Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ix3Q7rz3li33yLyqOKfGrfL0f3k.roa
File: ix3Q7rz3li33yLyqOKfGrfL0f3k.roa (raw, json)
Hash identifier: o0ch3F/gJsv139AGb92FQy+IAB3Mk/CsZ3Vn13TD/9I=
Subject key identifier: 8B:1D:D0:EE:BC:F7:96:2D:F7:C8:BC:AA:38:A7:C6:AD:F2:F4:7F:79
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01908C6CB903E985AEFE231891718DE066A1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ix3Q7rz3li33yLyqOKfGrfL0f3k.roa
Signing time: Sun 07 Jul 2024 09:00:53 +0000
ROA not before: Sun 07 Jul 2024 09:00:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 92.114.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Oct 2024 11:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8c:6c:b9:03:e9:85:ae:fe:23:18:91:71:8d:e0:66:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jul 7 09:00:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b1dd0eebcf7962df7c8bcaa38a7c6adf2f47f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:63:47:72:ea:c1:d1:db:f3:5e:f3:ee:16:73:
fd:91:3c:8f:68:97:1c:33:eb:86:5b:1c:fd:f6:34:
9e:de:4c:ea:ce:72:76:cf:33:79:1e:5e:c0:fc:80:
9a:b6:a9:33:6d:5e:de:6a:e1:0e:7a:2a:d8:9e:8b:
24:25:96:e9:e9:b2:9c:d0:c4:81:d8:58:51:33:ee:
cc:86:82:52:42:a8:d3:59:0c:c8:bb:5d:d9:56:ae:
a6:1d:9d:9a:fa:a8:8c:89:d2:10:ea:72:8e:58:7c:
d6:85:24:3d:f6:ea:6a:a7:fb:45:30:03:a8:23:c0:
09:b4:e6:85:31:8f:b2:2c:20:c9:70:7f:40:95:ec:
62:46:3f:53:70:20:19:7c:57:a6:6b:ce:20:5d:3f:
76:6d:63:02:66:00:6e:f9:03:c5:12:14:74:ac:43:
bf:0b:82:23:8b:0e:4a:cc:55:9e:3e:a0:3f:95:9d:
88:4b:f0:a3:f2:4d:f6:8d:8f:5b:2a:f2:62:c9:a9:
d2:50:5e:3b:03:28:13:00:6b:dd:7a:65:43:85:fc:
93:3a:43:b4:a8:d6:c7:fc:60:ba:60:49:ed:68:c9:
0a:f8:5f:d0:ea:7a:91:dd:f7:b0:7e:10:59:5d:30:
51:a5:87:ff:81:b5:5d:90:8a:43:79:5f:07:f8:e3:
71:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1D:D0:EE:BC:F7:96:2D:F7:C8:BC:AA:38:A7:C6:AD:F2:F4:7F:79
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ix3Q7rz3li33yLyqOKfGrfL0f3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.114.40.0/22
Signature Algorithm: sha256WithRSAEncryption
43:f7:13:be:5f:0f:90:96:fa:de:df:88:bb:48:c0:f8:33:39:
f2:59:a4:30:1f:6e:cb:a7:8c:fe:58:ba:9a:1e:6c:52:1d:03:
97:7b:fb:06:b5:4a:8d:d6:d9:2f:99:fd:92:10:fb:48:e3:0a:
21:43:a9:fc:c2:49:81:1b:77:b3:4a:ce:bd:b9:2b:48:9a:32:
b8:ea:c6:37:4f:90:91:25:13:de:a4:36:3d:42:14:66:06:63:
f9:9e:09:bd:95:3c:f8:38:eb:18:66:ee:31:77:9b:9c:75:4e:
e5:38:68:4c:a3:d3:ea:1a:48:a8:75:ce:fd:9d:ef:44:95:0c:
91:ff:28:42:8b:fd:7e:f8:30:b3:d4:79:72:f8:4a:ca:98:75:
6a:99:a1:da:27:31:61:e2:2d:f6:76:89:10:9d:eb:81:27:02:
5f:a6:3b:16:d0:bc:74:28:17:65:dc:33:7c:b9:67:88:4c:40:
19:64:d9:7b:c8:c1:d3:94:5b:ff:c7:dd:5c:1c:94:a6:b8:c3:
8c:0c:c2:ed:23:5e:fe:89:b9:33:71:df:ad:76:72:86:12:32:
25:57:f9:c5:9c:8b:8f:b2:31:d7:46:e3:96:8a:e4:a0:1f:80:
a5:35:7f:59:1c:1c:6d:5e:32:55:6e:78:a9:8c:87:92:8a:6b:
a3:cf:fc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 17:29:47 2024 by rpki-client on console-ams.rpki-client.org