Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Ivg-PbPnCzXETvk7DQ1t5-4-2Rg.roa
File: Ivg-PbPnCzXETvk7DQ1t5-4-2Rg.roa (raw, json)
Hash identifier: 6eDJSUYFzXEGppnZcdmF+4b2LjmM6yHRoDow5s7LXoo=
Subject key identifier: 22:F8:3E:3D:B3:E7:0B:35:C4:4E:F9:3B:0D:0D:6D:E7:EE:3E:D9:18
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01856BDCA67F057097EACB88BF4032E2B0EE
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Ivg-PbPnCzXETvk7DQ1t5-4-2Rg.roa
Signing time: Sun 01 Jan 2023 05:45:00 +0000
ROA not before: Sun 01 Jan 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6461
IP address blocks: 93.120.0.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:a6:7f:05:70:97:ea:cb:88:bf:40:32:e2:b0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22f83e3db3e70b35c44ef93b0d0d6de7ee3ed918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:41:95:1d:aa:65:c7:f5:5f:97:7b:d7:e8:59:
b6:22:ab:d6:26:53:b9:3f:ad:c3:27:81:85:8b:6a:
62:75:05:ce:8d:40:d2:3d:ff:15:0a:e6:56:fc:80:
9b:22:22:0f:a9:91:53:65:b4:79:82:06:8c:4f:00:
0a:83:79:44:5e:5b:44:05:8c:4f:7b:ad:f4:00:9a:
e8:de:b0:55:5c:bd:02:a0:b9:f1:3f:39:54:4a:a6:
03:83:e6:2a:b1:f9:5d:55:98:75:11:87:b8:02:80:
c2:36:f0:6a:f3:e4:0a:84:0a:77:88:9e:a9:bb:e0:
53:b2:47:2f:a6:79:9e:4a:07:5b:c1:86:07:d5:ce:
47:06:8d:32:59:03:77:ea:59:90:39:0b:60:b7:1b:
ee:f4:b1:dc:0b:3f:69:92:f2:e4:6d:ed:9d:14:8f:
e5:e5:69:b6:1d:8b:ee:68:45:d3:82:93:c4:56:1f:
fb:d6:16:2d:78:f9:bc:b1:26:3b:79:da:08:ce:01:
59:d4:de:90:68:46:85:9b:b6:f1:10:ab:df:d3:6d:
32:26:4d:e0:07:8d:c2:d2:68:94:0d:c6:da:64:21:
9d:f8:4a:b6:99:78:c0:e0:98:16:f6:bf:28:e1:47:
12:da:89:85:f0:ef:05:c1:83:57:ea:c3:a3:00:70:
56:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F8:3E:3D:B3:E7:0B:35:C4:4E:F9:3B:0D:0D:6D:E7:EE:3E:D9:18
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Ivg-PbPnCzXETvk7DQ1t5-4-2Rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.0.0/21
Signature Algorithm: sha256WithRSAEncryption
35:0e:b7:cf:5f:0b:76:e3:67:22:dd:7a:fe:52:85:cf:f8:19:
3f:ed:be:b6:d9:49:b3:cf:74:d7:ed:8b:e2:3e:85:60:05:c9:
f7:9b:72:7d:c3:f3:49:ff:50:38:d5:62:d3:20:be:da:3c:01:
9f:73:5c:d5:a4:92:ec:21:e1:3e:7e:0f:32:da:74:da:ad:e0:
3b:80:11:66:36:7e:85:33:76:22:17:c9:0d:cd:a6:2a:09:c7:
2a:0e:21:60:a3:cb:1b:cd:3d:f7:fb:af:76:72:fe:11:c5:8b:
e4:dc:3e:05:ca:60:09:40:20:a7:a9:ff:08:d5:ed:9d:a3:97:
5f:8b:83:4b:f1:86:b6:f1:1c:5a:6f:8b:f5:1c:5b:6e:ae:fd:
1b:47:8c:3b:fa:8d:ca:a2:7f:7c:19:65:4e:79:3f:87:f2:50:
31:ec:2e:7d:ca:51:ce:51:e3:5b:62:cd:5b:47:4d:25:22:65:
bf:6c:93:20:9f:16:b8:36:92:9a:fa:0d:07:b3:80:1a:0f:0b:
a7:c7:c5:10:56:4f:3c:49:a5:d2:8b:69:3d:be:fe:18:b4:7d:
9d:a8:bc:13:4b:95:d6:54:87:5d:28:44:97:8f:13:15:66:c8:
f1:96:a6:4c:11:c0:82:d0:e8:d6:af:3d:79:1f:24:3c:6d:2c:
bd:c4:52:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org