Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/SmMrt_UECpIGIeNgfVDuZcFL84M.roa
File: SmMrt_UECpIGIeNgfVDuZcFL84M.roa (raw, json)
Hash identifier: 2qbEvCjX2677KKs5XXXViBmroRaI7rfqZT9kmZ2hLb4=
Subject key identifier: 4A:63:2B:B7:F5:04:0A:92:06:21:E3:60:7D:50:EE:65:C1:4B:F3:83
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 018571B0D3AC0355697F314388192D0492EA
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/SmMrt_UECpIGIeNgfVDuZcFL84M.roa
Signing time: Mon 02 Jan 2023 08:54:51 +0000
ROA not before: Mon 02 Jan 2023 08:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35388
IP address blocks: 85.209.24.0/22 maxlen: 24
2a09:9240::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:d3:ac:03:55:69:7f:31:43:88:19:2d:04:92:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Jan 2 08:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a632bb7f5040a920621e3607d50ee65c14bf383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:54:25:d4:a6:7d:41:3a:51:26:6e:9b:14:25:
ca:7e:7d:dc:e2:2d:fa:75:da:ae:b3:02:07:fd:28:
21:43:9c:98:16:97:3b:ab:87:dd:c9:16:ec:08:7c:
5a:a3:0c:9e:69:4d:82:ad:b3:55:ed:61:04:b1:eb:
7f:81:8d:44:f3:c7:be:2d:9e:b7:69:26:4f:b9:27:
8f:a5:03:1f:4e:f1:8c:0d:2c:77:6a:e3:cd:19:6c:
f5:c1:f1:23:88:9f:02:7e:13:9c:72:9a:12:8d:43:
71:f0:1c:f8:03:7a:87:38:de:50:bb:30:15:24:cb:
72:62:90:25:0f:fe:d3:8e:8c:6a:4c:9f:6d:15:d2:
30:7d:fc:4a:e4:d7:44:2a:1c:6f:5d:31:96:55:c8:
e9:2c:4b:f6:66:60:bf:c7:aa:40:80:f3:7c:5e:b1:
41:24:68:b8:8d:b4:6f:27:77:dd:5f:64:d7:c9:79:
23:a7:42:ab:08:fa:d9:93:0f:0f:0d:2d:b0:b1:f7:
3b:ac:08:8c:49:8a:79:2e:7c:12:9b:c3:cc:2d:26:
cf:76:ad:7f:06:40:b6:ff:fc:13:81:0a:0c:d4:29:
1a:ee:2c:d2:d5:ef:99:86:f5:b9:65:de:c0:f0:d1:
b4:85:44:07:e9:1f:c8:e9:44:14:07:39:4a:4e:cd:
e4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:63:2B:B7:F5:04:0A:92:06:21:E3:60:7D:50:EE:65:C1:4B:F3:83
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/SmMrt_UECpIGIeNgfVDuZcFL84M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.24.0/22
IPv6:
2a09:9240::/29
Signature Algorithm: sha256WithRSAEncryption
b0:30:7e:d8:a8:a5:10:b6:70:d2:cd:30:15:a4:ec:74:eb:71:
b6:0c:41:c4:ea:93:e7:e4:4d:36:9c:08:7f:e9:7f:66:f4:44:
19:83:3c:2b:3f:9c:ba:77:1e:f2:2f:c9:f5:bc:8f:26:cb:a2:
df:79:7a:59:05:4a:3e:01:3f:7c:18:0c:5c:9b:c9:3e:fd:d1:
b5:9e:01:aa:8b:42:6b:40:e5:e5:87:1d:09:01:0d:a3:d8:fb:
71:84:ba:05:dd:4b:33:1d:b4:f0:29:11:c8:7f:70:58:3a:14:
4b:61:8f:0c:98:a6:56:1a:6a:75:8c:90:cb:fa:86:c8:68:a5:
34:f7:68:84:bd:d3:75:22:a0:7b:b9:78:4c:57:a3:87:8b:14:
5c:fa:62:44:1e:6b:0a:9d:41:e8:b0:ed:8f:b0:d2:e4:f0:f2:
26:d6:99:59:e0:68:c0:2c:83:1d:b7:48:97:0b:18:3f:86:d7:
4b:4b:e5:82:51:8a:e9:67:4b:6e:a3:cb:fc:8a:b5:ca:14:3e:
c2:cb:59:49:05:ed:7d:26:14:cd:c7:a4:c6:d0:da:42:22:37:
d0:eb:71:85:46:04:bc:55:06:d7:dc:52:c0:6c:f4:13:7b:a5:
94:a1:c5:0a:75:37:73:16:af:77:d4:99:42:4a:93:ec:b8:65:
55:7e:b8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:14 2024 by rpki-client on console-fra.rpki-client.org