Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/smyvevDTzASs5cVNfPQmiTIoVfg.roa
File: smyvevDTzASs5cVNfPQmiTIoVfg.roa (raw, json)
Hash identifier: KEalaK+N3bBf0nba6ijNEhvxCLaeECIKNI43PxBsY+4=
Subject key identifier: B2:6C:AF:7A:F0:D3:CC:04:AC:E5:C5:4D:7C:F4:26:89:32:28:55:F8
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018F9FBB4AAB2C5032AC40525AD9C6EDA943
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/smyvevDTzASs5cVNfPQmiTIoVfg.roa
Signing time: Wed 22 May 2024 09:56:42 +0000
ROA not before: Wed 22 May 2024 09:56:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49217
IP address blocks: 185.235.167.0/24 maxlen: 24
2a02:afc0::/32 maxlen: 32
2a06:da41::/32 maxlen: 32
2a06:da43::/32 maxlen: 32
2a0b:1f01::/32 maxlen: 32
2a0b:1f04::/32 maxlen: 32
2a0e:31c2::/32 maxlen: 32
2a0e:31c5::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 03 Jun 2024 02:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:bb:4a:ab:2c:50:32:ac:40:52:5a:d9:c6:ed:a9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: May 22 09:56:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b26caf7af0d3cc04ace5c54d7cf42689322855f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:87:a2:ba:9e:0b:3c:f3:0f:97:af:e9:dd:e5:
f8:32:23:b1:fb:0d:a3:5c:34:ad:cd:a9:7a:38:de:
dc:31:cf:82:66:5c:a2:e6:cd:55:3b:4e:4d:4f:56:
1d:a5:8b:2c:a9:b3:b9:85:84:a7:2f:58:29:38:b1:
76:0e:c7:1c:a2:d6:49:08:7e:52:bf:38:fc:c6:39:
c2:67:ec:14:9f:a4:32:a6:3c:1a:57:80:ce:6d:37:
4b:10:12:44:a5:db:4e:2c:a8:31:c1:c5:7a:3e:a6:
38:6f:3e:a1:b6:ec:8a:e6:09:84:dd:53:ed:68:39:
5f:9f:90:0e:db:f4:03:42:11:53:e4:51:9c:2a:00:
85:4c:e2:0c:fb:86:7d:d0:39:ba:e1:d9:62:a9:aa:
0d:79:19:de:76:39:c1:7e:fa:49:5f:72:4c:8d:c4:
8e:00:ba:2a:21:58:fe:56:f2:4d:6a:fe:33:8b:b3:
5a:c5:02:11:0a:e1:fa:4a:4b:da:5c:12:96:b1:a9:
36:7f:01:ed:64:ad:f7:1e:7a:fb:fe:14:43:bc:d0:
d4:d0:1e:36:bf:93:7b:37:d3:d8:71:54:5e:12:94:
15:09:51:de:85:f3:6e:03:73:cd:42:e5:3e:9d:16:
7e:04:c3:38:5c:ed:46:d1:07:9d:73:59:98:e3:99:
1b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6C:AF:7A:F0:D3:CC:04:AC:E5:C5:4D:7C:F4:26:89:32:28:55:F8
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/smyvevDTzASs5cVNfPQmiTIoVfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.167.0/24
IPv6:
2a02:afc0::/32
2a06:da41::/32
2a06:da43::/32
2a0b:1f01::/32
2a0b:1f04::/32
2a0e:31c2::/32
2a0e:31c5::/32
Signature Algorithm: sha256WithRSAEncryption
06:c9:e7:04:2b:c1:45:2a:5a:9b:dd:b7:0e:e9:85:db:e4:f7:
03:c6:2d:c3:de:c1:0b:77:48:ce:07:71:49:f0:6e:20:9b:bc:
a7:1b:6e:ff:77:3b:90:57:65:f6:b2:3c:49:a8:ec:63:89:34:
69:19:0f:b3:63:af:f8:e4:e6:cb:b2:bb:2e:43:72:12:dc:c1:
7c:17:39:30:60:1e:9e:fe:21:b9:07:d5:d7:a8:23:ed:20:da:
ce:6a:84:96:30:af:ca:20:2b:2e:21:74:e9:19:b3:82:09:46:
2e:61:09:05:50:02:69:f2:3c:91:42:1d:2f:c1:51:e1:5b:70:
7a:7f:2b:01:ed:3b:fb:87:53:e5:eb:6a:88:12:98:a6:0c:55:
ec:95:9d:64:9a:eb:7d:90:db:af:90:ad:9e:db:be:e2:79:aa:
d6:3a:12:30:25:00:0f:ab:4c:26:31:c1:d1:c2:6d:5d:7e:9b:
a1:a3:dc:ca:72:7a:ac:bc:92:20:2f:31:d4:05:83:c7:41:fb:
26:80:b2:14:75:80:46:b4:43:4f:43:22:35:27:b4:08:98:3e:
02:da:7d:e2:de:98:25:f7:90:6d:4c:b5:35:09:33:5f:eb:0c:
f2:ba:d0:63:a9:5d:a9:4f:f0:3a:d7:8a:0f:b4:7a:ee:fa:d5:
8a:cd:c3:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:30 2025 by rpki-client