Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/SUh8iOGM_fswpzZsRlbnrG595-0.roa
File: SUh8iOGM_fswpzZsRlbnrG595-0.roa (raw, json)
Hash identifier: xT3+fI8c7PvJcOP8R0AlQZLWSz95qeJTAU8DP6cr184=
Subject key identifier: 49:48:7C:88:E1:8C:FD:FB:30:A7:36:6C:46:56:E7:AC:6E:7D:E7:ED
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0192956E60FF24A28BF13360DB9ADE2B519F
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/SUh8iOGM_fswpzZsRlbnrG595-0.roa
Signing time: Wed 16 Oct 2024 13:04:51 +0000
ROA not before: Wed 16 Oct 2024 13:04:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 84.55.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 06:06:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:6e:60:ff:24:a2:8b:f1:33:60:db:9a:de:2b:51:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Oct 16 13:04:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49487c88e18cfdfb30a7366c4656e7ac6e7de7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:c2:15:5b:f0:33:ce:24:ee:25:80:49:af:
56:5c:d6:85:e6:4d:bc:c6:02:24:2c:c8:e2:6c:f0:
84:a0:35:5f:4e:b9:52:57:bc:33:b3:83:e3:53:1e:
18:32:5f:cf:a1:13:f2:ba:15:d5:4d:51:82:54:32:
03:c2:1f:b4:c3:e8:a5:a7:6a:38:49:4d:2d:b7:54:
f9:f7:6d:76:4f:27:47:8f:b3:7d:eb:48:c4:36:8b:
64:13:d4:4c:5e:70:bc:99:e2:a3:3f:f1:dc:01:b8:
31:21:1f:6e:aa:eb:fa:67:67:5a:ae:44:de:3a:a9:
86:36:55:0d:16:aa:6b:a5:8c:43:65:16:c0:45:dd:
64:da:4c:e2:ee:fa:4d:ab:a4:47:ad:ba:5c:9e:4c:
36:a4:89:00:e0:ac:23:33:40:31:8d:92:74:63:fd:
c3:7e:fa:9d:a5:16:87:f8:0b:a8:d2:35:10:ae:56:
23:a1:bc:4a:41:d8:dc:84:2e:a5:41:4e:3f:f9:34:
b0:25:c8:e4:6d:63:8c:1a:24:3d:9e:e0:80:33:03:
15:12:5b:96:aa:32:54:36:9e:03:87:56:8c:df:d6:
95:c0:f4:bc:a0:88:2e:ed:fb:47:1b:9a:db:7a:a0:
d5:a4:2f:47:7c:23:3c:e2:bd:8a:b9:92:7f:61:44:
1d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:48:7C:88:E1:8C:FD:FB:30:A7:36:6C:46:56:E7:AC:6E:7D:E7:ED
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/SUh8iOGM_fswpzZsRlbnrG595-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:31:e8:5d:52:b3:c6:47:5c:b7:67:9c:92:02:a4:62:a0:ea:
69:79:81:80:b8:a1:a0:f9:0f:3a:5e:b9:c0:75:6c:3d:ea:41:
67:4c:cc:9c:ba:11:32:08:22:f2:30:64:dd:d0:21:f3:f2:c4:
c9:29:78:1e:e0:4a:08:52:f6:98:f0:ec:7e:bf:c4:fc:90:4b:
72:fb:62:dd:d9:02:1f:28:48:3b:69:42:27:8c:b5:e5:5e:82:
21:fc:29:ed:f8:40:1b:91:ac:a8:df:62:ae:0b:c0:9a:87:47:
f1:3d:b2:47:09:2b:c3:4b:95:6b:f6:f6:de:23:14:71:00:cf:
62:b6:23:04:48:94:ad:ea:49:cc:cf:f7:03:bd:18:e0:16:e0:
d7:02:9f:c1:e6:62:f8:89:bf:fb:ff:68:22:f4:da:de:f9:03:
cc:d6:9a:96:bb:d7:18:7e:b0:70:72:a8:55:2e:41:64:7b:b7:
71:08:f4:4f:bc:d1:3b:d0:e5:cc:85:38:0a:1e:58:32:7b:44:
a1:18:95:1a:aa:74:0c:45:85:5a:a4:ba:bf:a7:59:8a:7f:d1:
1f:28:f8:6b:5b:d1:8e:21:dd:63:6e:06:a3:ca:b2:6f:1b:ae:
22:f2:dd:e6:fa:08:62:91:a1:54:92:1d:56:6c:b3:ec:11:e7:
4b:3d:8a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 08:29:21 2024 by rpki-client on console-fra.rpki-client.org