Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0uLLwl_676qd3051uNTwDq_Nxz0.roa
File: 0uLLwl_676qd3051uNTwDq_Nxz0.roa (raw, json)
Hash identifier: 99MgGBuhXFJGGvUNmNkto9cQz53W94aoavbKMPgJ9FY=
Subject key identifier: D2:E2:CB:C2:5F:FA:EF:AA:9D:DF:4E:75:B8:D4:F0:0E:AF:CD:C7:3D
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 01877EC1792B21A317FFEDB20154E185D7F7
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0uLLwl_676qd3051uNTwDq_Nxz0.roa
Signing time: Fri 14 Apr 2023 07:53:41 +0000
ROA not before: Fri 14 Apr 2023 07:53:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15967
IP address blocks: 77.55.208.0/20 maxlen: 20
77.55.224.0/20 maxlen: 20
77.55.240.0/22 maxlen: 22
77.55.246.0/24 maxlen: 24
77.55.248.0/22 maxlen: 22
77.55.252.0/23 maxlen: 23
77.55.247.0/24 maxlen: 24
77.55.152.0/22 maxlen: 22
77.55.159.0/24 maxlen: 24
77.55.158.0/24 maxlen: 24
77.55.156.0/23 maxlen: 23
77.55.155.0/24 maxlen: 24
77.55.166.0/24 maxlen: 24
77.55.160.0/23 maxlen: 23
77.55.160.0/20 maxlen: 20
77.55.164.0/23 maxlen: 23
77.55.162.0/23 maxlen: 23
77.55.172.0/23 maxlen: 23
77.55.167.0/24 maxlen: 24
77.55.170.0/23 maxlen: 23
77.55.168.0/23 maxlen: 23
77.55.174.0/23 maxlen: 23
77.55.178.0/24 maxlen: 24
77.55.177.0/24 maxlen: 24
77.55.176.0/23 maxlen: 23
77.55.176.0/24 maxlen: 24
77.55.176.0/21 maxlen: 21
77.55.179.0/24 maxlen: 24
77.55.186.0/23 maxlen: 23
77.55.181.0/24 maxlen: 24
77.55.180.0/23 maxlen: 23
77.55.184.0/23 maxlen: 23
77.55.182.0/23 maxlen: 23
77.55.192.0/20 maxlen: 20
77.55.188.0/23 maxlen: 23
77.55.190.0/23 maxlen: 23
77.55.0.0/18 maxlen: 18
77.55.0.0/16 maxlen: 16
31.172.170.0/23 maxlen: 23
31.172.169.0/24 maxlen: 24
31.172.168.0/24 maxlen: 24
31.172.168.0/22 maxlen: 22
77.55.96.0/22 maxlen: 22
77.55.104.0/23 maxlen: 23
77.55.100.0/22 maxlen: 22
77.55.112.0/23 maxlen: 23
77.55.108.0/22 maxlen: 22
77.55.106.0/23 maxlen: 23
77.55.118.0/23 maxlen: 23
77.55.116.0/23 maxlen: 23
77.55.114.0/23 maxlen: 23
77.55.122.0/23 maxlen: 23
77.55.121.0/24 maxlen: 24
77.55.120.0/24 maxlen: 24
77.55.125.0/24 maxlen: 24
77.55.124.0/24 maxlen: 24
77.55.126.0/24 maxlen: 24
77.55.128.0/20 maxlen: 20
77.55.127.0/24 maxlen: 24
77.55.144.0/21 maxlen: 21
77.55.64.0/22 maxlen: 22
77.55.68.0/22 maxlen: 22
77.55.76.0/23 maxlen: 23
77.55.78.0/23 maxlen: 23
77.55.72.0/22 maxlen: 22
85.128.160.0/19 maxlen: 19
85.128.192.0/18 maxlen: 18
85.128.130.0/24 maxlen: 24
85.128.129.0/24 maxlen: 24
85.128.128.0/24 maxlen: 24
85.128.128.0/17 maxlen: 17
85.128.132.0/23 maxlen: 23
85.128.131.0/24 maxlen: 24
85.128.136.0/22 maxlen: 22
85.128.135.0/24 maxlen: 24
85.128.134.0/24 maxlen: 24
85.128.144.0/20 maxlen: 20
85.128.143.0/24 maxlen: 24
85.128.142.0/24 maxlen: 24
85.128.140.0/23 maxlen: 23
2a01:6100::/32 maxlen: 32
2a01:6100::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 May 2023 06:47:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7e:c1:79:2b:21:a3:17:ff:ed:b2:01:54:e1:85:d7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Apr 14 07:53:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2e2cbc25ffaefaa9ddf4e75b8d4f00eafcdc73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2b:35:12:56:b9:10:be:c7:34:4a:77:96:f0:
1e:35:dd:4a:84:9b:00:5d:b7:97:3e:7c:5a:c0:3d:
35:77:e6:0f:fe:7b:3d:e2:87:87:a5:0b:3e:66:37:
97:e5:49:2a:55:23:77:b4:1d:d5:4d:f9:7a:21:98:
8a:d6:7c:43:46:fd:88:84:7c:69:27:d5:0f:ea:8a:
fb:a5:03:74:4f:08:25:b2:98:c5:33:8b:03:73:0c:
8a:eb:f8:41:6a:51:8d:0e:93:75:fe:57:53:92:65:
63:30:80:f0:14:84:8a:dc:10:76:9f:dc:6e:a2:c1:
32:68:1f:69:1d:98:c6:e5:b6:e1:02:f1:5d:a7:4a:
b1:ae:b3:9e:ad:3c:95:e2:3f:85:fc:30:31:d3:a4:
d0:12:6e:65:9f:1c:82:19:f1:cc:08:bc:5c:f9:da:
01:86:bf:f6:65:0a:ca:8f:49:69:65:e7:34:bc:1f:
6b:b0:dc:ae:d9:55:c4:aa:48:46:0e:02:67:5d:47:
f5:3a:2d:ee:a8:da:08:b1:a5:04:39:f9:17:c5:de:
06:77:f6:c6:e9:bd:75:fc:4f:6c:b1:66:b4:0d:a0:
9a:8a:34:b2:93:38:d5:85:ad:6a:0a:5a:f9:3f:1f:
2c:1c:fe:9f:cc:08:2f:37:32:f1:31:60:ae:ff:31:
9f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E2:CB:C2:5F:FA:EF:AA:9D:DF:4E:75:B8:D4:F0:0E:AF:CD:C7:3D
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/0uLLwl_676qd3051uNTwDq_Nxz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.168.0/22
77.55.0.0/16
85.128.128.0/17
IPv6:
2a01:6100::/32
Signature Algorithm: sha256WithRSAEncryption
07:57:33:71:34:3d:ee:b0:f7:ec:d2:b7:91:3d:4a:55:17:a0:
62:53:8d:6a:f4:0a:7f:b9:aa:c8:6f:61:52:02:65:d9:42:27:
9e:71:31:c4:8a:6b:2a:ab:a0:c2:39:8d:96:c1:84:a1:a8:63:
3d:0f:3f:a7:99:b3:1c:e1:02:04:a1:45:ed:56:ba:f9:9c:39:
25:17:32:2c:4c:e8:c2:10:50:31:e9:f7:80:30:3c:d3:b6:be:
44:4c:6f:a1:8e:66:c5:1b:a1:0a:51:6b:a2:3d:c4:58:5a:b6:
db:80:c6:17:f3:ca:c1:06:67:3d:3e:ab:1d:81:3f:13:56:3e:
f8:aa:e1:7f:e1:c4:1b:ea:4d:6f:91:0f:e5:6f:3d:f9:f4:64:
9e:6a:cb:99:b5:f7:98:a6:e3:f5:93:c7:7b:fe:ed:cb:14:88:
65:7d:1e:2a:b7:47:c9:db:24:1d:2f:15:85:7c:4e:63:d9:0a:
d6:a3:e7:c5:e2:c5:87:98:25:20:d8:f9:13:fe:e8:d5:e4:30:
d2:6f:3a:e3:ca:f9:6b:6a:34:a7:1b:34:a6:c3:ed:81:95:2e:
1c:60:24:ea:c6:f9:e1:95:16:15:84:9b:21:59:3f:7d:6b:41:
f8:f0:be:11:7a:4a:f0:2c:5f:1a:2f:c7:ef:7c:ad:bb:c1:06:
3f:03:24:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org