Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YLzKa4_J3D6Ob-2SByyoqHggVjw.roa
File: YLzKa4_J3D6Ob-2SByyoqHggVjw.roa (raw, json)
Hash identifier: 2lK7l3Hf47jZoPEcm4Z0gl0YRqeljMJg706VoP40+zs=
Subject key identifier: 60:BC:CA:6B:8F:C9:DC:3E:8E:6F:ED:92:07:2C:A8:A8:78:20:56:3C
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0191D21C67C65C448286082EE6C993B7E501
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YLzKa4_J3D6Ob-2SByyoqHggVjw.roa
Signing time: Sun 08 Sep 2024 14:49:22 +0000
ROA not before: Sun 08 Sep 2024 14:49:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 84.55.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 11:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d2:1c:67:c6:5c:44:82:86:08:2e:e6:c9:93:b7:e5:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Sep 8 14:49:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60bcca6b8fc9dc3e8e6fed92072ca8a87820563c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:70:7c:bb:72:0b:72:7a:ee:c9:ff:21:9a:
f5:15:ac:60:db:64:80:1f:b6:9a:98:e3:1d:5d:a0:
c2:79:1c:68:70:e8:66:a1:e3:4c:55:2b:71:5d:6f:
91:43:9a:21:d2:0b:7e:6f:69:ba:a2:18:26:74:05:
88:7b:c4:57:36:88:a2:ed:bb:d6:ca:8d:41:36:a2:
6c:0e:db:7f:6e:6e:1d:10:9c:e5:44:56:20:3d:29:
0c:b7:02:3b:3b:07:e0:85:d7:73:3e:be:9b:0a:d3:
fe:b2:a4:bb:80:94:e3:c2:3a:f7:a9:29:c6:d2:a2:
2c:7e:b6:38:1f:9a:6c:35:89:22:37:85:a2:13:41:
a1:52:4d:9f:be:a3:ed:65:26:f2:6e:f9:ec:e9:cc:
f8:0f:04:bd:68:17:58:fd:53:6d:6c:6e:8c:b3:de:
aa:60:a6:fc:ac:e3:66:8f:aa:40:6a:dd:3f:a1:c9:
2b:7f:14:b9:b7:45:1a:10:a7:f1:8d:3a:0b:e0:71:
db:0b:76:1d:1e:d3:aa:7e:57:d1:6b:dc:ce:32:73:
43:1a:5a:7e:d5:0c:b2:60:0e:c0:f1:b9:7e:63:6c:
4b:63:7b:36:38:21:4e:be:e6:48:00:ec:7a:06:7b:
23:96:51:bb:8c:ab:b2:22:46:61:8f:11:45:e8:35:
0e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BC:CA:6B:8F:C9:DC:3E:8E:6F:ED:92:07:2C:A8:A8:78:20:56:3C
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YLzKa4_J3D6Ob-2SByyoqHggVjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:75:14:b2:17:a0:4d:31:c2:93:b4:e1:f9:00:1d:ce:12:6b:
a8:f7:3a:12:c6:4f:76:3a:39:af:eb:84:cf:e1:24:49:4a:ba:
ce:f9:56:aa:88:55:e3:3d:20:1f:05:36:30:a2:2c:86:af:af:
38:3c:f5:ed:b4:6c:dc:1b:56:d2:c7:b1:45:38:7b:09:ff:57:
e5:dd:81:71:b9:72:e2:83:6d:e4:c9:90:f0:82:4f:bf:56:ef:
7b:46:54:fa:26:9a:7c:25:68:ce:89:45:9e:28:44:45:54:91:
f8:44:c3:d8:8c:2f:aa:2a:1a:fd:db:b6:8d:7c:5d:66:42:ec:
4c:c3:8a:81:c7:f0:f7:50:c7:cb:6b:51:52:49:a3:ca:12:e3:
1a:40:46:aa:38:89:a8:bd:40:78:cd:44:46:f0:db:9a:f6:f5:
f2:7a:f4:e8:53:72:39:da:ca:44:45:60:a6:6d:94:94:84:1c:
e7:61:dc:51:92:4f:4a:63:a3:eb:a3:60:71:c0:d2:da:60:4c:
b2:52:26:a3:3b:97:18:c2:b9:4f:8b:9d:ad:7f:fe:a1:a8:11:
9d:78:be:02:05:8b:93:16:79:6d:1b:b3:4c:33:f7:fa:6e:10:
a7:61:66:54:45:e7:bb:1c:a2:ad:9c:8c:03:c4:48:3b:f1:4b:
fd:57:d0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:45 2025 by rpki-client