Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rzjKhPJgS-OMZmSOEJrQi94Apig.roa
File: rzjKhPJgS-OMZmSOEJrQi94Apig.roa (raw, json)
Hash identifier: FKezFMppgmhdnx+n758XTvypyldZ9WKVstLAG2CiXo0=
Subject key identifier: AF:38:CA:84:F2:60:4B:E3:8C:66:64:8E:10:9A:D0:8B:DE:00:A6:28
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01902BFFFC5FCC1CE7F862F2FBA5F85C5894
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rzjKhPJgS-OMZmSOEJrQi94Apig.roa
Signing time: Tue 18 Jun 2024 15:38:34 +0000
ROA not before: Tue 18 Jun 2024 15:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397423
IP address blocks: 91.92.195.0/24 maxlen: 24
94.103.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 05:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:ff:fc:5f:cc:1c:e7:f8:62:f2:fb:a5:f8:5c:58:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 18 15:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af38ca84f2604be38c66648e109ad08bde00a628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7d:b5:a4:ed:f5:fe:f7:2b:05:7b:62:31:ce:
c5:c4:1f:3a:f6:4c:17:90:b7:50:58:97:2a:2a:2f:
83:3d:75:c0:d7:d4:5f:c4:fe:3f:5b:6c:3c:c4:d8:
22:9a:77:ae:12:d4:a2:e9:86:f0:ea:ec:c0:8d:8c:
87:dc:5a:1b:f2:c7:43:67:ba:19:7c:25:80:e3:1e:
6c:e2:7f:92:d1:00:e8:33:5e:53:c5:17:b2:78:ac:
a9:6f:c1:3a:6c:a7:6c:1e:19:d6:e6:2d:65:3c:a6:
81:56:da:bf:7f:2f:44:54:01:07:25:db:91:0e:92:
9c:7b:e4:7e:0f:ae:67:ed:11:01:89:24:63:53:eb:
f6:4e:d3:8f:8f:84:90:8e:c6:8d:c6:3f:bc:1e:61:
28:00:98:64:e6:c8:f2:ef:0d:2a:cd:81:20:8f:82:
7c:45:cf:e9:6a:03:48:d1:a7:6b:9e:e3:ba:05:73:
95:93:97:33:0a:fb:7d:d8:c3:1d:09:07:46:20:af:
a4:2e:f9:38:7e:78:91:eb:ce:18:81:e9:47:d1:60:
4e:44:9a:63:c7:65:38:91:14:5c:b6:53:26:b9:54:
3b:6c:98:b5:e4:5c:e9:f5:8a:e1:3c:3a:fc:1b:ec:
10:ec:d4:4b:7f:df:9a:dc:c3:cc:c3:dd:d6:b6:0d:
09:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:38:CA:84:F2:60:4B:E3:8C:66:64:8E:10:9A:D0:8B:DE:00:A6:28
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rzjKhPJgS-OMZmSOEJrQi94Apig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.195.0/24
94.103.127.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ed:af:fe:0c:e1:8b:ab:a8:74:ac:97:9f:76:bd:91:2c:b3:
7a:6d:68:8d:94:8f:6d:f8:b0:56:72:5b:58:85:23:7d:68:65:
b0:82:6b:85:ed:ad:f0:99:31:9c:0d:1d:6b:82:70:8d:6c:d5:
70:c1:ab:38:38:9c:cb:c1:ad:ae:5a:27:14:d7:a8:10:e8:ef:
0a:97:06:01:53:1b:54:83:cc:21:cd:7d:72:54:89:51:b7:40:
87:c4:f2:74:83:c9:2a:b4:e9:6a:b7:56:f8:29:9f:dd:58:64:
83:7c:ce:a8:1f:93:bb:6e:73:ba:d9:1e:8a:1d:08:e5:d4:27:
fa:77:0e:c9:3d:17:19:6a:68:80:1d:76:d5:c9:74:21:15:07:
0f:57:16:5d:1d:2f:94:da:5e:56:d6:c3:25:90:2c:a2:00:12:
76:d8:e4:df:b9:51:44:4c:c9:38:ac:55:a4:24:8f:de:5d:de:
ae:e5:fd:98:1a:06:bb:c2:6e:4d:8a:a3:2b:e1:05:8b:93:7a:
97:63:54:4b:c5:16:6b:9a:2e:3c:3d:ff:04:bc:17:95:f2:ee:
32:8c:ee:4d:19:c2:4a:fd:90:79:a9:57:26:b2:de:71:4a:ec:
4c:48:24:1b:20:58:a7:2a:65:6f:24:15:8c:96:6a:69:2b:68:
75:90:c5:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 09:52:34 2024 by rpki-client on console-ams.rpki-client.org