Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/SvMz0900lOk_3RBN-PFlWX5xuCs.roa
File: SvMz0900lOk_3RBN-PFlWX5xuCs.roa (raw, json)
Hash identifier: 8e7quo5CoTsNfwO6dMRnkDfc1eC/ebELb0Jvw8tR0pg=
Subject key identifier: 4A:F3:33:D3:DD:34:94:E9:3F:DD:10:4D:F8:F1:65:59:7E:71:B8:2B
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 0193E398C4097B4AAB55E230F7F1EE3483F1
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/SvMz0900lOk_3RBN-PFlWX5xuCs.roa
Signing time: Fri 20 Dec 2024 10:24:19 +0000
ROA not before: Fri 20 Dec 2024 10:24:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 185.220.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:98:c4:09:7b:4a:ab:55:e2:30:f7:f1:ee:34:83:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Dec 20 10:24:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4af333d3dd3494e93fdd104df8f165597e71b82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3a:bb:d2:8b:20:89:45:15:aa:c6:cf:e3:87:
a3:fa:05:9e:27:e3:8d:10:41:3f:c3:df:6c:1b:bd:
fb:81:68:86:35:cd:c7:33:f2:bd:a0:88:8a:23:5c:
d6:bd:92:0b:83:c8:4d:0c:8f:7f:7d:8e:f1:5f:23:
bf:83:05:67:87:7b:d3:90:22:d2:71:4f:ea:53:6f:
bd:46:c3:22:be:d6:74:4b:a8:83:14:c3:89:6b:a3:
19:99:12:23:46:61:b9:9a:f7:66:dd:63:f2:53:9f:
90:f6:e3:6b:50:c9:f7:f6:ce:be:2c:58:24:95:2a:
68:34:f4:da:82:0f:05:26:19:de:fd:21:56:fd:ff:
21:40:16:8a:50:e3:45:23:46:07:13:07:33:6d:d6:
6b:4c:0c:bb:04:91:0a:4a:dc:05:cc:d2:47:74:3f:
38:f5:33:3a:6a:1f:f9:50:64:b4:69:ec:d7:cc:d1:
32:99:4f:39:60:98:ea:59:4a:cd:32:d2:c0:ce:3c:
0d:9d:2b:c1:f2:83:e1:18:eb:79:6b:d3:f2:32:30:
d5:2b:20:ac:e7:74:51:41:5e:b6:83:4c:6a:52:16:
2b:32:b9:6f:89:13:6e:39:97:6e:b1:fa:5c:2e:e6:
d1:f0:27:b8:4e:d3:b2:86:33:48:ba:24:fa:d8:cf:
b7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F3:33:D3:DD:34:94:E9:3F:DD:10:4D:F8:F1:65:59:7E:71:B8:2B
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/SvMz0900lOk_3RBN-PFlWX5xuCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.196.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:67:4c:84:08:a6:5a:fe:18:9c:b6:4d:83:5e:f7:70:e0:8d:
f2:ca:6b:35:1e:a6:0e:bc:92:9c:72:00:0e:c9:3f:2f:19:9c:
77:b0:43:1b:c0:1c:3e:e2:db:43:bc:57:b9:ff:af:a7:13:cb:
02:ce:4a:c3:61:a8:33:da:99:39:95:19:6c:6a:87:b0:c6:bf:
74:37:d9:b8:b3:21:f3:f1:ce:39:9f:27:06:12:b4:93:a2:39:
12:2b:2e:40:39:75:c3:28:b8:f9:ce:65:8e:01:07:9e:a7:79:
a6:10:c3:e9:dd:bd:ca:db:fa:83:90:ce:45:2d:40:0b:ed:b4:
75:2b:17:77:50:56:9f:c7:4a:1a:1b:01:6a:8a:1a:24:1d:11:
71:95:85:92:9c:d4:73:9d:e3:fa:9f:7b:7d:60:f3:26:44:56:
a0:7a:86:09:c3:9b:17:32:97:8b:23:3b:c0:98:f5:57:7a:ca:
f9:8e:e1:38:f0:be:26:32:88:00:f8:61:34:9d:22:41:e0:82:
48:c1:f5:89:18:64:da:b1:0a:60:1e:08:6e:f9:de:c7:df:b9:
88:61:04:72:ac:d1:31:6a:65:c5:9e:d9:72:9d:95:be:55:c8:
28:01:0e:f4:c4:53:ce:04:ac:d5:0c:2a:b2:de:f2:f9:f0:d5:
29:b7:79:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:12:55 2025 by rpki-client