Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3dgDgn1f4QGjtvEM5SU_wTxJ1-M.roa
File: 3dgDgn1f4QGjtvEM5SU_wTxJ1-M.roa (raw, json)
Hash identifier: LaGjT4jwt0uLJkXa4tOIni0JIUxnU1DA68LKiRLQVlU=
Subject key identifier: DD:D8:03:82:7D:5F:E1:01:A3:B6:F1:0C:E5:25:3F:C1:3C:49:D7:E3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CB113426CE8636046F32AF2C733918B24
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3dgDgn1f4QGjtvEM5SU_wTxJ1-M.roa
Signing time: Thu 28 Dec 2023 15:37:58 +0000
ROA not before: Thu 28 Dec 2023 15:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29066
IP address blocks: 92.119.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b1:13:42:6c:e8:63:60:46:f3:2a:f2:c7:33:91:8b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 28 15:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddd803827d5fe101a3b6f10ce5253fc13c49d7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:fd:d2:70:e1:c4:24:31:78:02:05:86:89:
ef:55:49:a6:5a:77:92:50:9a:70:18:11:2b:40:bc:
3f:9d:e9:b7:19:e0:bb:dc:13:ab:46:88:4d:0d:b7:
88:a8:96:01:00:41:eb:28:23:4f:ca:ed:60:69:15:
61:03:83:4f:aa:b9:a4:5c:cf:60:c5:f0:82:10:a5:
13:cd:8a:ea:ec:7d:fd:83:32:66:f8:7a:aa:02:ad:
c6:d5:4f:c0:9d:1c:a5:0b:02:c9:5c:e7:b0:a8:e0:
dc:93:f8:8c:db:e7:d8:5b:dd:6c:96:41:8b:db:e8:
6a:10:13:4b:65:7e:2a:de:91:0d:59:a4:0f:98:4b:
61:e9:d7:5a:a8:03:ec:be:e1:e5:25:86:39:12:c6:
3b:40:f1:fc:64:9c:43:ad:25:a0:01:cd:a5:dd:67:
4d:5b:88:6e:2d:5d:4f:c1:e8:a3:5e:68:eb:ea:52:
9d:4a:e1:c7:8e:1a:44:2a:f0:d1:6b:1b:3d:26:60:
e4:cb:43:8c:c1:c1:3e:08:2c:c9:c4:c6:8d:d4:01:
65:16:ac:ad:8e:01:55:51:8e:c3:ef:e8:05:0d:07:
94:6f:bd:3a:78:97:b5:d5:52:cf:6f:f6:ed:aa:13:
54:a0:e2:a7:0c:68:67:b8:0a:e5:ad:5d:33:69:ed:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D8:03:82:7D:5F:E1:01:A3:B6:F1:0C:E5:25:3F:C1:3C:49:D7:E3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3dgDgn1f4QGjtvEM5SU_wTxJ1-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.124.0/22
Signature Algorithm: sha256WithRSAEncryption
96:a1:51:ed:b7:8f:af:2e:48:a8:8c:00:92:96:4c:f3:34:ec:
bc:66:21:21:41:15:7b:73:c7:72:97:9a:3b:97:7b:84:65:7c:
a8:af:25:67:b4:59:74:8d:05:72:14:3c:e2:08:32:5d:f5:34:
d3:3b:dd:7e:a1:a1:62:e8:25:b5:e8:0b:4c:1c:87:4e:e6:bb:
14:7d:ee:b9:89:86:86:c9:30:43:29:26:ee:94:c0:65:a8:fb:
fa:69:aa:fd:8a:b8:57:fe:74:14:37:d1:51:9e:69:14:02:ea:
59:02:4f:12:b7:9b:88:8d:2a:b9:83:e4:e1:51:06:a6:31:95:
6c:58:f0:ed:e7:95:b1:a1:5b:41:6c:c7:5b:49:75:8e:ff:b6:
41:9d:5c:a9:a9:e4:94:5d:f6:bf:9b:28:71:60:13:b2:f4:8f:
62:70:f6:30:cd:d0:b2:38:b6:e4:37:4b:12:27:c2:9f:8d:cf:
16:45:d2:89:70:22:b2:01:12:64:56:a5:b5:41:a1:92:aa:85:
78:0d:65:c0:4a:8f:c1:d9:48:0e:a0:35:73:51:b0:02:04:a9:
e3:6f:6e:8f:f4:f6:7d:12:4c:91:09:c4:6b:09:1e:df:db:ae:
87:1a:e6:ab:aa:37:e4:01:14:6b:70:bd:d1:f5:5a:c0:79:e4:
69:d4:a7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:57 2024 by rpki-client on console-fra.rpki-client.org