Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/0Vn48gXJbF4Ccb_DdODlWi9lUzY.roa
File: 0Vn48gXJbF4Ccb_DdODlWi9lUzY.roa (raw, json)
Hash identifier: h07qMb7Wel7JFg9G1pDuuQqGF1HkDjR/eVDCM3SmP9U=
Subject key identifier: D1:59:F8:F2:05:C9:6C:5E:02:71:BF:C3:74:E0:E5:5A:2F:65:53:36
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CEF698BA0D00DDA2AC36F99AFA5361A44
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/0Vn48gXJbF4Ccb_DdODlWi9lUzY.roa
Signing time: Tue 09 Jan 2024 18:08:40 +0000
ROA not before: Tue 09 Jan 2024 18:08:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204104
IP address blocks: 5.57.33.0/24 maxlen: 24
185.26.32.0/24 maxlen: 24
185.26.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jan 2024 09:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ef:69:8b:a0:d0:0d:da:2a:c3:6f:99:af:a5:36:1a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 9 18:08:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d159f8f205c96c5e0271bfc374e0e55a2f655336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0d:f2:78:48:3f:c8:67:9a:a1:5e:5c:14:f3:
47:0e:f2:08:bc:c0:90:ce:2a:4f:3e:42:3e:63:77:
ed:15:22:d3:fe:33:4b:4f:46:7a:48:4f:51:f5:76:
9c:02:83:d9:ab:34:b4:e1:8f:fb:3b:8a:b0:9d:7e:
df:f0:08:c2:49:60:22:11:5d:af:e4:97:31:da:0b:
29:3d:80:cf:e1:9b:16:42:c4:3b:0e:86:4d:13:e8:
b1:c3:a9:2e:80:e8:4a:c4:11:51:bb:46:6a:56:ce:
f6:59:e5:67:03:b6:3d:7d:d8:20:99:8a:dd:7d:0b:
27:82:05:6e:2f:bf:34:07:82:fc:d0:6a:90:ca:56:
88:98:44:4e:10:6c:3d:29:12:39:f0:1a:a7:20:f1:
aa:d8:50:21:b8:73:88:99:04:2f:e5:b6:30:6e:1c:
b1:be:39:7e:25:08:d6:b5:c0:97:41:22:8d:00:6e:
22:eb:c1:b3:ca:9c:91:bc:30:8a:49:e1:12:9d:35:
d6:5e:4d:40:3c:63:c4:8a:b2:6a:45:b1:8a:7a:b0:
7c:1e:3b:93:83:2a:74:8c:3b:70:f9:2c:8e:fb:f3:
fa:1d:ce:95:6e:8e:5c:19:52:f8:4d:0d:de:32:c1:
b8:e9:48:8e:bc:3c:75:a6:3d:cf:5a:ba:17:05:a1:
f0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:59:F8:F2:05:C9:6C:5E:02:71:BF:C3:74:E0:E5:5A:2F:65:53:36
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/0Vn48gXJbF4Ccb_DdODlWi9lUzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.33.0/24
185.26.32.0/23
Signature Algorithm: sha256WithRSAEncryption
00:b9:79:d0:e5:c5:6f:9c:a8:80:03:87:16:86:3a:42:d3:3f:
76:3c:36:e0:4e:0e:63:2d:18:b4:f9:04:c0:72:92:19:f1:13:
3e:53:8d:cb:1d:3e:c2:50:68:be:ca:ff:77:a7:89:27:a1:a6:
45:27:01:8d:52:b5:78:74:32:57:f8:74:0b:3c:fb:c0:28:74:
dc:4a:a0:1d:a6:9a:46:38:7b:0e:66:91:98:db:1b:88:62:03:
7f:08:7c:04:c0:ff:30:25:e1:6a:eb:db:6c:4b:02:ca:80:a2:
34:d1:1d:b4:8d:b1:b4:64:53:b0:e1:13:f8:b4:97:86:02:1a:
60:ae:13:78:69:ff:0c:d3:68:a3:d0:68:36:1a:b3:80:46:e8:
00:12:18:a3:11:01:40:b7:88:7f:fa:05:a3:4d:a1:6f:ca:44:
b2:ae:3f:f3:bf:6d:29:3f:c0:b1:da:6d:40:ad:b3:33:bb:ad:
d2:c6:0b:ea:ac:3f:df:c0:d0:a9:f7:fd:9a:20:31:79:aa:c7:
a4:b2:49:ee:20:ef:0c:06:6e:bb:07:84:5b:69:67:1c:4d:41:
55:1e:5e:e0:db:ce:50:a1:41:ac:ed:44:96:30:af:de:a1:9e:
68:77:ce:4d:b8:91:9e:34:75:df:38:e4:43:20:38:89:e6:cd:
09:07:97:b5
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzvaYug0A3aKsNvma+lNhpEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjQwMTA5MTgwODQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTU5ZjhmMjA1Yzk2YzVlMDI3MWJmYzM3NGUwZTU1YTJmNjU1MzM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArw3yeEg/yGeaoV5cFPNHDvIIvMCQ
zipPPkI+Y3ftFSLT/jNLT0Z6SE9R9XacAoPZqzS04Y/7O4qwnX7f8AjCSWAiEV2v
5Jcx2gspPYDP4ZsWQsQ7DoZNE+ixw6kugOhKxBFRu0ZqVs72WeVnA7Y9fdggmYrd
fQsnggVuL780B4L80GqQylaImEROEGw9KRI58BqnIPGq2FAhuHOImQQv5bYwbhyx
vjl+JQjWtcCXQSKNAG4i68GzypyRvDCKSeESnTXWXk1APGPEirJqRbGKerB8HjuT
gyp0jDtw+SyO+/P6Hc6Vbo5cGVL4TQ3eMsG46UiOvDx1pj3PWroXBaHw+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNFZ+PIFyWxeAnG/w3Tg5VovZVM2MB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEvMFZuNDhnWEpiRjRDY2JfRGRPRGxXaTlsVXpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABTkhAwQB
uRogMA0GCSqGSIb3DQEBCwUAA4IBAQAAuXnQ5cVvnKiAA4cWhjpC0z92PDbgTg5j
LRi0+QTAcpIZ8RM+U43LHT7CUGi+yv93p4knoaZFJwGNUrV4dDJX+HQLPPvAKHTc
SqAdpppGOHsOZpGY2xuIYgN/CHwEwP8wJeFq69tsSwLKgKI00R20jbG0ZFOw4RP4
tJeGAhpgrhN4af8M02ij0Gg2GrOARugAEhijEQFAt4h/+gWjTaFvykSyrj/zv20p
P8Cx2m1ArbMzu63SxgvqrD/fwNCp9/2aIDF5qseksknuIO8MBm67B4RbaWccTUFV
Hl7g285QoUGs7USWMK/eoZ5od85NuJGeNHXfOORDIDiJ5s0JB5e1
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:02 2025 by rpki-client