Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sMBDwiwQ3ZIZDrqn3dEiGamt0Jw.roa
File: sMBDwiwQ3ZIZDrqn3dEiGamt0Jw.roa (raw, json)
Hash identifier: lHOVnF26NdAKrMP51G8ttmOhm9rFm7v3HL/+K12BT/4=
Subject key identifier: B0:C0:43:C2:2C:10:DD:92:19:0E:BA:A7:DD:D1:22:19:A9:AD:D0:9C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A2CC9D70A333F22AFE590B09827DDAA6C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sMBDwiwQ3ZIZDrqn3dEiGamt0Jw.roa
Signing time: Fri 25 Aug 2023 13:02:19 +0000
ROA not before: Fri 25 Aug 2023 13:02:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 195.133.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 16:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:c9:d7:0a:33:3f:22:af:e5:90:b0:98:27:dd:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 25 13:02:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0c043c22c10dd92190ebaa7ddd12219a9add09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c5:ac:69:f0:b2:be:96:41:60:09:99:b3:96:
b0:89:b0:1b:78:a1:d9:f2:07:e2:7a:f7:d0:1b:a5:
de:68:03:39:75:ec:75:d6:4a:47:78:da:12:95:1a:
0b:e0:8b:0d:41:fd:57:00:97:61:c9:f5:02:31:17:
65:12:db:59:57:6f:d9:0e:53:1c:53:a2:05:d2:1d:
aa:3b:e2:a9:cd:9e:49:aa:4e:d3:52:3b:0e:4b:9e:
81:3b:d9:cc:67:6c:7c:16:10:c0:74:a2:66:b6:3e:
2d:68:6b:e2:fd:b4:f7:1f:6c:3a:56:ff:75:19:13:
39:a4:1e:1b:13:56:f7:b4:75:dc:82:e7:30:a3:ed:
26:c1:79:d2:4a:52:0c:f5:45:e8:35:3e:1a:44:6e:
35:94:d2:5b:21:37:39:cd:bc:fb:b2:70:c3:15:3a:
65:93:f5:17:c6:37:ba:e6:c0:a8:fc:94:cc:56:d5:
8e:cb:a8:26:80:c8:5b:29:9f:0b:38:87:98:a5:96:
7a:60:b7:64:43:d4:31:7e:3f:9d:3c:01:2f:e5:98:
a2:ba:21:fd:f0:3b:5a:58:57:df:3e:a7:f3:73:6a:
d7:63:a9:5c:78:39:0b:a8:cf:f0:65:39:b9:df:3a:
c2:d3:c5:7a:89:ad:8b:36:9e:82:2e:69:ad:a2:3e:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C0:43:C2:2C:10:DD:92:19:0E:BA:A7:DD:D1:22:19:A9:AD:D0:9C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sMBDwiwQ3ZIZDrqn3dEiGamt0Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.37.0/24
Signature Algorithm: sha256WithRSAEncryption
91:26:04:83:34:3c:aa:43:4f:6b:9b:fa:17:74:29:ae:53:e0:
97:05:27:ec:ed:c1:bc:ad:c6:8e:fd:dd:c3:8d:71:43:13:bd:
62:3e:e2:0f:95:3d:7d:ea:ab:fe:a0:bb:2b:f5:13:49:94:87:
60:d0:a2:18:4a:dd:81:82:71:d3:d1:0c:2a:3d:11:d4:82:48:
35:83:26:a5:e5:6c:51:02:ee:aa:94:cc:2f:69:bf:34:2c:a9:
b5:8d:ad:81:d1:f1:33:7f:b3:4c:6a:70:31:63:36:88:a8:2f:
ea:b1:27:6f:c8:14:91:46:d8:a2:9e:cc:3d:50:f5:aa:04:0b:
fc:34:2e:3f:19:a6:11:9a:23:0e:46:37:df:88:6a:bf:92:4f:
9b:86:3b:3c:9e:5a:c7:be:6f:e4:19:4b:22:d1:8c:77:d1:04:
d2:9d:77:9b:6d:9e:89:69:14:52:92:ab:5d:fc:52:0d:63:63:
7d:f2:50:ea:3f:38:c7:cd:07:ec:11:40:a5:a6:9d:f0:dd:99:
ec:c4:28:64:31:72:ec:e7:28:43:4a:34:00:cc:b5:f8:2e:ae:
8b:c6:df:1a:1c:2c:57:75:8b:ac:be:d4:da:7f:9b:fa:28:72:
b1:25:fc:81:2f:05:b9:1c:7f:cc:da:c1:be:62:20:e0:a2:16:
9f:c8:a8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org