Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/tgzV5DwxjqBISPG5rKTQBzlw7Qc.roa
File: tgzV5DwxjqBISPG5rKTQBzlw7Qc.roa (raw, json)
Hash identifier: XHveu+pvFdIpa3tmlqQVT0SbkImkXqyU/XriXxDVQ3Q=
Subject key identifier: B6:0C:D5:E4:3C:31:8E:A0:48:48:F1:B9:AC:A4:D0:07:39:70:ED:07
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018E65A09012A6C79E7D380308CB9F422D7C
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/tgzV5DwxjqBISPG5rKTQBzlw7Qc.roa
Signing time: Fri 22 Mar 2024 10:06:45 +0000
ROA not before: Fri 22 Mar 2024 10:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215590
IP address blocks: 92.246.140.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Mar 2024 14:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:65:a0:90:12:a6:c7:9e:7d:38:03:08:cb:9f:42:2d:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Mar 22 10:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b60cd5e43c318ea04848f1b9aca4d0073970ed07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dc:fb:f8:d4:14:d3:f2:ad:c4:f8:d1:62:ef:
a3:13:28:dd:5d:25:1d:1b:97:b3:14:f3:8b:1f:3b:
22:44:19:06:c4:24:6e:10:c4:bf:f0:29:29:23:11:
3d:58:38:4a:fb:8e:cf:06:86:79:9b:d1:25:8f:fb:
29:b5:74:cb:a2:c9:b9:5c:62:b6:19:ac:be:ff:87:
97:58:b6:60:f0:65:57:71:d7:6b:36:e9:90:ae:2b:
5b:66:7f:5f:5d:52:a7:8b:63:d5:62:50:42:bd:6c:
d3:fd:72:29:82:fd:de:3f:6f:77:5e:2c:3b:ae:75:
b6:20:8e:59:40:c7:a1:95:e0:60:5e:32:0c:f0:b1:
8b:35:19:c4:f4:d4:cb:74:51:1b:f5:47:3f:4c:c2:
1b:ee:20:2d:96:32:e3:48:31:17:f9:73:70:db:2a:
38:f0:c0:e5:39:a9:bc:73:3d:6a:93:66:b9:04:a3:
36:e2:b8:dd:98:27:2d:43:5c:68:2d:4a:41:e7:3b:
cb:d4:03:b9:64:c2:da:17:43:95:aa:39:93:ba:ce:
63:6a:76:74:70:f2:90:88:af:4f:31:bf:5c:2c:89:
b2:6c:de:9a:e5:e2:45:71:6e:2b:21:1d:0a:15:74:
9c:fc:45:5c:82:cb:25:e3:16:b7:2b:af:36:6d:a8:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0C:D5:E4:3C:31:8E:A0:48:48:F1:B9:AC:A4:D0:07:39:70:ED:07
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/tgzV5DwxjqBISPG5rKTQBzlw7Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.246.140.0/22
Signature Algorithm: sha256WithRSAEncryption
23:42:57:a7:71:ff:d9:6d:8f:fc:2a:95:60:9c:63:51:69:ae:
40:44:a0:5b:0f:e5:77:ad:57:52:99:3a:65:dc:7e:ed:bb:88:
d4:12:ae:b8:41:01:3d:f7:e0:9f:3b:5a:c1:b9:6a:40:fb:b7:
bf:d4:cd:9b:7a:09:6e:cb:80:03:06:f8:fe:31:67:ac:3d:42:
c6:4a:82:88:5b:35:06:1d:ea:49:e4:0f:82:98:bb:28:4c:61:
ae:46:56:22:d9:5e:67:3c:c6:a3:33:4e:06:3d:a5:16:40:06:
98:b8:f6:e8:5e:be:a6:c4:32:9b:91:a7:3a:06:98:0f:ee:76:
5d:d9:16:c5:38:a4:58:d4:fc:f3:1c:10:c0:66:2d:e6:a3:47:
2d:72:f5:20:2f:51:cf:d3:a6:94:15:d3:da:45:74:de:96:ca:
3d:ff:2b:2c:94:9f:5c:c2:14:00:29:21:11:a0:93:19:84:c2:
4e:71:af:7c:d0:cf:3b:24:dc:6b:93:03:7b:c0:a5:e5:51:6b:
03:66:03:53:66:c1:41:93:1b:61:62:10:4a:0d:b9:c7:08:b6:
ba:d5:c8:0d:47:bd:02:db:fc:66:71:99:dd:ae:82:6c:31:e7:
85:8d:14:38:1c:c4:0c:97:25:34:1b:a0:e1:d5:5e:a0:b5:20:
8a:09:56:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org