Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/x_VAIdHDloMB5k35JMM_aa3YIPY.roa
File: x_VAIdHDloMB5k35JMM_aa3YIPY.roa (raw, json)
Hash identifier: 02CKVomNZYWVS5oqZ3Z+rschuC7H+pSgPhC9u8BuQYk=
Subject key identifier: C7:F5:40:21:D1:C3:96:83:01:E6:4D:F9:24:C3:3F:69:AD:D8:20:F6
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 01910861FBD72C737841ADB8943A07CE5EF8
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/x_VAIdHDloMB5k35JMM_aa3YIPY.roa
Signing time: Wed 31 Jul 2024 10:42:04 +0000
ROA not before: Wed 31 Jul 2024 10:42:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.55.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 20:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:61:fb:d7:2c:73:78:41:ad:b8:94:3a:07:ce:5e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Jul 31 10:42:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7f54021d1c3968301e64df924c33f69add820f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:08:3d:56:76:98:61:67:2e:c8:f2:5c:c5:f3:
8a:41:a7:a4:e1:fb:ab:9e:cd:51:0d:0f:77:0b:1a:
c2:19:27:4c:60:05:10:ba:ce:02:9d:51:ae:d6:81:
81:db:d2:ce:66:91:29:ef:4c:42:de:7f:8f:19:d4:
1c:7a:2b:87:0e:81:78:23:b9:f5:b5:d5:ea:46:f8:
72:e7:a1:91:7b:35:15:3e:55:47:64:7b:f5:ae:45:
03:57:b7:47:a4:63:6c:f7:60:ae:b0:2f:0d:38:00:
20:01:5d:1c:9b:7a:83:be:36:15:a3:46:f5:cd:54:
59:1c:e3:9a:e9:dc:fe:50:61:3f:64:bc:c8:c7:2a:
01:8a:15:20:d2:a0:32:b1:b3:d0:81:2b:0a:0e:dc:
a4:dd:77:e0:77:9b:ce:e2:04:0c:1c:ec:e4:d9:b9:
73:9e:ba:26:09:e2:fa:0f:89:74:a8:b3:ab:79:a5:
61:91:06:23:d7:44:d8:f4:56:01:c0:4e:f5:96:66:
06:1d:2e:25:bd:59:06:c6:59:4c:4a:3b:c8:65:1d:
71:6b:f6:b4:87:dd:aa:47:62:77:25:51:61:10:b6:
2d:20:da:35:f8:56:72:e0:39:d8:60:21:be:7b:89:
64:df:43:e6:00:1d:20:b2:4b:7f:99:e2:31:af:92:
f6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F5:40:21:D1:C3:96:83:01:E6:4D:F9:24:C3:3F:69:AD:D8:20:F6
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/x_VAIdHDloMB5k35JMM_aa3YIPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.20.0/24
Signature Algorithm: sha256WithRSAEncryption
33:68:d9:27:0a:1a:36:0c:29:18:a0:58:47:20:c4:30:fa:8b:
94:42:7a:86:81:b7:da:41:f3:92:9a:a9:0a:73:91:81:b1:2e:
2e:b5:17:a4:4e:0e:9c:c3:e6:c9:14:de:22:65:a5:db:e6:98:
c0:3f:94:7d:38:d8:27:f7:61:2d:7f:08:38:23:70:08:80:aa:
c1:b4:b1:0b:4b:74:dc:23:b3:55:a8:de:aa:87:a3:31:b0:fb:
08:5b:46:ce:e7:91:54:d7:d5:4e:6a:29:15:6b:01:08:b8:5c:
96:8f:42:2e:de:19:9a:21:e6:b5:de:2e:83:ce:b1:7b:6c:3e:
ef:39:00:99:71:d1:16:65:d8:43:dc:85:bc:91:74:44:9f:a8:
af:48:fd:06:7b:40:1c:a9:ea:bc:9d:83:bf:42:4f:d2:4a:35:
25:7b:8a:be:eb:27:10:c6:59:84:4c:40:01:6a:dc:b5:1b:5e:
b0:3f:25:00:2e:fd:f3:65:af:2d:ca:b7:20:48:55:1e:79:8a:
8e:f3:0a:4d:e9:41:46:c8:50:97:fe:ab:c9:ba:ed:69:8b:94:
15:2f:90:46:53:44:b5:30:57:b5:65:de:1e:1a:b3:95:6a:dc:
43:31:56:b8:6a:07:0d:9f:b1:e1:76:04:01:ec:38:62:ff:a2:
89:4b:5a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 22:25:20 2024 by rpki-client on console-ams.rpki-client.org