Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/zjyPa_W5dBpWNHuakbuJKpyfVds.roa
File: zjyPa_W5dBpWNHuakbuJKpyfVds.roa (raw, json)
Hash identifier: yqLQCWJtPZeoiRHLxk24COCk7XDsPrxa0tfmr80wBE8=
Subject key identifier: CE:3C:8F:6B:F5:B9:74:1A:56:34:7B:9A:91:BB:89:2A:9C:9F:55:DB
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0190A51D39FF848BF5A504E90CDD614DE6C1
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/zjyPa_W5dBpWNHuakbuJKpyfVds.roa
Signing time: Fri 12 Jul 2024 04:04:34 +0000
ROA not before: Fri 12 Jul 2024 04:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 84.55.0.0/24 maxlen: 24
84.55.1.0/24 maxlen: 24
84.55.2.0/24 maxlen: 24
84.55.3.0/24 maxlen: 24
84.55.4.0/24 maxlen: 24
84.55.5.0/24 maxlen: 24
84.55.6.0/24 maxlen: 24
84.55.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a5:1d:39:ff:84:8b:f5:a5:04:e9:0c:dd:61:4d:e6:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Jul 12 04:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce3c8f6bf5b9741a56347b9a91bb892a9c9f55db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:48:99:3d:65:60:78:45:42:23:85:ca:e8:
51:90:6b:b6:5c:80:38:f4:54:a1:b4:1d:8a:18:96:
e3:62:f4:55:0c:65:06:b8:8c:eb:98:2c:19:e0:d8:
3d:f4:be:5f:f9:6b:9a:6e:fe:d9:d8:36:ff:d1:37:
03:f7:1a:34:91:97:c4:79:9a:b7:a5:fa:a7:b3:3f:
75:ea:a1:70:bf:27:df:c9:dd:61:04:15:ab:8c:c7:
ee:1e:a6:86:d0:c8:ca:e8:36:71:13:e8:35:0a:9d:
a7:da:ad:01:a5:68:47:60:4d:1d:b8:22:20:e1:a8:
da:fa:9a:31:80:b7:b7:ba:ce:63:c0:8e:4b:cd:d1:
aa:bd:cc:f9:33:b2:74:2b:f6:42:59:70:04:04:e9:
08:64:cf:84:fa:a8:c1:ea:27:0e:1a:02:bc:4a:dd:
59:90:e3:0d:25:fe:3c:86:1b:3a:3f:79:7a:fe:f1:
0e:dc:b4:7a:43:88:42:dd:74:62:17:51:33:7d:6d:
03:41:22:16:4e:80:15:e9:bd:00:cc:80:f2:e1:e7:
f9:f2:f3:1d:df:20:41:b0:5a:a3:09:1a:f9:b0:5c:
90:7e:77:f6:7a:6d:de:ca:8c:84:06:3f:fe:c3:21:
42:18:1b:9c:21:a8:c3:09:0b:a6:74:21:99:af:4b:
e8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3C:8F:6B:F5:B9:74:1A:56:34:7B:9A:91:BB:89:2A:9C:9F:55:DB
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/zjyPa_W5dBpWNHuakbuJKpyfVds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.0.0/21
Signature Algorithm: sha256WithRSAEncryption
86:3f:42:fc:e6:fb:16:60:d4:aa:d1:b5:46:ed:bf:c5:0c:a9:
08:4d:50:76:d9:32:e8:5a:32:c3:aa:21:0e:5f:bd:d7:aa:b9:
8f:96:c7:1c:8d:bc:95:cb:4f:7c:79:a7:ab:02:78:ca:c5:0e:
8b:bd:3c:d5:56:2c:82:a9:78:37:ea:ee:47:84:59:7a:04:c1:
03:ea:ff:38:8a:63:91:d2:d6:2e:cc:55:07:8d:01:2d:2a:96:
a7:83:d6:4f:52:b3:ce:06:e0:3e:69:91:80:e0:5c:5b:74:41:
b4:92:5a:b3:a3:41:12:0a:f4:d5:ce:de:68:d0:71:8d:18:29:
2b:80:eb:da:79:e6:8e:08:d0:6b:e3:78:52:e7:50:94:6a:2b:
d8:9d:e0:14:1e:ae:50:a1:4f:da:f9:d7:a1:ad:fb:cb:2c:ab:
56:f2:04:c2:01:29:eb:49:e6:7e:a8:dd:6f:43:22:3c:e2:b3:
37:06:9a:1b:d6:df:99:b3:6e:d7:14:26:31:77:c1:cc:a4:17:
79:68:f5:50:e7:6b:2e:fb:1e:a5:7f:0f:cd:6b:cf:85:ee:e0:
22:bf:77:fc:0c:5a:b2:13:5c:51:2c:57:e5:08:c2:50:a1:df:
66:ce:bd:97:69:56:d5:92:fe:93:ba:9d:e9:b8:a3:91:76:39:
a4:02:6a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 09:19:46 2024 by rpki-client on console-ams.rpki-client.org