Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/dybWSbiHCTaf-Gdv7aPWjGxlsI4.roa
File: dybWSbiHCTaf-Gdv7aPWjGxlsI4.roa (raw, json)
Hash identifier: jEJd4aG71aKjKNyHuhHixjI0XfXtSOndm3VVt42JYKU=
Subject key identifier: 77:26:D6:49:B8:87:09:36:9F:F8:67:6F:ED:A3:D6:8C:6C:65:B0:8E
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 01912B10C402893196303B15A9759C37AF2D
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/dybWSbiHCTaf-Gdv7aPWjGxlsI4.roa
Signing time: Wed 07 Aug 2024 04:20:04 +0000
ROA not before: Wed 07 Aug 2024 04:20:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41750
IP address blocks: 77.235.0.0/19 maxlen: 19
77.235.0.0/20 maxlen: 20
77.235.7.0/24 maxlen: 24
77.235.16.0/20 maxlen: 20
77.235.22.0/24 maxlen: 24
92.245.96.0/19 maxlen: 19
92.245.96.0/20 maxlen: 20
92.245.112.0/20 maxlen: 20
109.201.160.0/19 maxlen: 19
158.181.0.0/19 maxlen: 19
158.181.0.0/20 maxlen: 20
158.181.16.0/20 maxlen: 20
158.181.128.0/17 maxlen: 17
158.181.128.0/20 maxlen: 20
158.181.144.0/20 maxlen: 20
158.181.160.0/20 maxlen: 20
158.181.176.0/20 maxlen: 20
158.181.192.0/20 maxlen: 20
158.181.208.0/20 maxlen: 20
158.181.224.0/20 maxlen: 20
158.181.240.0/20 maxlen: 20
176.123.224.0/19 maxlen: 19
185.138.100.0/22 maxlen: 22
2a04:5600::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 28 Oct 2024 03:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2b:10:c4:02:89:31:96:30:3b:15:a9:75:9c:37:af:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Aug 7 04:20:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7726d649b88709369ff8676feda3d68c6c65b08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:82:53:51:47:30:4e:a5:c0:8e:91:c5:6f:3e:
d6:3d:8f:31:9b:95:00:1b:1b:4c:b4:fc:a3:e0:8d:
83:e3:26:8d:bb:1f:4f:0c:5d:a4:1c:72:92:6c:a5:
63:ea:cc:c6:b4:6a:a5:03:60:d5:23:c8:08:b8:0c:
c7:2c:dc:35:0b:0f:e4:e8:9b:11:86:fe:5a:24:75:
2d:86:17:06:ba:82:8d:16:55:34:e6:79:8a:0f:09:
28:c3:d5:9f:82:e9:55:e1:51:4f:99:dc:af:41:02:
30:d5:29:29:75:f2:e1:6a:6d:5b:66:53:fc:fe:c6:
b1:f5:fb:10:33:26:bb:00:52:9c:75:42:82:03:df:
b4:2e:fa:45:28:03:c1:c8:d5:d5:6c:08:9d:ae:83:
1a:4d:22:c6:25:9b:72:54:1f:75:26:dc:2d:a1:a9:
95:f3:67:23:50:49:1b:cd:d8:db:e7:f7:86:7b:c4:
29:18:a3:5d:7d:64:10:c4:0b:67:a1:74:5d:0f:52:
e0:8e:62:7b:db:9d:75:43:ec:0d:df:85:93:9c:b2:
f2:cf:f3:d2:25:ad:e7:d1:b2:e1:0c:11:ef:a3:1a:
73:d5:7d:8f:eb:7c:08:4c:26:04:b5:1f:1b:5f:66:
07:8a:0f:fd:d0:40:38:96:09:56:c6:1c:08:96:4a:
06:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:26:D6:49:B8:87:09:36:9F:F8:67:6F:ED:A3:D6:8C:6C:65:B0:8E
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/dybWSbiHCTaf-Gdv7aPWjGxlsI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.235.0.0/19
92.245.96.0/19
109.201.160.0/19
158.181.0.0/19
158.181.128.0/17
176.123.224.0/19
185.138.100.0/22
IPv6:
2a04:5600::/29
Signature Algorithm: sha256WithRSAEncryption
66:dd:a9:83:64:b6:f7:3e:da:3e:49:9b:fd:2d:50:a9:16:c8:
8c:8e:1f:0a:bf:8f:c2:c2:d7:bf:e1:dd:74:b4:84:5a:13:ba:
b9:e6:d1:1b:4b:e2:42:b8:ea:2d:58:c4:36:4c:13:ab:06:19:
64:aa:82:a0:f3:78:83:bb:60:1c:ed:6f:d4:35:3d:3c:fa:f5:
12:14:2e:d6:24:f9:3d:cf:f7:ca:b7:b6:a5:69:f3:21:4b:5c:
be:26:74:4d:10:b6:be:65:22:de:f1:66:45:80:a5:22:48:3f:
43:51:55:29:46:d3:f2:ec:16:3b:71:c2:55:c3:3a:e6:ae:0d:
da:a8:52:83:41:dc:15:72:f6:ae:c6:12:38:c5:cf:56:dd:3f:
6e:b3:1b:a6:bb:5d:6b:4e:45:c0:61:d1:dd:c6:1e:31:8d:1c:
26:a3:ee:79:d4:2b:62:84:4e:27:7e:fc:7a:02:77:03:f2:fb:
eb:e6:e7:b6:68:9a:80:60:58:b5:d3:ef:ae:96:94:25:3b:8a:
c2:0c:38:36:ff:df:9b:e3:0a:c4:80:7d:4a:ca:bf:d2:a2:5f:
7d:c4:fe:d3:db:e2:13:93:8e:87:2e:7d:3b:80:67:f3:7f:87:
d4:92:5e:f9:8e:29:ee:79:34:db:ca:a4:cf:9f:fb:0e:bd:41:
fe:b9:1f:3f
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAZErEMQCiTGWMDsVqXWcN68tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZTNjMjkwMGI1OTk3NTQyODNmMjdmM2I0ZThkN2Y2YzQ1
MTA5NzIwHhcNMjQwODA3MDQyMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzI2ZDY0OWI4ODcwOTM2OWZmODY3NmZlZGEzZDY4YzZjNjViMDhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIJTUUcwTqXAjpHFbz7WPY8xm5UA
GxtMtPyj4I2D4yaNux9PDF2kHHKSbKVj6szGtGqlA2DVI8gIuAzHLNw1Cw/k6JsR
hv5aJHUthhcGuoKNFlU05nmKDwkow9WfgulV4VFPmdyvQQIw1SkpdfLham1bZlP8
/sax9fsQMya7AFKcdUKCA9+0LvpFKAPByNXVbAidroMaTSLGJZtyVB91JtwtoamV
82cjUEkbzdjb5/eGe8QpGKNdfWQQxAtnoXRdD1LgjmJ72511Q+wN34WTnLLyz/PS
Ja3n0bLhDBHvoxpz1X2P63wITCYEtR8bX2YHig/90EA4lglWxhwIlkoGwwIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFHcm1km4hwk2n/hnb+2j1oxsZbCOMB8GA1UdIwQY
MBaAFHfjwpALWZdUKD8n87To1/bEUQlyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZC1QQ2tBdFpsMVFvUHlmenRPalg5c1JSQ1hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9lZjJiNDktMDM1Zi00MGE0LWFlNTEt
ZDNjNTVkNGZkYTlkLzEvZHliV1NiaUhDVGFmLUdkdjdhUFdqR3hsc0k0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9lZjJiNDktMDM1Zi00MGE0LWFlNTEtZDNjNTVkNGZkYTlk
LzEvZC1QQ2tBdFpsMVFvUHlmenRPalg5c1JSQ1hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQFTesAAwQF
XPVgAwQFbcmgAwQFnrUAAwQHnrWAAwQFsHvgAwQCuYpkMA0EAgACMAcDBQMqBFYA
MA0GCSqGSIb3DQEBCwUAA4IBAQBm3amDZLb3Pto+SZv9LVCpFsiMjh8Kv4/Cwte/
4d10tIRaE7q55tEbS+JCuOotWMQ2TBOrBhlkqoKg83iDu2Ac7W/UNT08+vUSFC7W
JPk9z/fKt7alafMhS1y+JnRNELa+ZSLe8WZFgKUiSD9DUVUpRtPy7BY7ccJVwzrm
rg3aqFKDQdwVcvauxhI4xc9W3T9usxumu11rTkXAYdHdxh4xjRwmo+551CtihE4n
fvx6AncD8vvr5ue2aJqAYFi10++ulpQlO4rCDDg2/9+b4wrEgH1Kyr/Sol99xP7T
2+ITk46HLn07gGfzf4fUkl75jinueTTbyqTPn/sOvUH+uR8/
-----END CERTIFICATE-----
Generated at Mon Oct 28 05:37:33 2024 by rpki-client on console-fra.rpki-client.org