Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0VCyLX63XrRPWoInagyRAFWYgEI.roa
File: 0VCyLX63XrRPWoInagyRAFWYgEI.roa (raw, json)
Hash identifier: sdm6MErMPks75Wj+3EcwCsOnk6pca4rasLgbaLfBA7Q=
Subject key identifier: D1:50:B2:2D:7E:B7:5E:B4:4F:5A:82:27:6A:0C:91:00:55:98:80:42
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 01892F8BBD6A944436B807B94BBF587A49D5
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0VCyLX63XrRPWoInagyRAFWYgEI.roa
Signing time: Fri 07 Jul 2023 08:50:34 +0000
ROA not before: Fri 07 Jul 2023 08:50:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15967
IP address blocks: 77.55.208.0/20 maxlen: 20
77.55.224.0/20 maxlen: 20
77.55.240.0/22 maxlen: 22
77.55.246.0/24 maxlen: 24
77.55.248.0/22 maxlen: 22
77.55.252.0/23 maxlen: 23
77.55.247.0/24 maxlen: 24
77.55.152.0/24 maxlen: 24
77.55.159.0/24 maxlen: 24
77.55.158.0/24 maxlen: 24
77.55.153.0/24 maxlen: 24
77.55.156.0/23 maxlen: 23
77.55.155.0/24 maxlen: 24
77.55.154.0/24 maxlen: 24
77.55.166.0/24 maxlen: 24
77.55.160.0/23 maxlen: 23
77.55.160.0/20 maxlen: 20
77.55.164.0/23 maxlen: 23
77.55.162.0/23 maxlen: 23
77.55.172.0/23 maxlen: 23
77.55.167.0/24 maxlen: 24
77.55.170.0/23 maxlen: 23
77.55.168.0/23 maxlen: 23
77.55.174.0/23 maxlen: 23
77.55.178.0/24 maxlen: 24
77.55.177.0/24 maxlen: 24
77.55.176.0/23 maxlen: 23
77.55.176.0/24 maxlen: 24
77.55.176.0/21 maxlen: 21
77.55.179.0/24 maxlen: 24
77.55.186.0/23 maxlen: 23
77.55.181.0/24 maxlen: 24
77.55.180.0/23 maxlen: 23
77.55.184.0/23 maxlen: 23
77.55.182.0/23 maxlen: 23
77.55.192.0/20 maxlen: 20
77.55.188.0/23 maxlen: 23
77.55.190.0/23 maxlen: 23
77.55.0.0/18 maxlen: 18
77.55.0.0/16 maxlen: 16
31.172.170.0/23 maxlen: 23
31.172.169.0/24 maxlen: 24
31.172.168.0/24 maxlen: 24
31.172.168.0/22 maxlen: 22
77.55.96.0/22 maxlen: 22
77.55.104.0/23 maxlen: 23
77.55.100.0/22 maxlen: 22
77.55.112.0/23 maxlen: 23
77.55.108.0/22 maxlen: 22
77.55.106.0/23 maxlen: 23
77.55.118.0/23 maxlen: 23
77.55.116.0/23 maxlen: 23
77.55.114.0/23 maxlen: 23
77.55.122.0/23 maxlen: 23
77.55.121.0/24 maxlen: 24
77.55.120.0/24 maxlen: 24
77.55.125.0/24 maxlen: 24
77.55.124.0/24 maxlen: 24
77.55.126.0/24 maxlen: 24
77.55.128.0/20 maxlen: 20
77.55.127.0/24 maxlen: 24
77.55.144.0/21 maxlen: 21
77.55.64.0/22 maxlen: 22
77.55.68.0/22 maxlen: 22
77.55.76.0/23 maxlen: 23
77.55.78.0/23 maxlen: 23
77.55.72.0/22 maxlen: 22
77.55.84.0/22 maxlen: 22
77.55.90.0/23 maxlen: 23
77.55.88.0/23 maxlen: 23
85.128.160.0/19 maxlen: 19
85.128.192.0/18 maxlen: 18
85.128.130.0/24 maxlen: 24
85.128.129.0/24 maxlen: 24
85.128.128.0/24 maxlen: 24
85.128.128.0/17 maxlen: 17
85.128.132.0/23 maxlen: 23
85.128.131.0/24 maxlen: 24
85.128.136.0/22 maxlen: 22
85.128.135.0/24 maxlen: 24
85.128.134.0/24 maxlen: 24
85.128.144.0/20 maxlen: 20
85.128.143.0/24 maxlen: 24
85.128.142.0/24 maxlen: 24
85.128.140.0/23 maxlen: 23
2a01:6100::/32 maxlen: 32
2a01:6100::/48 maxlen: 48
2a01:6100:111::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jul 2023 06:40:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:8b:bd:6a:94:44:36:b8:07:b9:4b:bf:58:7a:49:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Jul 7 08:50:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d150b22d7eb75eb44f5a82276a0c910055988042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:38:16:bb:d9:00:47:2a:81:fb:9f:b2:72:44:
1a:be:1e:57:fa:7f:44:79:3f:b3:be:77:db:07:d6:
f2:74:2f:77:ee:f6:ff:39:94:b5:b1:a5:3d:18:41:
03:1e:29:94:0a:ce:2b:2b:f7:0c:c8:4b:0d:43:c8:
43:fe:48:18:2f:a0:1d:ff:22:0e:51:c6:bf:97:f5:
50:64:6c:0e:b0:66:36:72:f8:7e:67:6e:5e:0e:e8:
dd:16:53:89:7b:ad:7d:fe:a3:c3:3d:47:a6:c6:dc:
2b:c1:b4:8e:74:d1:04:33:0f:9a:41:13:6c:c2:28:
03:65:64:d7:22:29:17:0b:75:e4:4a:02:26:c2:2b:
f9:07:1e:fe:2c:c2:25:7c:f8:02:e5:67:4b:2f:df:
db:c0:a1:bd:53:52:4d:29:29:a8:ca:a3:2a:68:5e:
c4:de:d6:fa:a4:b3:37:a4:47:a2:a9:f1:0d:79:87:
ee:17:bc:15:6b:4f:32:89:81:d7:ad:fb:6c:85:42:
2b:60:52:61:87:da:2c:84:aa:a2:a9:1c:14:9c:89:
54:f8:37:d0:75:86:cd:bb:64:1a:ba:02:db:23:fe:
f5:99:ee:9f:2a:89:55:b5:6c:58:4a:e4:1e:f4:e4:
29:60:76:33:b8:b1:4b:f5:60:ed:05:6a:48:d6:b9:
ff:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:50:B2:2D:7E:B7:5E:B4:4F:5A:82:27:6A:0C:91:00:55:98:80:42
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0VCyLX63XrRPWoInagyRAFWYgEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.168.0/22
77.55.0.0/16
85.128.128.0/17
IPv6:
2a01:6100::/32
Signature Algorithm: sha256WithRSAEncryption
5f:89:00:25:45:d6:36:8c:c3:a7:10:1c:98:f0:e7:0c:08:1d:
a5:18:34:cb:c7:b2:a1:81:2d:19:74:a6:f8:85:2f:b9:a2:ea:
27:76:66:f9:3c:aa:7e:39:80:8a:bf:bd:a8:ad:43:85:ae:de:
54:b4:f8:e7:d7:79:fc:2b:3c:b4:d9:52:4a:48:b7:34:c7:a2:
ea:67:7d:3c:1e:f2:48:bf:96:cf:f9:f0:88:5f:9b:89:1c:5f:
4e:d3:8b:d6:43:a3:9f:9d:28:25:02:a2:d3:0a:6c:22:09:5e:
d2:a3:4b:89:ff:d8:19:e6:75:b4:37:e2:76:6a:1c:c7:34:38:
79:a0:9d:40:87:34:c7:54:76:7b:d7:29:b3:83:c7:22:61:67:
6f:2d:9d:62:7c:02:08:c1:13:06:fb:8a:25:22:10:45:3b:e9:
a6:fa:63:89:12:eb:ce:95:8a:b7:54:a6:94:5f:1b:93:15:f1:
ff:fd:1d:a5:df:18:4e:c6:8f:c8:86:8c:4e:f1:1c:56:30:91:
b7:61:91:81:de:c2:5b:ed:42:75:04:41:bd:b3:54:53:82:15:
7f:77:8a:5b:9c:2f:3c:e9:aa:06:ff:63:3a:f1:4f:4a:0f:d9:
65:39:42:33:45:6f:09:f6:99:dd:c4:9c:03:15:3b:27:bb:b2:
b7:d9:0b:39
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYkvi71qlEQ2uAe5S79YeknVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTJmNDI0MDdmMjFjOWQ3NjkwZmIzMGZkOGNkYjJiZmRm
NmQwMzAwHhcNMjMwNzA3MDg1MDM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTUwYjIyZDdlYjc1ZWI0NGY1YTgyMjc2YTBjOTEwMDU1OTg4MDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6DgWu9kARyqB+5+yckQavh5X+n9E
eT+zvnfbB9bydC937vb/OZS1saU9GEEDHimUCs4rK/cMyEsNQ8hD/kgYL6Ad/yIO
Uca/l/VQZGwOsGY2cvh+Z25eDujdFlOJe619/qPDPUemxtwrwbSOdNEEMw+aQRNs
wigDZWTXIikXC3XkSgImwiv5Bx7+LMIlfPgC5WdLL9/bwKG9U1JNKSmoyqMqaF7E
3tb6pLM3pEeiqfENeYfuF7wVa08yiYHXrftshUIrYFJhh9oshKqiqRwUnIlU+DfQ
dYbNu2QaugLbI/71me6fKolVtWxYSuQe9OQpYHYzuLFL9WDtBWpI1rn/AwIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFNFQsi1+t160T1qCJ2oMkQBVmIBCMB8GA1UdIwQY
MBaAFMWi9CQH8hyddpD7MP2M2yv99tAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFMMEpBZnlISjEya1Bzd19ZemJLXzMyMERBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xYTE4ZTEtNjdjOC00OTJlLThmYmEt
ZmI1YzYyZTQyZjZiLzEvMFZDeUxYNjNYclJQV29JbmFneVJBRldZZ0VJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC8xYTE4ZTEtNjdjOC00OTJlLThmYmEtZmI1YzYyZTQyZjZi
LzEveGFMMEpBZnlISjEya1Bzd19ZemJLXzMyMERBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwQCH6yoAwMA
TTcDBAdVgIAwDQQCAAIwBwMFACoBYQAwDQYJKoZIhvcNAQELBQADggEBAF+JACVF
1jaMw6cQHJjw5wwIHaUYNMvHsqGBLRl0pviFL7mi6id2Zvk8qn45gIq/vaitQ4Wu
3lS0+OfXefwrPLTZUkpItzTHoupnfTwe8ki/ls/58Ihfm4kcX07Ti9ZDo5+dKCUC
otMKbCIJXtKjS4n/2BnmdbQ34nZqHMc0OHmgnUCHNMdUdnvXKbODxyJhZ28tnWJ8
AgjBEwb7iiUiEEU76ab6Y4kS686VirdUppRfG5MV8f/9HaXfGE7Gj8iGjE7xHFYw
kbdhkYHewlvtQnUEQb2zVFOCFX93ilucLzzpqgb/YzrxT0oP2WU5QjNFbwn2md3E
nAMVOye7srfZCzk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org