:
3a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:45:29:3C:04:3B:79:6C:FE:8B:53:0D:EF:5C:C4:10:5A:6D:9C:43
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/xkUpPAQ7eWz-i1MN71zEEFptnEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.55.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a0:0f:ad:d9:9f:a9:bd:d7:81:c9:3b:da:b3:72:3b:61:b8:
18:43:bd:27:72:e8:62:aa:42:b5:76:26:83:d9:dc:6a:8e:aa:
65:81:1e:c1:7e:74:af:a9:44:58:a5:3f:a5:44:35:81:a6:71:
48:25:f9:f6:fe:ce:90:11:b6:bc:51:80:59:1d:1f:6c:74:d8:
5d:88:62:84:2f:d6:12:a4:80:b3:b2:04:06:57:f3:18:cd:35:
87:5b:e1:83:06:57:62:48:19:9b:15:e0:16:f7:10:dd:87:44:
bb:98:1a:e9:3c:0b:9e:58:55:f9:2f:9a:5d:59:7a:9d:a6:52:
6c:78:c1:1d:c6:e9:8d:c2:22:7e:1d:da:d3:7f:18:79:a2:d4:
ef:93:3b:d9:03:42:cb:5a:2d:8e:4a:02:ae:a8:17:e4:ea:ab:
b6:7a:c9:38:0b:2b:da:f8:71:ef:cb:76:79:53:ba:bb:81:70:
0b:10:d8:07:12:11:37:a9:76:4c:52:39:7c:f4:1c:db:f8:da:
7c:2a:ad:1d:51:55:5b:88:ac:11:2a:fc:8c:40:54:ba:e9:e5:
66:e6:71:20:63:4e:ae:9f:f9:6a:0f:93:7e:3a:3b:3a:63:29:
99:28:35:8a:51:12:7d:54:25:67:fe:a7:66:56:18:36:b6:96:
7f:b7:63:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnkZlCsh+l1JCx4K1HusHhOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NDgxMTE5YWZlMWJmZjIyOWZhY2Q0ZWY5YzhjNjFiMGZh
YmVhZjIwHhcNMjMwODExMTE0MDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjQ1MjkzYzA0M2I3OTZjZmU4YjUzMGRlZjVjYzQxMDVhNmQ5YzQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6/nIG1L2nYBAsTWP/1f5RU6Kyze
9XjJIgbaDx/gN/3ojE2nmcKp0OCvOd46vJdbjYxyTZKq+PrhAIys/Xp0FBYojKde
VJwa9VOi679Hgr/LYTziGsbZyDVOHVXq3fy+bZYsdolTxiddZMJsEUPB7H2NiL4L
/Tme3dZuz1cZUOaly7FB2RTujds+ahMR+DrnIY+6wcZ3CHT8UmqpjZI8HXU9X2wo
tWJ+2NCwb/oL3Fj5ipBihnPmVf+2B4MflphYcX87CcS8Bytx9XdLXomarEaxTkYO
pSEi3UA6kuz8ZyCWp/udj37/NMfvLcQEd/gij4igJP7OTCCNS31oMV46MQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMZFKTwEO3ls/otTDe9cxBBabZxDMB8GA1UdIwQY
MBaAFLlIERmv4b/yKfrNTvnIxhsPq+ryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAt
OWI5YmNlMTVlMGM2LzEveGtVcFBBUTdlV3otaTFNTjcxekVFRnB0bkVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jYjAwMDctM2VhOS00NzU5LThkNzAtOWI5YmNlMTVlMGM2
LzEvdVVnUkdhX2h2X0lwLXMxTy1jakdHdy1yNnZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABTs3MA0G
CSqGSIb3DQEBCwUAA4IBAQBWoA+t2Z+pvdeByTvas3I7YbgYQ70ncuhiqkK1diaD
2dxqjqplgR7BfnSvqURYpT+lRDWBpnFIJfn2/s6QEba8UYBZHR9sdNhdiGKEL9YS
pICzsgQGV/MYzTWHW+GDBldiSBmbFeAW9xDdh0S7mBrpPAueWFX5L5pdWXqdplJs
eMEdxumNwiJ+HdrTfxh5otTvkzvZA0LLWi2OSgKuqBfk6qu2esk4Cyva+HHvy3Z5
U7q7gXALENgHEhE3qXZMUjl89Bzb+Np8Kq0dUVVbiKwRKvyMQFS66eVm5nEgY06u
n/lqD5N+Ojs6YymZKDWKURJ9VCVn/qdmVhg2tpZ/t2Nb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org