Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/UCFys0oCzMU3w8ZtVsxLzW9XreU.roa
File: UCFys0oCzMU3w8ZtVsxLzW9XreU.roa (raw, json)
Hash identifier: 68n1swZfOqFxfwzHoMzU4RwxHPKJP8euXjDHRbIwuHI=
Subject key identifier: 50:21:72:B3:4A:02:CC:C5:37:C3:C6:6D:56:CC:4B:CD:6F:57:AD:E5
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 018943AE6C2F48F02A16000AB65B81F57917
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/UCFys0oCzMU3w8ZtVsxLzW9XreU.roa
Signing time: Tue 11 Jul 2023 06:40:51 +0000
ROA not before: Tue 11 Jul 2023 06:40:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15967
IP address blocks: 77.55.208.0/20 maxlen: 20
77.55.224.0/20 maxlen: 20
77.55.240.0/22 maxlen: 22
77.55.246.0/24 maxlen: 24
77.55.248.0/22 maxlen: 22
77.55.252.0/23 maxlen: 23
77.55.247.0/24 maxlen: 24
77.55.152.0/24 maxlen: 24
77.55.159.0/24 maxlen: 24
77.55.158.0/24 maxlen: 24
77.55.153.0/24 maxlen: 24
77.55.156.0/23 maxlen: 23
77.55.155.0/24 maxlen: 24
77.55.154.0/24 maxlen: 24
77.55.166.0/24 maxlen: 24
77.55.160.0/23 maxlen: 23
77.55.160.0/20 maxlen: 20
77.55.164.0/23 maxlen: 23
77.55.162.0/23 maxlen: 23
77.55.172.0/23 maxlen: 23
77.55.167.0/24 maxlen: 24
77.55.170.0/23 maxlen: 23
77.55.168.0/23 maxlen: 23
77.55.174.0/23 maxlen: 23
77.55.178.0/24 maxlen: 24
77.55.177.0/24 maxlen: 24
77.55.176.0/23 maxlen: 23
77.55.176.0/24 maxlen: 24
77.55.176.0/21 maxlen: 21
77.55.179.0/24 maxlen: 24
77.55.186.0/23 maxlen: 23
77.55.181.0/24 maxlen: 24
77.55.180.0/23 maxlen: 23
77.55.184.0/23 maxlen: 23
77.55.182.0/23 maxlen: 23
77.55.192.0/20 maxlen: 20
77.55.188.0/23 maxlen: 23
77.55.190.0/23 maxlen: 23
77.55.0.0/18 maxlen: 18
77.55.0.0/16 maxlen: 16
31.172.170.0/23 maxlen: 23
31.172.169.0/24 maxlen: 24
31.172.168.0/24 maxlen: 24
31.172.168.0/22 maxlen: 22
77.55.96.0/22 maxlen: 22
77.55.104.0/23 maxlen: 23
77.55.100.0/22 maxlen: 22
77.55.112.0/23 maxlen: 23
77.55.108.0/22 maxlen: 22
77.55.106.0/23 maxlen: 23
77.55.118.0/23 maxlen: 23
77.55.116.0/23 maxlen: 23
77.55.114.0/23 maxlen: 23
77.55.122.0/23 maxlen: 23
77.55.121.0/24 maxlen: 24
77.55.120.0/24 maxlen: 24
77.55.125.0/24 maxlen: 24
77.55.124.0/24 maxlen: 24
77.55.126.0/24 maxlen: 24
77.55.128.0/20 maxlen: 20
77.55.127.0/24 maxlen: 24
77.55.144.0/21 maxlen: 21
77.55.64.0/22 maxlen: 22
77.55.68.0/22 maxlen: 22
77.55.76.0/23 maxlen: 23
77.55.78.0/23 maxlen: 23
77.55.72.0/22 maxlen: 22
77.55.84.0/22 maxlen: 22
77.55.90.0/23 maxlen: 23
77.55.88.0/23 maxlen: 23
85.128.160.0/19 maxlen: 19
85.128.192.0/18 maxlen: 18
85.128.130.0/24 maxlen: 24
85.128.129.0/24 maxlen: 24
85.128.128.0/24 maxlen: 24
85.128.128.0/17 maxlen: 17
85.128.132.0/23 maxlen: 23
85.128.131.0/24 maxlen: 24
85.128.136.0/22 maxlen: 22
85.128.135.0/24 maxlen: 24
85.128.134.0/24 maxlen: 24
85.128.144.0/20 maxlen: 20
85.128.143.0/24 maxlen: 24
85.128.142.0/24 maxlen: 24
85.128.140.0/23 maxlen: 23
2a01:6100::/32 maxlen: 32
2a01:6100::/48 maxlen: 48
2a01:6100:fe00::/48 maxlen: 48
2a01:6100:111::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jul 2023 06:43:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:43:ae:6c:2f:48:f0:2a:16:00:0a:b6:5b:81:f5:79:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Jul 11 06:40:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=502172b34a02ccc537c3c66d56cc4bcd6f57ade5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:17:0c:52:3b:32:b0:d9:ae:40:6e:0d:cc:
19:46:85:d9:c1:68:70:dc:4a:be:23:88:b2:cc:fa:
b8:a9:5f:fe:90:b7:d4:f6:d9:5c:56:76:50:0d:51:
85:39:8d:78:29:f6:58:ef:27:5c:64:b4:83:d5:2e:
df:7b:dd:47:c2:26:a1:39:a3:b3:4a:c5:c6:11:98:
11:e5:ca:22:12:0e:5a:e8:02:c6:e2:f7:9e:93:0e:
f5:01:63:c2:c0:5b:b1:0e:fe:d6:04:77:eb:08:83:
59:5f:62:c4:d6:be:a0:a1:e5:65:2e:7d:c1:0f:68:
e3:b1:92:a3:f8:a6:af:aa:0f:d5:06:20:82:22:97:
5f:82:04:d0:4f:3c:bd:f1:29:b2:51:fc:b1:0a:2d:
c0:c1:7f:eb:6a:b5:9a:6d:ad:0e:7d:86:20:62:44:
b8:b6:6c:0e:6d:74:a7:7d:79:e3:21:43:ab:90:84:
2a:d3:ba:dc:5a:e6:55:03:64:1f:88:9d:70:22:9f:
df:53:da:21:65:95:f0:09:54:f4:a0:6c:8f:60:eb:
41:eb:dd:b9:20:a5:21:88:da:cd:ca:50:aa:4b:62:
99:bd:90:42:07:4b:69:03:ca:bc:92:fe:a2:9b:5e:
22:d5:f7:4e:cc:41:5f:cd:fb:10:c8:c3:29:d5:ee:
af:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:21:72:B3:4A:02:CC:C5:37:C3:C6:6D:56:CC:4B:CD:6F:57:AD:E5
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/UCFys0oCzMU3w8ZtVsxLzW9XreU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.168.0/22
77.55.0.0/16
85.128.128.0/17
IPv6:
2a01:6100::/32
Signature Algorithm: sha256WithRSAEncryption
3c:55:41:3a:5b:dc:3d:c2:42:e8:83:1f:96:32:a3:a7:50:7d:
35:03:4d:a4:20:15:eb:60:c2:cb:f0:0f:27:8d:6a:2f:60:f6:
d0:2e:de:c8:b7:64:f3:cf:10:e9:2e:47:0b:ba:7d:ed:0e:75:
f7:f7:c9:16:66:e8:03:ab:99:38:1a:88:c9:23:33:6c:e5:1e:
23:d9:dc:45:63:23:7f:31:03:87:ef:ca:23:09:c2:b2:ed:97:
ff:59:12:98:5f:ac:f0:c5:e8:8c:ee:f6:18:98:a9:e3:04:2e:
de:2c:3c:34:28:65:1a:05:48:48:97:47:44:b7:62:45:ac:d7:
35:3d:81:d1:11:8d:b3:39:0e:1e:97:2a:60:7f:31:08:90:16:
26:0a:49:2a:3a:0c:18:a9:48:70:23:ae:6a:5a:6d:e1:5d:04:
df:7f:34:5b:90:a1:c0:f7:a6:a2:58:dd:9c:69:6d:10:19:b3:
93:97:bd:74:ec:16:8d:44:a6:b1:af:3e:09:fb:46:f2:91:01:
fa:0c:d6:9a:98:da:23:0b:50:6b:06:3b:8a:00:6e:97:77:15:
ec:88:ce:76:07:bc:4d:3b:60:02:ad:13:85:4a:75:16:62:83:
c7:4b:bd:39:d8:93:68:18:9f:41:28:b4:51:75:5f:0f:1b:eb:
b8:f6:c3:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org