Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/YTcys9hxtVtgKjWE-PIKIA5q7Q8.roa
File: YTcys9hxtVtgKjWE-PIKIA5q7Q8.roa (raw, json)
Hash identifier: /sUJuBykZ9SgjC1lxqXAmqpuNeH+gx+Og7WgCptCkD0=
Subject key identifier: 61:37:32:B3:D8:71:B5:5B:60:2A:35:84:F8:F2:0A:20:0E:6A:ED:0F
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 0192EEC9E54CE85F61B99C18868A67DC110F
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/YTcys9hxtVtgKjWE-PIKIA5q7Q8.roa
Signing time: Sat 02 Nov 2024 21:31:01 +0000
ROA not before: Sat 02 Nov 2024 21:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 86.110.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 07:28:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ee:c9:e5:4c:e8:5f:61:b9:9c:18:86:8a:67:dc:11:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Nov 2 21:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=613732b3d871b55b602a3584f8f20a200e6aed0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ee:03:8b:41:b1:8c:c4:e6:ff:c9:e5:29:2b:
11:ce:93:69:5b:b2:c9:97:a0:ff:7c:8f:be:fb:9d:
ae:07:e2:ab:fe:5d:3c:8c:63:3e:aa:79:ad:1e:55:
1d:5b:93:7f:69:d2:34:9d:8d:43:b9:ed:0e:b2:5f:
57:ff:b7:3d:db:a7:95:d7:9a:d5:d5:8a:c0:f9:d2:
44:b8:ea:7d:4c:a8:ef:b0:1a:de:f5:a9:19:29:b5:
d3:fa:61:3f:67:5c:dc:3a:ba:63:df:ae:a1:4c:dd:
08:30:46:86:f7:62:17:c1:7c:7c:f7:f3:cc:43:82:
d0:71:35:0d:c9:8b:23:76:d5:3e:14:a1:a1:71:dc:
c0:af:1a:f7:fa:b3:4e:f6:5e:1c:0e:49:82:5f:ce:
8a:75:56:dc:13:60:61:68:53:16:8e:86:5a:24:0a:
30:ab:be:39:5f:bd:e1:62:db:a0:de:94:65:c6:d1:
a0:13:bc:ba:88:5f:cb:1f:2c:2e:0e:0a:12:12:6a:
21:2b:ae:3d:a0:10:0f:0c:c3:68:cc:a7:1e:a8:2b:
9b:82:c2:0e:03:ba:d3:c6:89:02:ad:3f:6f:90:42:
02:d4:1b:b9:5a:27:7f:8b:80:e9:72:1f:44:d5:2f:
61:79:04:26:5d:47:ae:57:12:54:19:e0:15:1d:c2:
be:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:37:32:B3:D8:71:B5:5B:60:2A:35:84:F8:F2:0A:20:0E:6A:ED:0F
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/YTcys9hxtVtgKjWE-PIKIA5q7Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.53.0/24
Signature Algorithm: sha256WithRSAEncryption
41:ca:76:9b:df:d7:ff:8a:de:19:06:8d:66:e1:c4:5c:7c:04:
70:42:91:80:98:1c:d2:1f:3b:ef:f6:6b:2d:77:b9:5c:94:e8:
ae:81:b8:35:d4:0f:ea:e0:5b:48:f4:21:2c:48:ae:30:c1:d7:
ec:d8:c1:69:2c:75:1d:3d:68:a5:39:6b:15:6f:66:27:84:15:
93:f0:62:22:b2:66:4e:3f:f8:9f:b9:26:79:29:c9:04:6e:f1:
45:56:23:cd:c1:b5:63:34:d1:82:51:12:cf:4a:ee:01:69:cc:
c8:82:a8:b1:00:59:df:74:51:39:67:59:5a:cb:ed:5b:a8:ba:
26:2e:3b:1b:3f:6f:85:cd:69:6d:14:35:42:27:4b:7a:4e:de:
63:60:20:ce:64:d0:fa:60:33:18:6f:08:d0:73:09:05:8d:4d:
ca:81:c1:e1:27:c5:10:5d:93:41:a8:77:a1:06:ef:10:60:9a:
a1:a3:9d:fa:12:4b:12:bc:f2:91:6f:4c:3c:63:7e:f6:18:6f:
60:f0:05:1f:00:fb:36:1c:c9:1f:70:fb:31:17:be:88:9d:44:
b7:76:49:a4:92:76:f4:4f:81:11:70:3b:8e:b8:f9:51:27:1a:
92:40:f4:10:66:d6:99:ee:4c:a6:c6:35:f5:83:2d:55:45:11:
3b:28:38:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:38 2024 by rpki-client on console-fra.rpki-client.org