Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/XhXvuV4gCgGTfFYF4TcDpQU3W9s.roa
File: XhXvuV4gCgGTfFYF4TcDpQU3W9s.roa (raw, json)
Hash identifier: +HydXoED91AS3axEuIK1OkDaQllT4B8O+1zVd0IM+48=
Subject key identifier: 5E:15:EF:B9:5E:20:0A:01:93:7C:56:05:E1:37:03:A5:05:37:5B:DB
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0191B1358DBA341E9AC34ED81A15DB856A5C
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/XhXvuV4gCgGTfFYF4TcDpQU3W9s.roa
Signing time: Mon 02 Sep 2024 05:29:22 +0000
ROA not before: Mon 02 Sep 2024 05:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.55.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 14:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:35:8d:ba:34:1e:9a:c3:4e:d8:1a:15:db:85:6a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Sep 2 05:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e15efb95e200a01937c5605e13703a505375bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5a:c2:a9:6b:8c:27:1e:3b:74:20:1a:ad:6f:
a8:7b:27:a8:f2:b7:f6:3d:a6:5e:0e:d8:9a:68:13:
60:5c:af:9c:5c:67:96:73:f1:2f:8c:be:c9:6d:ea:
49:f2:b5:cb:eb:5b:46:30:ec:e9:40:56:f4:c9:85:
35:4c:7a:81:29:41:72:14:06:75:74:53:58:9a:1d:
12:bc:77:97:3b:15:0e:2f:c8:13:1f:db:cf:d8:6d:
2a:9f:5f:7d:b6:72:48:c4:be:fa:be:40:fd:3a:a0:
e1:2b:9d:bf:20:01:82:b9:c3:66:a2:c8:74:e7:6b:
17:5c:23:54:4b:50:e8:a2:5a:86:23:84:d0:a5:8d:
c4:72:8d:0c:d9:b5:bb:65:ad:bb:e0:5c:a9:8d:be:
19:12:ad:c8:a6:a8:12:43:58:4e:be:d1:65:6b:37:
4a:b5:e3:ea:51:91:ad:ed:30:08:99:fc:32:3f:8e:
5f:5b:9d:cf:87:03:fd:77:81:7e:fa:07:eb:31:79:
06:5f:0b:6b:dd:05:62:03:da:99:83:77:b7:02:cb:
24:e2:25:f9:69:b4:0a:4c:ce:5f:4a:04:1c:1f:ff:
0e:7a:b7:d4:c2:18:56:35:00:e7:1d:6a:8b:c9:a5:
f6:74:60:45:30:92:59:8b:2a:cd:0a:25:3d:20:53:
72:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:15:EF:B9:5E:20:0A:01:93:7C:56:05:E1:37:03:A5:05:37:5B:DB
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/XhXvuV4gCgGTfFYF4TcDpQU3W9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.18.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d9:11:90:0a:5a:50:5e:0b:e1:b5:b1:9f:1e:65:cb:d6:4e:
d9:41:e8:6d:d6:88:57:ba:54:68:09:93:f2:a3:1c:d5:11:90:
dd:36:22:3d:1f:2e:e8:ff:38:18:66:3d:95:00:e2:c1:5b:95:
35:56:23:a5:f2:2f:54:de:be:b7:15:c8:e9:ec:f6:17:e2:56:
a3:7d:5c:8e:2c:6b:f9:2d:ba:9d:b9:04:01:96:71:41:88:d1:
9e:93:88:f3:fd:3f:37:a7:35:fe:6d:f9:19:f8:7c:4f:48:59:
65:fe:9d:58:26:dd:c7:1a:02:25:b9:cd:e1:96:12:0f:36:47:
ae:19:85:81:02:3a:d6:34:9c:12:66:20:f8:ba:e0:53:d2:1d:
f1:9a:5b:0b:5d:55:4a:ff:49:6a:b2:33:25:82:60:a4:37:4a:
ff:18:d0:39:d4:20:77:65:ec:40:88:96:a8:70:5d:3c:ac:0e:
5d:7a:4a:cb:31:97:ac:a0:7c:5c:0f:70:c3:02:87:e6:66:05:
51:87:53:3e:e7:74:12:e8:73:e0:b8:5c:8c:05:c0:c2:dc:44:
b0:87:45:a2:88:3e:ba:4a:63:5b:37:ff:02:99:ed:8e:8c:fc:
ef:0d:d4:8b:02:61:19:bc:00:40:a0:06:0a:0a:94:3f:9e:8a:
db:d0:f5:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 18:33:54 2024 by rpki-client on console-ams.rpki-client.org