Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b97849-2af5-4c3e-8f0e-4dd3853a2241/1/XgIaaUNjiTL2RXQ_vMGhDlnBim8.roa
File: XgIaaUNjiTL2RXQ_vMGhDlnBim8.roa (raw, json)
Hash identifier: MWlcb4d2nJ643oSzUCdoU8COmjCjvcrMvNvr5GfCdZA=
Subject key identifier: 5E:02:1A:69:43:63:89:32:F6:45:74:3F:BC:C1:A1:0E:59:C1:8A:6F
Certificate issuer: /CN=77480527d0b35caf95b37502c4c6f9e3e81fd8a3
Certificate serial: 018572C35818963A9EDDA40BC452D58D345F
Authority key identifier: 77:48:05:27:D0:B3:5C:AF:95:B3:75:02:C4:C6:F9:E3:E8:1F:D8:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0gFJ9CzXK-Vs3UCxMb54-gf2KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b97849-2af5-4c3e-8f0e-4dd3853a2241/1/XgIaaUNjiTL2RXQ_vMGhDlnBim8.roa
Signing time: Mon 02 Jan 2023 13:54:42 +0000
ROA not before: Mon 02 Jan 2023 13:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39135
IP address blocks: 77.238.64.0/19 maxlen: 19
185.73.56.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:58:18:96:3a:9e:dd:a4:0b:c4:52:d5:8d:34:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77480527d0b35caf95b37502c4c6f9e3e81fd8a3
Validity
Not Before: Jan 2 13:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e021a6943638932f645743fbcc1a10e59c18a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:07:0a:df:ad:0e:59:35:ef:67:65:9f:53:88:
5d:41:e8:a4:9e:12:32:e0:8c:32:20:ad:f4:d0:a5:
4f:40:90:cb:d7:e7:bc:a5:27:69:92:87:9b:89:21:
bb:6c:be:f9:12:a7:55:e4:29:c5:dc:87:d2:8e:c8:
3a:59:9c:5d:f0:90:02:c3:d0:3b:d6:14:54:56:4d:
57:d7:bf:85:aa:3d:95:57:01:56:a4:60:5c:f9:5b:
65:32:7f:de:00:53:e3:c0:c1:2b:6b:c9:24:29:4d:
d1:b7:d2:68:7a:dc:0d:fe:5e:b4:f7:a9:c4:2e:1f:
bb:de:fa:99:66:cb:4a:4e:81:51:6f:f3:08:d2:df:
1e:4a:d7:37:f2:82:fa:a4:bb:a3:60:fd:34:70:e8:
be:aa:05:09:24:f2:05:b2:63:99:84:b1:a6:8b:7b:
6c:ce:a1:b8:c9:84:0e:99:3c:71:76:43:4c:41:1e:
77:6d:20:07:28:89:dc:4f:e7:cd:bb:d1:82:8c:1b:
c7:3a:a5:90:34:f0:06:69:e2:38:52:c3:c8:36:2f:
4e:ad:07:d1:08:13:60:23:df:37:53:96:76:c4:7d:
e8:87:df:31:9c:fb:24:b8:26:56:07:8f:7b:1b:be:
f1:8c:22:08:e3:85:c1:ed:21:2c:2a:28:24:16:4b:
4a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:02:1A:69:43:63:89:32:F6:45:74:3F:BC:C1:A1:0E:59:C1:8A:6F
X509v3 Authority Key Identifier:
keyid:77:48:05:27:D0:B3:5C:AF:95:B3:75:02:C4:C6:F9:E3:E8:1F:D8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0gFJ9CzXK-Vs3UCxMb54-gf2KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b97849-2af5-4c3e-8f0e-4dd3853a2241/1/XgIaaUNjiTL2RXQ_vMGhDlnBim8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b97849-2af5-4c3e-8f0e-4dd3853a2241/1/d0gFJ9CzXK-Vs3UCxMb54-gf2KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.238.64.0/19
185.73.56.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:7e:77:d0:7c:3d:c1:5f:19:06:28:bf:89:13:e0:09:87:1f:
72:eb:21:c3:15:a5:a6:78:f4:e2:8d:b9:e2:7b:27:95:f9:77:
74:6c:df:c3:15:cb:4f:16:b8:c4:48:e5:6d:f4:ad:ca:d5:5e:
ab:3e:54:b3:b4:31:06:cc:e2:2e:47:5b:4a:9b:d0:f2:af:a1:
1e:71:c3:9f:14:f9:db:77:eb:ba:ce:72:82:6a:8c:f6:44:0d:
a7:13:0a:df:9a:47:83:7e:a5:f7:06:4b:af:52:f2:3c:cc:bc:
36:9b:85:5e:34:8e:87:5a:57:8e:01:31:85:d8:f8:d6:ba:f0:
ef:12:fc:62:b1:60:7a:4e:a6:05:b7:71:7c:95:cc:af:c1:bf:
76:b5:b3:b7:a2:54:67:d0:de:c2:d6:ea:54:05:db:09:a3:5c:
86:f8:6b:9e:af:13:74:dd:ef:3a:01:3a:91:5f:17:67:51:07:
ba:ac:ee:7e:bf:52:42:0d:7f:ad:f8:5c:e2:49:de:a6:18:ed:
20:ce:7d:6c:15:d9:da:2b:21:b3:37:2e:10:40:5e:a0:65:8a:
f9:99:86:fa:4d:e4:cf:38:1b:54:31:29:87:f7:d8:0d:57:02:
83:c9:09:f4:a8:57:f5:69:0c:c6:b7:b7:75:5d:96:79:32:ad:
a8:da:51:24
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVyw1gYljqe3aQLxFLVjTRfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NDgwNTI3ZDBiMzVjYWY5NWIzNzUwMmM0YzZmOWUzZTgx
ZmQ4YTMwHhcNMjMwMTAyMTM1NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTAyMWE2OTQzNjM4OTMyZjY0NTc0M2ZiY2MxYTEwZTU5YzE4YTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAcK360OWTXvZ2WfU4hdQeiknhIy
4IwyIK300KVPQJDL1+e8pSdpkoebiSG7bL75EqdV5CnF3IfSjsg6WZxd8JACw9A7
1hRUVk1X17+Fqj2VVwFWpGBc+VtlMn/eAFPjwMEra8kkKU3Rt9JoetwN/l6096nE
Lh+73vqZZstKToFRb/MI0t8eStc38oL6pLujYP00cOi+qgUJJPIFsmOZhLGmi3ts
zqG4yYQOmTxxdkNMQR53bSAHKIncT+fNu9GCjBvHOqWQNPAGaeI4UsPINi9OrQfR
CBNgI983U5Z2xH3oh98xnPskuCZWB497G77xjCII44XB7SEsKigkFktKhwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFF4CGmlDY4ky9kV0P7zBoQ5ZwYpvMB8GA1UdIwQY
MBaAFHdIBSfQs1yvlbN1AsTG+ePoH9ijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDBnRko5Q3pYSy1WczNVQ3hNYjU0LWdmMktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iOTc4NDktMmFmNS00YzNlLThmMGUt
NGRkMzg1M2EyMjQxLzEvWGdJYWFVTmppVEwyUlhRX3ZNR2hEbG5CaW04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iOTc4NDktMmFmNS00YzNlLThmMGUtNGRkMzg1M2EyMjQx
LzEvZDBnRko5Q3pYSy1WczNVQ3hNYjU0LWdmMktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFTe5AAwQC
uUk4MA0GCSqGSIb3DQEBCwUAA4IBAQCifnfQfD3BXxkGKL+JE+AJhx9y6yHDFaWm
ePTijbnieyeV+Xd0bN/DFctPFrjESOVt9K3K1V6rPlSztDEGzOIuR1tKm9Dyr6Ee
ccOfFPnbd+u6znKCaoz2RA2nEwrfmkeDfqX3BkuvUvI8zLw2m4VeNI6HWleOATGF
2PjWuvDvEvxisWB6TqYFt3F8lcyvwb92tbO3olRn0N7C1upUBdsJo1yG+GuerxN0
3e86ATqRXxdnUQe6rO5+v1JCDX+t+FziSd6mGO0gzn1sFdnaKyGzNy4QQF6gZYr5
mYb6TeTPOBtUMSmH99gNVwKDyQn0qFf1aQzGt7d1XZZ5Mq2o2lEk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-ams.rpki-client.org