Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS59895.roa
File: AS59895.roa (raw, json)
Hash identifier: f7tmO5k+uN1hg13Jr7P0hg3yPrw0JW78YFDg9l2+SQg=
Subject key identifier: 8E:B6:CA:59:B0:35:88:1D:81:84:94:48:0B:F8:ED:FB:9A:7D:96:DB
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 57F50899943C82DD39FAC118674A9D847C9CA4DC
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS59895.roa
Signing time: Wed 24 Apr 2024 00:00:06 +0000
ROA not before: Tue 23 Apr 2024 23:55:06 +0000
ROA not after: Wed 23 Apr 2025 00:00:06 +0000
asID: 59895
IP address blocks: 91.199.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 00:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:f5:08:99:94:3c:82:dd:39:fa:c1:18:67:4a:9d:84:7c:9c:a4:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Apr 23 23:55:06 2024 GMT
Not After : Apr 23 00:00:06 2025 GMT
Subject: CN=8EB6CA59B035881D818494480BF8EDFB9A7D96DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:5b:a2:bc:dd:b8:6b:6a:85:f0:86:53:8e:
c2:84:33:19:fd:9f:f2:2a:49:7f:a3:59:9f:f0:37:
b5:c6:62:9a:b1:34:82:78:92:2a:7f:0e:64:63:a7:
ba:18:5a:1a:30:32:c3:70:76:cb:77:84:b4:82:e4:
53:8b:08:85:4f:17:dc:05:6a:9f:d5:9f:15:c5:4a:
e9:2e:0b:98:91:47:ec:d4:dd:d0:4f:ad:0d:12:51:
68:08:94:cf:dc:68:ae:e5:64:40:bf:26:8b:1c:17:
08:2b:6c:7a:d2:3b:20:e5:d0:d4:54:e2:09:c4:5d:
e3:fa:1d:63:64:0f:46:db:a8:a5:84:6b:d8:53:50:
61:da:86:39:e1:d3:cd:dd:c8:ab:ca:4d:c4:a6:18:
a0:63:ca:cd:de:c0:11:f6:06:67:c3:e3:d0:8f:0c:
59:43:28:d7:ef:bd:49:18:61:17:34:ff:89:da:d0:
94:a5:be:d6:5f:85:d8:a7:40:0d:9d:64:21:0e:4a:
c9:26:c5:63:08:25:6a:ca:15:ca:10:44:bd:f6:1d:
ae:23:a2:aa:24:22:d8:f7:37:21:1c:f6:ee:59:51:
59:0a:b5:13:c0:e2:df:94:3f:35:8f:ad:87:2e:1e:
6c:f6:1a:44:70:da:24:24:88:fe:b3:aa:46:fd:a0:
b6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B6:CA:59:B0:35:88:1D:81:84:94:48:0B:F8:ED:FB:9A:7D:96:DB
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS59895.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6d:cf:8b:69:4a:fe:73:06:a0:1f:45:1f:83:3f:1d:74:f8:
b5:4e:32:58:7e:21:f2:b5:e6:c9:b8:8a:3a:06:03:fc:93:5e:
e3:5e:53:7b:92:c0:2e:3f:31:87:3b:17:8e:d6:18:71:d3:ba:
31:5e:b1:26:1f:0a:7e:3d:9f:7f:68:c9:d3:ac:ec:d8:ff:90:
7d:b9:7a:1b:8c:94:b3:dd:14:90:fc:4b:af:aa:01:50:00:6b:
93:ad:e7:f7:39:f5:90:26:9f:a4:90:c7:b7:44:12:96:d2:e5:
54:b0:2d:79:84:a4:c7:bb:8f:1e:be:5a:74:e0:db:c7:0b:a6:
3c:47:40:e7:88:49:8a:85:b9:38:21:c2:a9:59:01:14:53:9f:
78:49:4a:b8:24:16:57:d0:2e:86:35:04:24:24:33:8d:c9:17:
8c:a4:a2:9b:96:60:e5:08:a8:39:39:1c:38:08:1e:d0:37:bb:
a4:8d:a5:37:d4:a5:2e:85:e2:8a:0a:1f:b9:be:13:30:09:91:
2e:fe:b4:4e:47:c2:9d:56:86:b5:28:5d:9f:33:92:28:22:80:
99:4e:7a:90:6d:8d:f3:29:fc:ea:86:52:6c:65:f0:45:18:0f:
f4:b5:e7:40:b5:fa:7f:38:45:79:03:5b:ad:d4:fe:f1:87:64:
5a:1f:e7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 01:16:54 2024 by rpki-client on console-ams.rpki-client.org