Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-GBMBRdeswapLbBEsWwcIsm7F5g.roa
File: 1-GBMBRdeswapLbBEsWwcIsm7F5g.roa (raw, json)
Hash identifier: NW5GdZ4HywhRXVRUrp/Kjwq1V4AtU77Fma8V8uBzlb8=
Subject key identifier: F8:60:4C:05:17:5E:B3:06:A9:2D:B0:44:B1:6C:1C:22:C9:BB:17:98
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01929F1C3011DE8A2E4CDEDBBB8819DFD6E5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-GBMBRdeswapLbBEsWwcIsm7F5g.roa
Signing time: Fri 18 Oct 2024 10:11:17 +0000
ROA not before: Fri 18 Oct 2024 10:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215346
IP address blocks: 195.133.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 16:34:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9f:1c:30:11:de:8a:2e:4c:de:db:bb:88:19:df:d6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 18 10:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8604c05175eb306a92db044b16c1c22c9bb1798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a2:e0:4c:ae:98:2e:3a:53:b0:fe:4b:c2:e9:
e0:fb:04:50:86:1f:f8:df:ab:dc:de:25:3a:77:c8:
50:79:ae:03:40:19:ac:50:d3:08:7b:e2:51:00:02:
3b:e1:60:3d:3e:76:76:34:10:42:76:50:c8:30:58:
01:4f:0b:f3:8c:9a:47:b1:e6:a3:d0:ab:9a:d5:bb:
dc:b8:51:2a:b2:5f:17:95:0d:51:5b:3e:f9:24:14:
71:17:f6:0e:85:56:23:81:d9:2e:48:f0:e8:e6:03:
11:e4:40:54:87:23:56:52:2e:7b:bf:4b:c2:b1:a1:
1b:e1:18:4c:76:bb:45:93:93:6e:02:99:fd:30:a3:
20:62:5c:4a:95:57:bb:f8:21:68:c8:b1:eb:0d:31:
3d:2b:75:c4:4a:29:70:75:d0:93:c2:60:c8:14:36:
1f:2b:8f:88:ea:bc:bb:9d:59:43:36:05:e6:4c:ee:
e5:1e:f7:e3:9b:90:8e:1d:97:8c:fe:73:2b:e4:1b:
34:bb:79:70:b6:7c:19:a8:1c:92:c8:1f:c8:31:70:
e8:d0:7e:82:92:38:d2:da:ad:d3:43:ce:5d:1f:7f:
8c:87:3a:ac:fb:d0:09:28:47:06:5d:0b:30:c1:80:
cc:c3:a9:c7:21:b2:bb:fd:fa:32:ad:de:3b:59:6f:
4a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:60:4C:05:17:5E:B3:06:A9:2D:B0:44:B1:6C:1C:22:C9:BB:17:98
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-GBMBRdeswapLbBEsWwcIsm7F5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.94.0/24
Signature Algorithm: sha256WithRSAEncryption
31:67:f2:1c:a9:ec:4f:65:ba:f2:ca:8b:ce:a5:08:ac:af:00:
c7:6f:3a:49:46:f6:a2:6f:eb:74:de:9c:34:b6:a7:e2:e2:68:
08:67:92:f9:57:e2:32:98:50:42:dc:cc:2a:d1:ad:c0:b8:58:
6e:50:53:a3:24:27:5f:85:76:30:4a:0d:b4:1a:45:79:62:4e:
b9:54:10:e9:ef:fb:46:ab:4e:3b:76:7d:ae:be:ff:3f:1e:7a:
21:9d:b3:25:01:e5:2a:4e:f9:08:e9:12:fb:c9:d1:e5:70:0e:
2d:b9:e4:a8:17:29:15:66:84:8a:54:68:69:c7:04:3f:81:76:
e7:8e:24:c7:3b:97:b4:2b:70:50:b0:4b:d4:0b:49:30:94:5b:
91:f3:c3:6f:70:f2:40:28:47:a1:d2:5f:03:4d:7e:85:e8:8a:
37:24:c3:cf:4a:54:4f:31:5d:20:8c:5a:36:26:e7:3f:6d:cf:
28:af:8b:06:c4:8a:6e:3a:88:cd:96:a0:17:2c:7d:d1:6b:5b:
ad:36:28:ed:7a:e0:a3:06:05:ae:7b:12:0c:e0:fb:eb:f2:c9:
40:c0:59:29:14:73:f5:c0:66:65:fa:95:cd:1a:86:0e:9b:f7:
46:dc:db:b7:ad:f7:9b:8f:11:4b:9c:23:34:8c:33:57:c0:2e:
ec:d6:c9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:15 2025 by rpki-client