Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dAk77CIbxGzT4ZZDAHK7jIRNSHc.roa
File: dAk77CIbxGzT4ZZDAHK7jIRNSHc.roa (raw, json)
Hash identifier: Hfbrzj0rlft9P/5zBfuQQ3UsDZUFbsn9JaRlN4RWi+w=
Subject key identifier: 74:09:3B:EC:22:1B:C4:6C:D3:E1:96:43:00:72:BB:8C:84:4D:48:77
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FFE1693988FF49CC4FC62B5992FEC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dAk77CIbxGzT4ZZDAHK7jIRNSHc.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44592
IP address blocks: 77.90.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Jan 2025 19:58:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fe:16:93:98:8f:f4:9c:c4:fc:62:b5:99:2f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74093bec221bc46cd3e196430072bb8c844d4877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:51:be:fa:f4:5d:b5:16:36:de:9d:91:fd:
ea:47:99:f1:0b:fd:2a:c0:66:88:16:60:6b:76:f1:
e4:f2:bb:94:8b:2f:1f:f2:ee:80:56:cd:ff:90:f0:
ae:ad:04:35:5d:b4:51:9f:d0:cc:55:f8:77:d2:9a:
4b:dc:5b:3f:a8:29:e4:1e:05:27:d7:04:35:8c:34:
d6:15:33:cb:17:df:e4:81:96:d8:05:96:73:d4:20:
81:5f:1b:54:b4:4d:09:71:e2:ae:e4:01:d1:a2:18:
26:5f:ad:2c:2c:51:7a:e1:89:10:a6:e1:70:85:b3:
f7:9b:9f:49:e4:24:da:08:87:ac:a6:f3:1b:14:73:
c8:0a:b7:e9:fb:52:5b:26:e8:bb:0e:ef:c5:bc:ae:
b6:59:35:89:ed:5a:c5:78:62:be:03:5e:c1:0c:2c:
55:51:b3:a0:e8:b1:43:b7:62:93:34:8b:53:32:84:
55:25:97:5d:f0:3e:df:df:b9:d8:84:ae:ed:e8:68:
01:a7:06:17:38:79:fe:3e:d9:04:85:c6:6c:8b:01:
07:c6:70:07:0a:dd:c2:b9:51:1d:69:16:f6:32:e0:
7c:d0:77:3f:27:8c:da:68:85:05:0d:d3:4b:fd:8a:
46:52:10:ad:69:e0:87:b6:cb:02:cf:90:37:ff:98:
54:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:09:3B:EC:22:1B:C4:6C:D3:E1:96:43:00:72:BB:8C:84:4D:48:77
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dAk77CIbxGzT4ZZDAHK7jIRNSHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
79:66:53:10:1b:d9:39:b2:b4:39:0f:da:9d:7a:a8:fa:e0:70:
61:dc:7b:6d:83:63:98:3d:33:cd:66:fb:14:1d:19:11:fe:ae:
23:09:b1:e0:7e:68:6e:19:94:5e:8e:b0:6a:e3:46:43:ed:40:
f5:16:ee:f5:7d:bc:95:6c:af:df:64:ea:6e:da:5f:0c:31:be:
9d:77:4f:59:97:64:bc:cb:10:7b:9b:89:5a:3f:3a:8b:d3:37:
e3:83:69:ae:ee:7c:1f:ab:a0:dd:68:2a:82:7f:33:3d:84:c0:
5e:18:74:4f:27:46:41:b1:a0:25:26:3a:b1:ea:05:f4:9d:41:
a1:eb:ce:55:57:78:2f:a3:3f:d6:76:f3:46:11:3a:78:ee:87:
09:04:85:46:be:6f:57:63:f9:33:8c:3d:25:7f:52:da:11:48:
e3:c1:80:e8:49:20:b1:a6:e3:58:1f:da:a6:4f:e1:8d:61:f4:
7f:3f:8c:ec:1a:15:98:b4:6d:73:fc:07:69:47:00:e9:21:65:
e0:30:e8:69:9c:4c:b4:e6:ff:d6:c1:02:c1:07:4a:16:fb:78:
46:a8:7d:61:eb:b6:5d:d9:f0:a5:97:38:03:35:20:85:38:fe:
de:56:77:89:83:a6:ce:5c:09:82:27:d0:d8:5d:c9:7f:c4:d4:
5f:f2:92:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH/4Wk5iP9JzE/GK1mS/sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTAxMTM0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDA5M2JlYzIyMWJjNDZjZDNlMTk2NDMwMDcyYmI4Yzg0NGQ0ODc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7ZRvvr0XbUWNt6dkf3qR5nxC/0q
wGaIFmBrdvHk8ruUiy8f8u6AVs3/kPCurQQ1XbRRn9DMVfh30ppL3Fs/qCnkHgUn
1wQ1jDTWFTPLF9/kgZbYBZZz1CCBXxtUtE0JceKu5AHRohgmX60sLFF64YkQpuFw
hbP3m59J5CTaCIespvMbFHPICrfp+1JbJui7Du/FvK62WTWJ7VrFeGK+A17BDCxV
UbOg6LFDt2KTNItTMoRVJZdd8D7f37nYhK7t6GgBpwYXOHn+PtkEhcZsiwEHxnAH
Ct3CuVEdaRb2MuB80Hc/J4zaaIUFDdNL/YpGUhCtaeCHtssCz5A3/5hUFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQJO+wiG8Rs0+GWQwByu4yETUh3MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvZEFrNzdDSWJ4R3pUNFpaREFISzdqSVJOU0hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoRMA0G
CSqGSIb3DQEBCwUAA4IBAQB5ZlMQG9k5srQ5D9qdeqj64HBh3Httg2OYPTPNZvsU
HRkR/q4jCbHgfmhuGZRejrBq40ZD7UD1Fu71fbyVbK/fZOpu2l8MMb6dd09Zl2S8
yxB7m4laPzqL0zfjg2mu7nwfq6DdaCqCfzM9hMBeGHRPJ0ZBsaAlJjqx6gX0nUGh
685VV3gvoz/WdvNGETp47ocJBIVGvm9XY/kzjD0lf1LaEUjjwYDoSSCxpuNYH9qm
T+GNYfR/P4zsGhWYtG1z/AdpRwDpIWXgMOhpnEy05v/WwQLBB0oW+3hGqH1h67Zd
2fCllzgDNSCFOP7eVneJg6bOXAmCJ9DYXcl/xNRf8pIW
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:15:56 2025 by rpki-client