Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/IMnR3mSiInPhAMmfsMHsTwYSgEs.roa
File: IMnR3mSiInPhAMmfsMHsTwYSgEs.roa (raw, json)
Hash identifier: 1K5LCgW1r42T6m/g1QQPQtL/cHZv8vf/CgI+sq9GiDE=
Subject key identifier: 20:C9:D1:DE:64:A2:22:73:E1:00:C9:9F:B0:C1:EC:4F:06:12:80:4B
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 018CC3B7479AAB94CE5F4246B8AF5994E437
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/IMnR3mSiInPhAMmfsMHsTwYSgEs.roa
Signing time: Mon 01 Jan 2024 06:30:17 +0000
ROA not before: Mon 01 Jan 2024 06:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 195.242.140.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 11 Mar 2024 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:47:9a:ab:94:ce:5f:42:46:b8:af:59:94:e4:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jan 1 06:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20c9d1de64a22273e100c99fb0c1ec4f0612804b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bd:b3:b3:86:0b:b5:54:40:01:41:86:f4:32:
a0:06:39:46:bd:b3:65:00:13:15:a1:5c:c4:58:ca:
70:a4:92:78:02:0c:db:71:cf:5a:16:a2:22:a9:8f:
1f:15:53:3e:65:42:cd:54:0c:46:f4:c6:0a:b4:86:
8d:56:a8:27:33:c8:16:7f:cc:d3:76:83:83:25:60:
99:20:57:1b:47:bd:3c:5d:f9:cf:f1:59:76:cf:40:
32:69:4b:30:e8:33:fe:1f:a6:a6:73:92:2e:21:fe:
55:93:28:54:b6:c1:6d:b1:3b:3e:27:2d:60:db:80:
a6:73:14:2e:ac:e6:97:bd:7d:e8:77:3d:44:5c:6e:
2b:1a:91:42:67:f4:75:74:b5:03:49:3d:e0:d8:6a:
46:3e:de:df:25:02:0f:19:19:ed:d0:2c:ca:67:b3:
64:d2:00:15:67:8d:4d:94:16:73:00:82:ed:93:c5:
fa:f9:32:44:4a:b4:28:e3:8e:fc:9f:4a:2c:cb:ba:
4e:9f:fc:9f:73:23:c2:48:9b:9d:d9:bd:bb:42:48:
10:63:91:9d:55:c1:2f:da:08:1a:ee:5f:ce:e8:b5:
4f:5c:4d:8a:ed:bb:7a:c5:24:bd:71:40:95:ac:42:
ba:9e:2a:1a:a1:d4:85:a7:6f:a2:3c:c8:fa:a2:5e:
5e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C9:D1:DE:64:A2:22:73:E1:00:C9:9F:B0:C1:EC:4F:06:12:80:4B
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/IMnR3mSiInPhAMmfsMHsTwYSgEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.140.0/23
Signature Algorithm: sha256WithRSAEncryption
83:f2:16:21:57:74:b1:5e:05:bf:9b:23:df:4d:59:d7:41:52:
73:fd:68:72:de:ee:bb:e5:46:63:1d:7e:74:14:33:9a:b7:ee:
89:da:bf:de:83:e6:6e:2d:2f:4d:67:53:63:02:80:73:3a:91:
11:e0:86:18:a6:93:fc:a7:67:50:aa:2c:dd:ac:65:65:40:5b:
83:87:30:c9:ff:4f:df:3d:8c:81:88:26:66:d6:e3:e0:4f:b0:
1b:57:92:1b:16:74:99:c2:b6:98:6c:1e:89:b9:8c:d5:8c:c8:
79:ec:8f:be:aa:29:15:bc:ff:65:07:24:3a:85:2f:d3:29:dc:
1c:74:15:13:e7:79:b9:b3:75:b2:42:c9:b4:11:14:19:6b:c7:
c5:48:7a:6a:4e:6b:b4:a1:77:ae:2b:05:5b:f8:0a:0a:db:35:
51:44:d6:11:e7:c5:bb:f2:91:09:20:d6:ac:c0:67:30:f4:83:
d2:e1:43:db:7e:1d:21:62:3c:20:21:5e:b1:56:39:31:fe:b6:
ed:e3:4b:d4:0a:56:38:50:46:27:1d:0f:03:9e:19:d8:3f:24:
fd:71:0e:6e:fc:2b:f5:07:01:c5:e3:37:0d:40:46:5c:00:ea:
25:f6:eb:41:0b:24:a5:41:ac:06:b8:ba:c7:d5:c1:74:57:9c:
2d:7a:82:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:35 2024 by rpki-client on console-fra.rpki-client.org