Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/hDjzqZaeAObOUHMH0rFNtAalDaU.roa
File: hDjzqZaeAObOUHMH0rFNtAalDaU.roa (raw, json)
Hash identifier: Ik6FPqyqieeSI9hv72FFBu2IOuwxJP99Rw2XA0yDGRs=
Subject key identifier: 84:38:F3:A9:96:9E:00:E6:CE:50:73:07:D2:B1:4D:B4:06:A5:0D:A5
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 019278884F028560E266ECB0CA16EFA745EA
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/hDjzqZaeAObOUHMH0rFNtAalDaU.roa
Signing time: Thu 10 Oct 2024 22:24:11 +0000
ROA not before: Thu 10 Oct 2024 22:24:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 86.110.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 13:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:78:88:4f:02:85:60:e2:66:ec:b0:ca:16:ef:a7:45:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Oct 10 22:24:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8438f3a9969e00e6ce507307d2b14db406a50da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:de:75:40:ba:35:8a:ac:fe:ff:fb:14:65:80:
1d:fa:69:b0:be:5d:97:14:cf:b3:78:0c:af:8b:ef:
67:eb:4f:5d:f5:f3:e3:a1:3b:03:4c:59:e6:c3:6c:
14:0a:3d:e3:f6:6f:a1:6d:6e:d3:11:9c:af:3f:f8:
5c:f9:39:cb:fa:49:c0:ae:04:af:73:a6:5c:e1:b2:
19:cf:6d:a6:58:cb:41:c2:8d:04:f5:9e:fc:8d:e3:
f2:2d:12:ed:e4:47:57:59:2b:cb:91:43:ef:dc:3a:
99:b8:e1:32:6e:41:d3:f4:e5:12:a3:c4:79:27:18:
9f:6c:36:09:9e:d0:7b:21:50:25:4d:71:1a:c5:38:
6f:41:6c:b1:d5:6e:24:4b:1e:f0:5a:0a:a5:a5:ee:
de:ca:75:fd:60:fc:e2:c5:9f:64:b0:a6:05:5c:30:
af:a9:01:59:aa:bd:10:b0:c4:c0:7a:cf:a0:a5:a2:
0f:35:bb:28:9e:4d:7a:10:08:45:a2:34:55:e6:8e:
d7:cc:09:fe:82:f0:c0:c6:98:7d:65:54:35:f7:e2:
1e:68:be:75:29:e1:26:1d:c1:93:b4:40:d4:d3:d2:
af:c4:c7:24:db:c8:1a:a3:3e:2b:ad:42:06:70:50:
54:3a:cd:e2:f2:96:2d:4f:49:ea:1c:f4:65:05:18:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:38:F3:A9:96:9E:00:E6:CE:50:73:07:D2:B1:4D:B4:06:A5:0D:A5
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/hDjzqZaeAObOUHMH0rFNtAalDaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.58.0/24
Signature Algorithm: sha256WithRSAEncryption
91:32:f5:56:5c:f8:23:5b:45:78:47:87:10:4e:73:18:25:7a:
95:53:60:24:bd:7a:07:cb:40:53:ad:d1:23:42:6f:ea:7d:23:
89:54:42:b9:0b:03:7d:ca:8e:f6:85:e0:fd:22:fb:47:3a:07:
01:4b:90:b2:22:22:3f:be:fe:5a:03:fb:43:5a:d4:b2:05:ee:
b1:d6:fb:51:1e:bd:83:a4:f6:d4:17:5e:c8:b4:ce:f7:57:f4:
b1:2d:c1:37:5a:87:da:e3:1d:cf:43:a3:37:7f:cf:44:63:b3:
38:37:3a:b7:85:7f:74:72:74:7d:0a:0d:50:0b:c5:8a:2c:de:
72:ad:0d:32:a3:6e:e3:70:1e:8a:ac:85:ba:83:77:c2:90:cf:
12:ce:d6:e7:d2:dc:5c:38:a1:36:8a:3d:c0:01:04:f6:35:b2:
60:b3:d1:ff:12:6f:1a:2a:8a:d8:62:0c:94:9f:77:2d:9c:ac:
29:e3:8c:a0:f6:96:eb:7a:03:ec:71:f9:aa:3f:90:12:6f:08:
1d:0b:82:c7:1d:16:c2:7a:77:f5:3b:04:a0:97:2e:78:df:03:
0e:85:d2:65:69:52:20:1b:35:1c:ce:88:e0:3c:6c:92:ff:16:
6b:14:a1:66:92:f8:38:aa:b1:ff:98:8b:ab:0e:83:65:8d:65:
9c:66:fc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 17:38:58 2024 by rpki-client on console-ams.rpki-client.org