Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/MzeFGK5lLeCWYQVOjFPF1SkyY-U.roa
File: MzeFGK5lLeCWYQVOjFPF1SkyY-U.roa (raw, json)
Hash identifier: KnRtByL1UymZO9OrLkAI7QENa29HkBe4rJoEBBNUqZA=
Subject key identifier: 33:37:85:18:AE:65:2D:E0:96:61:05:4E:8C:53:C5:D5:29:32:63:E5
Certificate issuer: /CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Certificate serial: 018D9C3C042BA9B048424440E8C96FCA0703
Authority key identifier: DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/MzeFGK5lLeCWYQVOjFPF1SkyY-U.roa
Signing time: Mon 12 Feb 2024 07:33:15 +0000
ROA not before: Mon 12 Feb 2024 07:33:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200154
IP address blocks: 185.40.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 12:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9c:3c:04:2b:a9:b0:48:42:44:40:e8:c9:6f:ca:07:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Validity
Not Before: Feb 12 07:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33378518ae652de09661054e8c53c5d5293263e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:30:f9:5c:f9:25:9d:5a:ac:1c:85:7e:26:27:
09:b1:07:5e:34:c4:e1:1d:1e:c5:ac:8d:96:af:5e:
e9:45:3b:93:d7:74:f1:fc:e2:19:ef:ea:c2:1b:c4:
15:a6:9a:8b:f5:9e:95:76:f1:71:2a:08:b6:1a:77:
4e:43:f7:f6:3c:4a:20:0f:ac:bc:bf:d1:ec:bc:37:
6f:f8:22:3e:57:df:7b:70:68:7e:38:51:3f:23:6b:
1f:fd:43:64:44:99:ad:a6:0e:d1:8d:fb:76:e5:86:
7e:74:97:d6:d1:88:64:f2:59:75:58:17:a5:3b:e6:
e4:28:d8:d3:d1:53:00:c7:d3:3f:d3:16:4a:55:89:
7a:ee:e4:c0:08:84:53:68:f9:a8:1a:9b:46:98:7c:
38:a7:3e:fe:cf:21:82:fa:bd:df:25:ab:59:e9:00:
cb:a6:3e:d2:0d:01:41:f9:50:12:dc:c3:ab:84:a5:
75:8a:b2:74:23:09:7d:e5:f6:b7:4b:83:a1:83:24:
a1:56:23:ac:fa:f3:44:4f:5d:1d:85:1c:48:e6:75:
86:46:90:3f:13:f4:22:57:df:63:8b:9a:45:12:25:
27:1f:ae:91:e3:25:17:df:f8:a3:aa:e4:33:08:36:
49:b0:37:4a:4d:db:38:0e:4c:d8:66:70:c3:d1:f8:
b4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:37:85:18:AE:65:2D:E0:96:61:05:4E:8C:53:C5:D5:29:32:63:E5
X509v3 Authority Key Identifier:
keyid:DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/MzeFGK5lLeCWYQVOjFPF1SkyY-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/36fgBzjT97jeSN44YnVndo4vibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.33.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d5:df:4d:f4:1f:ad:55:51:2e:49:52:a2:99:e0:33:3f:98:
9a:d0:4b:ea:d7:f4:a9:86:5b:0f:6f:94:9c:a1:b4:8d:13:ba:
06:b4:ee:92:fa:f3:70:b2:f6:c9:74:ef:0d:1a:08:db:a9:37:
a0:f2:85:5e:c6:e0:e5:cd:b9:4e:e0:54:bd:2b:6d:e4:4f:cd:
47:77:2f:f1:5f:02:2c:62:54:18:77:a9:cf:ce:cf:4e:ca:89:
48:ec:39:f0:c6:7c:b3:13:f2:63:90:e7:e5:a0:c2:99:3b:cd:
9d:39:d0:f8:58:f8:77:7c:e9:e4:c6:26:fe:bc:a0:88:c7:37:
c9:6d:3a:00:d8:06:bb:8e:89:be:09:d0:6b:02:de:01:b8:0e:
66:fc:0e:8f:f8:d2:73:c8:36:d7:f5:ab:09:73:a6:70:80:29:
3b:d4:39:a5:68:3b:6a:16:be:9b:21:f5:9e:7f:f9:5f:91:ae:
11:95:48:78:f1:0e:70:77:a2:89:b0:aa:35:de:fc:ac:9d:fe:
df:ff:c5:f0:c7:b9:4b:34:cf:e4:7b:d1:cd:9c:c1:5d:6c:7e:
30:d7:cd:44:43:8f:63:15:ef:c3:b5:14:11:c2:bf:dc:06:fa:
21:22:52:5b:91:12:db:74:f1:c1:20:dd:ca:50:4d:46:10:bd:
2d:7d:3c:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2cPAQrqbBIQkRA6MlvygcDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmYTdlMDA3MzhkM2Y3YjhkZTQ4ZGUzODYyNzU2Nzc2OGUy
Zjg5YjYwHhcNMjQwMjEyMDczMzE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzM3ODUxOGFlNjUyZGUwOTY2MTA1NGU4YzUzYzVkNTI5MzI2M2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0TD5XPklnVqsHIV+JicJsQdeNMTh
HR7FrI2Wr17pRTuT13Tx/OIZ7+rCG8QVppqL9Z6VdvFxKgi2GndOQ/f2PEogD6y8
v9HsvDdv+CI+V997cGh+OFE/I2sf/UNkRJmtpg7Rjft25YZ+dJfW0Yhk8ll1WBel
O+bkKNjT0VMAx9M/0xZKVYl67uTACIRTaPmoGptGmHw4pz7+zyGC+r3fJatZ6QDL
pj7SDQFB+VAS3MOrhKV1irJ0Iwl95fa3S4OhgyShViOs+vNET10dhRxI5nWGRpA/
E/QiV99ji5pFEiUnH66R4yUX3/ijquQzCDZJsDdKTds4DkzYZnDD0fi0rQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDM3hRiuZS3glmEFToxTxdUpMmPlMB8GA1UdIwQY
MBaAFN+n4Ac40/e43kjeOGJ1Z3aOL4m2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzZmZ0J6alQ5N2plU040NFluVm5kbzR2aWJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kYmVjMWYtMDdjNS00OWYyLWJhNjYt
MmIxZmFmY2NkZDBiLzEvTXplRkdLNWxMZUNXWVFWT2pGUEYxU2t5WS1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kYmVjMWYtMDdjNS00OWYyLWJhNjYtMmIxZmFmY2NkZDBi
LzEvMzZmZ0J6alQ5N2plU040NFluVm5kbzR2aWJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSghMA0G
CSqGSIb3DQEBCwUAA4IBAQAF1d9N9B+tVVEuSVKimeAzP5ia0Evq1/SphlsPb5Sc
obSNE7oGtO6S+vNwsvbJdO8NGgjbqTeg8oVexuDlzblO4FS9K23kT81Hdy/xXwIs
YlQYd6nPzs9OyolI7DnwxnyzE/JjkOfloMKZO82dOdD4WPh3fOnkxib+vKCIxzfJ
bToA2Aa7jom+CdBrAt4BuA5m/A6P+NJzyDbX9asJc6ZwgCk71DmlaDtqFr6bIfWe
f/lfka4RlUh48Q5wd6KJsKo13vysnf7f/8Xwx7lLNM/ke9HNnMFdbH4w181EQ49j
Fe/DtRQRwr/cBvohIlJbkRLbdPHBIN3KUE1GEL0tfTxT
-----END CERTIFICATE-----
Generated at Tue Mar 26 14:51:04 2024 by rpki-client on console-fra.rpki-client.org