Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/MsuZnSMB_1BMJhyJIf4aZy9p_L8.roa
File: MsuZnSMB_1BMJhyJIf4aZy9p_L8.roa (raw, json)
Hash identifier: r3mGzNqoxKJC/GfMup+CHzlPSoWZWpsQiS6f/TveXZU=
Subject key identifier: 32:CB:99:9D:23:01:FF:50:4C:26:1C:89:21:FE:1A:67:2F:69:FC:BF
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 018573281338FF628EF951A499B599A7AFE9
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/MsuZnSMB_1BMJhyJIf4aZy9p_L8.roa
Signing time: Mon 02 Jan 2023 15:44:44 +0000
ROA not before: Mon 02 Jan 2023 15:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50599
IP address blocks: 83.150.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:13:38:ff:62:8e:f9:51:a4:99:b5:99:a7:af:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Jan 2 15:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32cb999d2301ff504c261c8921fe1a672f69fcbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:47:e7:e6:bc:58:28:f8:5c:55:53:3f:93:db:
20:9e:4d:16:8e:a0:03:41:ad:06:f9:94:74:98:fd:
d4:1d:a1:e5:b4:a9:6f:85:5f:c1:7d:d5:5c:8a:20:
28:dc:03:c6:e2:67:74:75:5a:e9:7f:35:f5:f0:41:
a1:f7:3d:6f:3e:a0:1d:7c:34:86:7d:1f:1a:49:43:
17:51:e2:26:fb:6b:01:b6:7a:7d:d9:e8:7d:ec:7e:
0c:43:e1:57:0f:a4:df:b8:0d:69:b4:99:6d:4c:ce:
6d:66:71:4d:65:19:67:73:11:4e:27:75:69:26:45:
d6:49:5b:03:dc:e0:82:10:eb:2f:00:f3:41:d4:65:
d0:b3:17:cf:d3:55:11:00:ac:2b:5a:f8:f1:bc:1a:
bb:31:2b:f0:da:a8:11:1b:18:a9:cc:b7:81:8a:27:
34:2a:bd:32:7a:05:7a:23:1b:45:0f:b8:9e:49:ad:
2e:ae:2d:d9:31:3d:89:b1:61:ec:28:f4:e2:bc:08:
1c:af:67:8d:cc:49:f5:5b:22:ab:be:ef:eb:1b:dc:
7b:f7:b2:9d:c1:e3:9b:86:b7:85:09:db:c7:58:3b:
20:cc:ab:c1:11:dd:db:38:9a:b0:d3:3f:02:a0:0a:
ef:5c:cf:d0:0d:58:1a:cb:e2:2c:cc:dd:08:05:37:
af:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CB:99:9D:23:01:FF:50:4C:26:1C:89:21:FE:1A:67:2F:69:FC:BF
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/MsuZnSMB_1BMJhyJIf4aZy9p_L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.236.0/24
Signature Algorithm: sha256WithRSAEncryption
83:87:f8:84:6c:10:2e:43:a4:94:12:34:3b:9d:90:22:c0:44:
1d:9c:b7:58:82:4d:4b:05:61:b7:1b:2b:9e:57:8e:63:0e:b1:
cb:b7:95:e6:d4:4e:43:5c:af:cf:58:df:19:e2:c1:14:6e:81:
f0:e7:3b:6a:8c:1b:66:2f:82:64:90:fb:af:b6:b8:c2:fe:2c:
7a:67:5c:97:18:1a:fc:0e:93:95:ee:e6:2e:d2:5d:8b:d8:05:
10:de:e9:fc:0f:9a:4c:39:72:9a:cb:6a:fb:91:79:12:b9:64:
59:0f:ff:86:34:f9:1a:a9:06:ed:06:54:09:34:0d:12:38:d2:
48:c8:b8:f3:e2:e1:a2:bb:b6:55:12:85:45:2b:4c:eb:91:27:
0b:54:e3:b7:21:b0:cc:48:21:3e:eb:e8:c8:d6:78:a1:cd:85:
47:5b:42:f1:3d:12:12:32:49:e7:6b:8b:5e:f7:c9:85:42:9b:
39:29:ef:f9:c2:f4:04:74:38:1b:b8:6a:02:e0:23:be:9b:c6:
50:77:d4:eb:d4:fa:0b:c0:ec:2c:19:11:ce:54:0d:3f:e3:31:
eb:b0:b5:95:e3:fe:e5:6d:8e:e9:f9:25:90:c4:fa:54:28:4c:
bc:7f:d5:4c:0a:a9:80:a9:28:33:86:8e:82:88:63:de:ad:5c:
64:4a:0f:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzKBM4/2KO+VGkmbWZp6/pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNTIxMTI4Y2Y2MzRhYTZhZmE3ZWY1MmQ1MzFmM2ZjZDU1
NjI4ZjkwHhcNMjMwMTAyMTU0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmNiOTk5ZDIzMDFmZjUwNGMyNjFjODkyMWZlMWE2NzJmNjlmY2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUfn5rxYKPhcVVM/k9sgnk0WjqAD
Qa0G+ZR0mP3UHaHltKlvhV/BfdVciiAo3APG4md0dVrpfzX18EGh9z1vPqAdfDSG
fR8aSUMXUeIm+2sBtnp92eh97H4MQ+FXD6TfuA1ptJltTM5tZnFNZRlncxFOJ3Vp
JkXWSVsD3OCCEOsvAPNB1GXQsxfP01URAKwrWvjxvBq7MSvw2qgRGxipzLeBiic0
Kr0yegV6IxtFD7ieSa0uri3ZMT2JsWHsKPTivAgcr2eNzEn1WyKrvu/rG9x797Kd
weObhreFCdvHWDsgzKvBEd3bOJqw0z8CoArvXM/QDVgay+IszN0IBTeviwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDLLmZ0jAf9QTCYciSH+Gmcvafy/MB8GA1UdIwQY
MBaAFPBSESjPY0qmr6fvUtUx8/zVVij5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEZJUktNOWpTcWF2cC05UzFUSHpfTlZXS1BrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iNGIxNTAtZGJiOC00NjVmLTgxNTUt
ZTQ0MTliNjQyMTJlLzEvTXN1Wm5TTUJfMUJNSmh5SklmNGFaeTlwX0w4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9iNGIxNTAtZGJiOC00NjVmLTgxNTUtZTQ0MTliNjQyMTJl
LzEvOEZJUktNOWpTcWF2cC05UzFUSHpfTlZXS1BrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5bsMA0G
CSqGSIb3DQEBCwUAA4IBAQCDh/iEbBAuQ6SUEjQ7nZAiwEQdnLdYgk1LBWG3Gyue
V45jDrHLt5Xm1E5DXK/PWN8Z4sEUboHw5ztqjBtmL4JkkPuvtrjC/ix6Z1yXGBr8
DpOV7uYu0l2L2AUQ3un8D5pMOXKay2r7kXkSuWRZD/+GNPkaqQbtBlQJNA0SONJI
yLjz4uGiu7ZVEoVFK0zrkScLVOO3IbDMSCE+6+jI1nihzYVHW0LxPRISMknna4te
98mFQps5Ke/5wvQEdDgbuGoC4CO+m8ZQd9Tr1PoLwOwsGRHOVA0/4zHrsLWV4/7l
bY7p+SWQxPpUKEy8f9VMCqmAqSgzho6CiGPerVxkSg8z
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:38 2024 by rpki-client on console-fra.rpki-client.org