Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/beVuKGAO-Pj_HfbmsQIF56Hojok.roa
File: beVuKGAO-Pj_HfbmsQIF56Hojok.roa (raw, json)
Hash identifier: x1L0uNGozfSZNhwfD3++C2GlFXtvNSlOmol7NyCnjt8=
Subject key identifier: 6D:E5:6E:28:60:0E:F8:F8:FF:1D:F6:E6:B1:02:05:E7:A1:E8:8E:89
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 018CC72711270BD613CB856DDBBA28E65CE9
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/beVuKGAO-Pj_HfbmsQIF56Hojok.roa
Signing time: Mon 01 Jan 2024 22:31:15 +0000
ROA not before: Mon 01 Jan 2024 22:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62077
IP address blocks: 185.33.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 09:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:11:27:0b:d6:13:cb:85:6d:db:ba:28:e6:5c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Jan 1 22:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6de56e28600ef8f8ff1df6e6b10205e7a1e88e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:68:a6:0b:da:36:39:76:97:de:21:7d:47:85:
e4:d9:fb:81:50:b6:6e:c1:9d:4b:3b:b6:81:f3:f3:
98:79:6f:27:6c:d4:aa:15:ff:96:e1:60:c6:c2:72:
59:f5:90:ec:bf:c3:a6:3b:81:1d:15:8b:1d:34:ba:
46:c4:17:44:c4:5d:0e:6c:4f:04:70:16:7c:db:c6:
b2:2c:eb:cd:4c:6c:80:75:e7:48:ff:f9:4a:f9:6f:
48:ef:8a:f8:bd:27:91:10:50:18:48:3b:12:ef:52:
e7:d5:31:36:02:6d:e2:c7:3b:ab:b3:66:52:47:f3:
17:af:36:27:6c:87:18:e4:a1:7a:6d:8f:7b:c2:16:
5a:3e:2a:e5:0a:44:30:48:52:7e:28:6a:78:1e:04:
6c:7d:02:3c:83:53:09:70:e8:89:40:d0:11:a3:9d:
98:40:4d:40:b8:d4:d4:1d:97:4c:19:42:9d:f1:29:
d2:ce:d3:b6:bd:fb:f8:39:be:7d:ce:18:f0:36:ed:
48:fe:50:18:3b:12:73:5e:00:52:d8:66:a3:c7:9b:
6b:3a:bb:bb:8f:37:a6:19:5e:d6:5c:6b:89:ac:e0:
86:98:10:89:3c:2a:8a:4b:37:4c:4a:e9:ab:86:0b:
bc:5b:af:5a:50:96:65:e9:d2:32:a1:2f:bd:b1:21:
48:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E5:6E:28:60:0E:F8:F8:FF:1D:F6:E6:B1:02:05:E7:A1:E8:8E:89
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/beVuKGAO-Pj_HfbmsQIF56Hojok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.60.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f5:39:0a:84:a5:3d:bb:ed:61:9e:18:13:76:14:d5:45:9d:
13:a6:40:27:f5:1d:6a:10:d2:5c:26:85:2e:23:a6:d0:7c:ba:
ff:b6:64:87:22:f6:75:2a:87:01:85:b0:ad:ea:dc:6b:2d:9a:
a8:a8:49:ab:6d:82:e9:53:17:09:d0:8e:c5:84:87:33:98:1c:
50:cb:03:38:df:3c:1b:6b:d8:2e:5e:65:ee:20:74:8c:cf:db:
c3:f5:b6:35:7d:03:3a:1c:59:ad:9b:47:aa:46:e8:8f:7c:34:
17:3c:72:a3:a7:a1:a7:04:4c:63:ea:d2:8a:90:ed:e6:b0:73:
95:63:67:97:71:03:14:d5:90:b4:79:3f:f8:09:3c:dc:0c:ab:
c1:48:e3:6a:24:76:06:c5:1a:e5:a5:4e:0d:3a:05:68:c5:3a:
7a:72:34:92:33:91:d0:c2:87:ed:f7:d1:98:fd:a6:48:21:37:
af:1d:e3:e7:7a:93:ca:f9:c1:f7:dd:c2:6f:92:f6:a3:15:56:
c1:6f:df:f5:c6:cb:0c:32:e4:e1:8e:8c:c9:ae:13:06:c8:8c:
12:dd:af:eb:c9:55:09:fc:d0:28:e2:45:5e:fe:e3:fb:ab:10:
d6:3e:f0:84:09:9b:f1:f7:32:27:36:cd:c6:9b:93:fc:ed:3a:
2c:00:f7:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJxEnC9YTy4Vt27oo5lzpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2I4NmU2NTQ3MGY5OTRkZmE2ZDZmZWU4ZTI2NGRiNjJl
MjRhZjkwHhcNMjQwMTAxMjIzMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZGU1NmUyODYwMGVmOGY4ZmYxZGY2ZTZiMTAyMDVlN2ExZTg4ZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmimC9o2OXaX3iF9R4Xk2fuBULZu
wZ1LO7aB8/OYeW8nbNSqFf+W4WDGwnJZ9ZDsv8OmO4EdFYsdNLpGxBdExF0ObE8E
cBZ828ayLOvNTGyAdedI//lK+W9I74r4vSeREFAYSDsS71Ln1TE2Am3ixzurs2ZS
R/MXrzYnbIcY5KF6bY97whZaPirlCkQwSFJ+KGp4HgRsfQI8g1MJcOiJQNARo52Y
QE1AuNTUHZdMGUKd8SnSztO2vfv4Ob59zhjwNu1I/lAYOxJzXgBS2Gajx5trOru7
jzemGV7WXGuJrOCGmBCJPCqKSzdMSumrhgu8W69aUJZl6dIyoS+9sSFIZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG3lbihgDvj4/x325rECBeeh6I6JMB8GA1UdIwQY
MBaAFMo7huZUcPmU36bW/ujiZNti4kr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgt
OTUzMWQyNGUwNjEwLzEvYmVWdUtHQU8tUGpfSGZibXNRSUY1Nkhvam9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgtOTUzMWQyNGUwNjEw
LzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSE8MA0G
CSqGSIb3DQEBCwUAA4IBAQCN9TkKhKU9u+1hnhgTdhTVRZ0TpkAn9R1qENJcJoUu
I6bQfLr/tmSHIvZ1KocBhbCt6txrLZqoqEmrbYLpUxcJ0I7FhIczmBxQywM43zwb
a9guXmXuIHSMz9vD9bY1fQM6HFmtm0eqRuiPfDQXPHKjp6GnBExj6tKKkO3msHOV
Y2eXcQMU1ZC0eT/4CTzcDKvBSONqJHYGxRrlpU4NOgVoxTp6cjSSM5HQwoft99GY
/aZIITevHePnepPK+cH33cJvkvajFVbBb9/1xssMMuThjozJrhMGyIwS3a/ryVUJ
/NAo4kVe/uP7qxDWPvCECZvx9zInNs3Gm5P87TosAPd/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org