Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/0dbe12-e5d2-41b1-ab18-31245bbacd2f/1/INMKSqHCs2dtqe7mLi4NBNyqvAU.roa
File: INMKSqHCs2dtqe7mLi4NBNyqvAU.roa (raw, json)
Hash identifier: mpRaUGEhtSmDUCp0UHKhlYZuxRM2fnv10BXEgkZZ3QI=
Subject key identifier: 20:D3:0A:4A:A1:C2:B3:67:6D:A9:EE:E6:2E:2E:0D:04:DC:AA:BC:05
Certificate issuer: /CN=32697cbd221ccf61ec34fd0627b2bfebe3b41acb
Certificate serial: 0186C0F183B2E1FD88AA9376EC11E6328857
Authority key identifier: 32:69:7C:BD:22:1C:CF:61:EC:34:FD:06:27:B2:BF:EB:E3:B4:1A:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mml8vSIcz2HsNP0GJ7K_6-O0Gss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/0dbe12-e5d2-41b1-ab18-31245bbacd2f/1/INMKSqHCs2dtqe7mLi4NBNyqvAU.roa
Signing time: Wed 08 Mar 2023 11:18:18 +0000
ROA not before: Wed 08 Mar 2023 11:18:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42369
IP address blocks: 193.30.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:f1:83:b2:e1:fd:88:aa:93:76:ec:11:e6:32:88:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32697cbd221ccf61ec34fd0627b2bfebe3b41acb
Validity
Not Before: Mar 8 11:18:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20d30a4aa1c2b3676da9eee62e2e0d04dcaabc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:88:41:99:d0:5d:b1:f7:1d:d6:c7:b1:f8:0f:
24:cd:87:a3:8c:a1:17:f2:4f:aa:b9:05:a0:35:52:
f1:3f:17:c0:e2:44:db:f6:d3:c3:da:9d:28:70:b8:
61:0b:21:9b:a5:ed:a6:93:65:5d:01:66:c4:35:29:
41:30:40:a5:cd:f6:28:8d:9e:93:d6:c3:f8:40:db:
32:40:9c:a3:ac:ea:b9:e4:a6:d1:46:67:95:c1:b9:
47:72:11:2a:f1:4c:31:39:a1:9a:68:7c:64:1c:61:
96:58:13:94:69:a8:0f:e6:83:a7:6a:dd:d5:43:a2:
4f:4c:6b:7d:87:10:35:85:d8:56:5d:83:c6:93:01:
3b:49:60:bd:3a:d3:e8:04:c3:0f:6f:8e:ba:ee:e9:
97:51:bd:7f:f8:89:da:e8:eb:7e:5a:8e:5c:35:69:
04:04:33:5a:66:16:10:1d:eb:9e:73:4c:3c:62:74:
c0:ae:7f:99:74:0c:52:ca:ae:b4:38:0d:8a:b7:04:
60:09:45:c6:5d:c1:12:6d:11:f1:a6:76:dc:02:0c:
8e:28:1b:75:67:58:90:59:a0:bb:39:5d:3d:63:bc:
c4:7d:4f:81:86:12:c1:9f:a2:e0:17:2e:63:f1:e4:
f4:78:81:0e:19:c6:2c:b4:27:48:19:fe:a4:ed:a9:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D3:0A:4A:A1:C2:B3:67:6D:A9:EE:E6:2E:2E:0D:04:DC:AA:BC:05
X509v3 Authority Key Identifier:
keyid:32:69:7C:BD:22:1C:CF:61:EC:34:FD:06:27:B2:BF:EB:E3:B4:1A:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mml8vSIcz2HsNP0GJ7K_6-O0Gss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0dbe12-e5d2-41b1-ab18-31245bbacd2f/1/INMKSqHCs2dtqe7mLi4NBNyqvAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0dbe12-e5d2-41b1-ab18-31245bbacd2f/1/Mml8vSIcz2HsNP0GJ7K_6-O0Gss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.126.0/24
Signature Algorithm: sha256WithRSAEncryption
81:98:72:52:60:76:63:69:53:bf:71:ef:d1:f5:60:fc:9a:29:
35:99:db:b0:72:51:18:27:39:31:44:6d:ef:ed:3d:ac:96:6d:
aa:46:75:37:20:ea:9a:02:a3:2f:72:00:3b:3e:f4:cc:94:1d:
ee:7b:17:0b:5f:21:78:53:8f:88:8d:16:bb:9e:cc:0e:5b:23:
93:d9:54:5d:5b:a5:6a:88:20:9d:34:a8:95:78:30:fe:65:24:
d6:d4:8a:c3:5f:f4:df:08:4c:e2:52:d1:ac:dd:99:01:e4:b4:
62:75:0b:ef:a6:e2:f7:e2:bd:48:36:00:07:9b:40:92:7d:4e:
64:22:a2:81:ca:a3:3b:bf:81:bf:dd:45:80:2f:6c:ca:4e:62:
8e:1d:5c:53:81:e3:84:bb:92:0a:04:d0:f2:70:95:4f:06:03:
75:74:f4:0a:ce:4d:0c:f1:af:c6:2f:31:fc:a4:e6:95:65:c4:
17:90:e8:34:f2:1b:03:fc:cf:2e:30:d4:e5:eb:f5:88:70:61:
b3:f4:0c:8f:6a:81:5f:fd:ca:92:bf:06:9c:df:36:ba:f2:a0:
73:9b:65:1c:a9:f1:82:8a:12:6b:f5:22:ae:ed:a9:5b:6d:29:
fd:4d:bd:52:37:e6:e2:6b:2b:16:ce:ee:b5:80:07:ff:33:59:
e2:f4:bf:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:13 2024 by rpki-client on console-ams.rpki-client.org