Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/sm2U8mHDziPKAunDj74W_yV6P9c.roa
File: sm2U8mHDziPKAunDj74W_yV6P9c.roa (raw, json)
Hash identifier: JCmnWDMfIYhS5xSToa1NmW/JeaJHkrWdN0uiLCHFpMQ=
Subject key identifier: B2:6D:94:F2:61:C3:CE:23:CA:02:E9:C3:8F:BE:16:FF:25:7A:3F:D7
Certificate issuer: /CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Certificate serial: 0185AA5C29552594F6352A286C4913A24CF9
Authority key identifier: BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/sm2U8mHDziPKAunDj74W_yV6P9c.roa
Signing time: Fri 13 Jan 2023 09:00:44 +0000
ROA not before: Fri 13 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59653
IP address blocks: 81.94.40.0/24 maxlen: 24
193.33.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:5c:29:55:25:94:f6:35:2a:28:6c:49:13:a2:4c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc6c8c06d2d3c2801f05458fc83413db0a5ddfad
Validity
Not Before: Jan 13 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b26d94f261c3ce23ca02e9c38fbe16ff257a3fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6c:4d:3d:aa:e5:eb:c0:21:1d:77:5c:b7:3f:
79:11:32:64:38:67:70:e0:f7:11:5d:2f:e0:eb:f1:
9b:35:55:00:f2:67:29:32:d5:ab:db:d0:b3:6e:d8:
80:10:0b:27:07:56:a9:48:f5:0e:ae:8e:44:f0:6b:
17:3c:f0:83:31:52:aa:15:47:17:f5:15:32:ee:82:
cc:23:92:55:7f:2e:91:f5:61:fc:07:e9:e3:f1:35:
ce:03:75:60:c4:1d:b1:8f:81:15:b0:48:1d:c2:c5:
40:38:08:57:26:a8:53:b9:20:1a:3a:aa:07:44:81:
b0:88:fe:8d:54:f5:80:e4:19:e9:45:f9:a2:c8:15:
e0:02:7a:8d:db:f7:65:01:22:23:c3:30:5f:4d:6e:
64:0a:01:d9:0c:66:e4:9b:f9:45:f2:46:1d:eb:f4:
95:d0:41:11:e6:c5:5d:01:1f:26:90:06:2c:cc:f0:
fc:7c:f5:4a:8b:9f:f3:7b:2e:b6:94:1c:19:b4:30:
8b:d9:b1:fd:5c:48:16:80:13:c2:57:7a:db:72:34:
69:9f:7b:7f:38:bd:35:8b:fb:c4:2a:d4:c0:38:9d:
6e:b7:fb:1f:fc:62:5d:6f:10:1c:2c:51:0b:62:26:
86:01:ee:c1:1b:85:f5:6f:3e:d1:ab:3c:01:7a:9f:
74:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6D:94:F2:61:C3:CE:23:CA:02:E9:C3:8F:BE:16:FF:25:7A:3F:D7
X509v3 Authority Key Identifier:
keyid:BC:6C:8C:06:D2:D3:C2:80:1F:05:45:8F:C8:34:13:DB:0A:5D:DF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGyMBtLTwoAfBUWPyDQT2wpd360.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/sm2U8mHDziPKAunDj74W_yV6P9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/17addf-d325-4aa7-97a7-4b43a47382b6/1/vGyMBtLTwoAfBUWPyDQT2wpd360.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.94.40.0/24
193.33.208.0/24
Signature Algorithm: sha256WithRSAEncryption
47:58:12:05:d4:ee:32:29:9c:72:a7:ff:cb:6f:f4:d7:ea:7f:
2c:c5:c6:e9:d1:4c:37:2f:86:4e:f8:89:e4:85:e8:2c:4d:53:
57:d8:5c:46:14:11:c4:a5:25:45:24:28:53:fe:03:48:66:49:
95:c5:bc:b0:9c:de:95:38:52:b8:b6:3b:54:ad:c0:88:23:b0:
28:6b:0f:af:db:69:9d:6a:94:c0:ff:c5:e8:0c:be:af:ba:9e:
83:a9:50:27:65:20:54:31:64:f1:db:f2:96:11:17:a0:e2:d8:
f5:17:99:4f:7d:26:2f:bd:b8:85:94:7c:24:33:fc:07:19:c7:
3f:a3:2c:e1:6d:e6:24:7c:08:c7:00:d7:86:37:bb:63:89:5b:
2d:82:63:17:b6:5a:99:ab:5c:5a:33:e9:e2:42:25:f0:4b:e6:
bd:31:06:e8:c6:1b:2c:e6:e4:b4:45:bd:20:2a:4b:95:a8:0a:
ef:10:ec:ec:5d:c3:26:74:99:43:6a:1a:9f:68:1b:40:b4:3e:
36:f5:13:21:f6:e6:be:dc:b5:06:dc:02:cf:18:c7:0c:b3:22:
01:49:56:71:45:cf:19:3d:81:ef:95:76:0a:f0:86:e3:48:24:
ed:94:4e:3a:19:a4:9a:e4:fa:b7:a9:92:e9:92:05:83:b0:88:
7c:e1:4b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:37 2024 by rpki-client on console-fra.rpki-client.org