Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/61c61d-5ed8-4766-9b4b-056b9c231f34/1/sBMM6-1Nygw_YwAT53j1jwziYzQ.roa
File: sBMM6-1Nygw_YwAT53j1jwziYzQ.roa (raw, json)
Hash identifier: 2owdgCAQC86AcwF0tHMRvX45T3BRbCvFf/gA+YpAJig=
Subject key identifier: B0:13:0C:EB:ED:4D:CA:0C:3F:63:00:13:E7:78:F5:8F:0C:E2:63:34
Certificate issuer: /CN=99282d77c662e68bb87e83338b76ad6bead93185
Certificate serial: 01856DC1D8222971CCDF7026AA225D4BD8EF
Authority key identifier: 99:28:2D:77:C6:62:E6:8B:B8:7E:83:33:8B:76:AD:6B:EA:D9:31:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSgtd8Zi5ou4foMzi3ata-rZMYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/61c61d-5ed8-4766-9b4b-056b9c231f34/1/sBMM6-1Nygw_YwAT53j1jwziYzQ.roa
Signing time: Sun 01 Jan 2023 14:34:58 +0000
ROA not before: Sun 01 Jan 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206784
IP address blocks: 185.176.136.0/22 maxlen: 32
2a0a:1780::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d8:22:29:71:cc:df:70:26:aa:22:5d:4b:d8:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99282d77c662e68bb87e83338b76ad6bead93185
Validity
Not Before: Jan 1 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0130cebed4dca0c3f630013e778f58f0ce26334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b1:de:ec:51:e2:cf:60:7f:a3:9e:7e:d2:98:
66:2f:cc:d9:75:b2:0f:2c:c8:10:43:bc:e2:79:9b:
86:a5:e6:73:54:4f:77:46:45:01:59:1c:59:b0:9a:
f8:0b:b2:d2:c6:13:7b:c2:24:e4:1b:8e:d3:60:94:
20:45:be:6a:c2:87:eb:03:65:50:c1:4a:c4:9e:61:
dd:83:92:21:c7:41:20:5e:24:1e:2d:f7:a7:3c:7f:
61:7a:1e:4d:80:3b:24:d5:e7:48:0c:dc:3e:22:43:
65:c7:55:8b:c1:04:8b:60:68:65:fd:7d:3b:ad:16:
f7:69:1d:f2:2b:53:17:5e:47:45:a9:52:b2:4d:11:
15:0a:fa:24:28:5b:1b:aa:3c:0e:80:54:32:06:a2:
de:46:27:27:64:bf:c3:85:48:8e:15:0b:a8:fa:82:
a4:5a:c7:54:7d:75:ae:73:4f:87:bc:3d:98:85:09:
9c:09:a3:f0:d0:9b:f1:cd:98:31:43:69:df:0b:b4:
3e:63:5c:b0:f9:fb:bc:a5:82:1d:96:5d:fd:c8:64:
7d:35:85:5b:49:23:6d:2b:61:8c:a6:0f:51:49:21:
6b:aa:07:68:6b:6b:fa:03:21:18:0c:7c:39:d3:30:
02:0c:23:52:9d:19:91:0b:4e:5f:93:2f:fc:37:3c:
5c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:13:0C:EB:ED:4D:CA:0C:3F:63:00:13:E7:78:F5:8F:0C:E2:63:34
X509v3 Authority Key Identifier:
keyid:99:28:2D:77:C6:62:E6:8B:B8:7E:83:33:8B:76:AD:6B:EA:D9:31:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSgtd8Zi5ou4foMzi3ata-rZMYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/61c61d-5ed8-4766-9b4b-056b9c231f34/1/sBMM6-1Nygw_YwAT53j1jwziYzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/61c61d-5ed8-4766-9b4b-056b9c231f34/1/mSgtd8Zi5ou4foMzi3ata-rZMYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.136.0/22
IPv6:
2a0a:1780::/29
Signature Algorithm: sha256WithRSAEncryption
26:29:49:b0:e8:77:a8:34:5e:8f:e8:53:3d:a4:4b:02:4f:b8:
be:0d:17:a2:78:c1:43:44:a9:6e:89:f1:fc:dc:d4:4f:78:a3:
4d:4d:6d:9d:3c:c5:b0:12:fe:66:5a:3c:fb:ef:d7:a2:a6:34:
04:27:82:fb:8a:50:c2:a6:e0:22:3f:03:51:ca:97:fc:f5:be:
b6:ce:5c:8d:53:91:39:5c:5d:47:7b:72:53:0f:76:05:ec:72:
4e:21:bf:9f:b0:b5:da:4a:a1:19:f8:90:94:dd:ef:a1:ff:86:
6b:fb:29:4e:ee:d2:17:74:4c:9a:43:b4:71:34:87:64:a5:38:
b7:45:44:ad:1f:c8:95:03:f1:7a:62:1c:83:2c:17:35:d3:b1:
5b:5f:5a:84:b3:aa:2c:df:36:07:5c:11:86:39:04:68:2f:5d:
4c:12:92:2c:17:e2:83:b4:ba:0f:f6:37:6d:a3:9a:e2:75:7e:
29:6a:5d:1e:6c:c6:ab:72:57:13:76:56:a1:11:ba:31:de:20:
4f:36:35:44:16:3a:9c:9b:07:0a:38:0a:2d:29:6c:81:26:95:
1a:d5:8a:66:6d:5e:91:e9:cc:f4:52:ba:98:b2:81:26:4d:a1:
98:9d:62:e8:42:34:36:b6:9f:7f:3c:e9:34:aa:df:64:62:60:
56:23:a3:4c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVtwdgiKXHM33AmqiJdS9jvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MjgyZDc3YzY2MmU2OGJiODdlODMzMzhiNzZhZDZiZWFk
OTMxODUwHhcNMjMwMTAxMTQzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDEzMGNlYmVkNGRjYTBjM2Y2MzAwMTNlNzc4ZjU4ZjBjZTI2MzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7He7FHiz2B/o55+0phmL8zZdbIP
LMgQQ7zieZuGpeZzVE93RkUBWRxZsJr4C7LSxhN7wiTkG47TYJQgRb5qwofrA2VQ
wUrEnmHdg5Ihx0EgXiQeLfenPH9heh5NgDsk1edIDNw+IkNlx1WLwQSLYGhl/X07
rRb3aR3yK1MXXkdFqVKyTREVCvokKFsbqjwOgFQyBqLeRicnZL/DhUiOFQuo+oKk
WsdUfXWuc0+HvD2YhQmcCaPw0JvxzZgxQ2nfC7Q+Y1yw+fu8pYIdll39yGR9NYVb
SSNtK2GMpg9RSSFrqgdoa2v6AyEYDHw50zACDCNSnRmRC05fky/8Nzxc5wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLATDOvtTcoMP2MAE+d49Y8M4mM0MB8GA1UdIwQY
MBaAFJkoLXfGYuaLuH6DM4t2rWvq2TGFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVNndGQ4Wmk1b3U0Zm9NemkzYXRhLXJaTVlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS82MWM2MWQtNWVkOC00NzY2LTliNGIt
MDU2YjljMjMxZjM0LzEvc0JNTTYtMU55Z3dfWXdBVDUzajFqd3ppWXpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS82MWM2MWQtNWVkOC00NzY2LTliNGItMDU2YjljMjMxZjM0
LzEvbVNndGQ4Wmk1b3U0Zm9NemkzYXRhLXJaTVlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubCIMA0E
AgACMAcDBQMqCheAMA0GCSqGSIb3DQEBCwUAA4IBAQAmKUmw6HeoNF6P6FM9pEsC
T7i+DReieMFDRKluifH83NRPeKNNTW2dPMWwEv5mWjz779eipjQEJ4L7ilDCpuAi
PwNRypf89b62zlyNU5E5XF1He3JTD3YF7HJOIb+fsLXaSqEZ+JCU3e+h/4Zr+ylO
7tIXdEyaQ7RxNIdkpTi3RUStH8iVA/F6YhyDLBc107FbX1qEs6os3zYHXBGGOQRo
L11MEpIsF+KDtLoP9jdto5ridX4pal0ebMarclcTdlahEbox3iBPNjVEFjqcmwcK
OAotKWyBJpUa1YpmbV6R6cz0UrqYsoEmTaGYnWLoQjQ2tp9/POk0qt9kYmBWI6NM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:00 2024 by rpki-client on console-fra.rpki-client.org