Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59895.roa
File: AS59895.roa (raw, json)
Hash identifier: 7fxgNAxEqEpUSyeHZ4k2HpTiOx/tDh5mB4sgET1DMis=
Subject key identifier: 83:5F:6A:B5:47:9E:E1:29:D4:5D:A2:C1:36:3A:3C:53:50:CA:8C:B3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3D491799E01E1BD394EB9BE4C5B924114055CE8C
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59895.roa
Signing time: Sat 20 Apr 2024 12:49:10 +0000
ROA not before: Sat 20 Apr 2024 12:44:10 +0000
ROA not after: Sat 19 Apr 2025 12:49:10 +0000
asID: 59895
IP address blocks: 140.233.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 00:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:49:17:99:e0:1e:1b:d3:94:eb:9b:e4:c5:b9:24:11:40:55:ce:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 20 12:44:10 2024 GMT
Not After : Apr 19 12:49:10 2025 GMT
Subject: CN=835F6AB5479EE129D45DA2C1363A3C5350CA8CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:67:58:85:bc:e7:84:51:ba:73:9f:bd:bf:7c:
d9:21:69:95:d1:47:93:a4:11:fd:e4:3c:45:ee:bf:
7d:4b:91:9e:f1:d1:b0:60:58:2c:c9:e9:79:85:a3:
ee:9b:51:26:bf:21:f3:e4:42:68:72:4c:19:db:03:
9e:ff:07:ac:7e:c3:d0:5b:25:87:04:73:5d:4a:ab:
38:68:f8:9b:05:2a:0d:52:0e:87:dc:53:45:43:0e:
50:ed:db:8c:17:92:68:2b:19:f9:08:30:79:a3:42:
ab:73:f3:ae:0b:f8:50:fa:18:e7:ea:82:0e:ce:df:
f6:66:af:af:b2:5b:38:ff:e9:7b:71:c3:f6:05:f3:
17:02:c6:0d:49:31:c6:56:3e:52:91:c4:d4:87:15:
33:bc:ee:49:c4:34:47:ec:43:7a:93:b7:21:32:ef:
74:f9:2e:8e:3c:6f:b0:c5:6d:f6:d7:bd:19:ca:33:
50:8c:dc:14:b1:d3:5a:7a:8f:fc:7b:ba:6d:4e:a0:
64:3a:a0:85:57:9e:ea:a3:ef:6a:9f:a5:ce:0b:40:
ea:d3:55:0d:9c:f5:01:0d:c5:b6:98:48:31:49:e2:
38:c3:26:b4:a6:88:06:fe:81:2d:5d:e7:42:6d:11:
9b:65:72:d2:6d:7c:a6:23:2f:97:d2:4b:a9:bc:c0:
03:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5F:6A:B5:47:9E:E1:29:D4:5D:A2:C1:36:3A:3C:53:50:CA:8C:B3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS59895.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.191.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:6e:15:1d:35:70:32:f6:2f:c7:dd:40:1e:87:0f:3e:d6:1c:
1e:8a:0d:2e:3e:36:26:ca:88:5c:5b:d8:66:b7:6c:66:ea:ce:
d6:33:44:2b:28:e8:2a:c9:a9:38:6f:a2:05:4a:36:2b:28:d9:
c8:e0:6c:92:f2:88:29:6e:54:5c:e6:85:78:67:24:d7:6a:13:
57:ed:c8:66:93:a3:fa:00:e4:19:f5:b6:ad:56:4a:b8:00:84:
fc:47:1a:44:a5:e4:a7:cd:f1:0d:db:a9:06:de:38:74:70:6e:
78:3c:b3:d7:e4:66:a0:f2:d5:5e:dc:34:32:c3:bf:10:ac:f6:
28:1e:ce:12:72:da:a2:5d:12:97:40:c7:c5:43:c3:c1:61:49:
21:09:c4:ea:cc:02:d5:16:1b:1e:99:6f:51:93:f7:42:56:e5:
37:7f:00:dd:42:72:2d:a6:c7:45:92:d9:9a:0f:ac:28:a1:3f:
f1:8b:20:f1:3d:6a:a7:63:df:71:29:a1:13:3b:4a:49:05:d6:
c3:b8:5b:73:76:c8:11:92:49:da:b5:9a:20:68:28:cb:c4:43:
b7:5e:7a:02:64:29:ec:01:29:6b:4a:95:03:52:25:1a:2f:37:
3f:f3:25:e9:ba:72:b0:83:49:de:4a:e8:d4:34:0f:93:2a:93:
f8:5c:9f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org