Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/hpZ3x1GdAsDA1I06sNIhAs-T34M.roa
File: hpZ3x1GdAsDA1I06sNIhAs-T34M.roa (raw, json)
Hash identifier: y2beoK2jcF4MAyZ+43wgOFFiNy9+rMfy4lOO23W5VYU=
Subject key identifier: 86:96:77:C7:51:9D:02:C0:C0:D4:8D:3A:B0:D2:21:02:CF:93:DF:83
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 01874B95643BE6638EDE9464A93209834999
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/hpZ3x1GdAsDA1I06sNIhAs-T34M.roa
Signing time: Tue 04 Apr 2023 09:24:54 +0000
ROA not before: Tue 04 Apr 2023 09:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15967
IP address blocks: 77.55.208.0/20 maxlen: 20
77.55.224.0/20 maxlen: 20
77.55.240.0/22 maxlen: 22
77.55.246.0/24 maxlen: 24
77.55.248.0/22 maxlen: 22
77.55.252.0/23 maxlen: 23
77.55.247.0/24 maxlen: 24
77.55.152.0/22 maxlen: 22
77.55.159.0/24 maxlen: 24
77.55.158.0/24 maxlen: 24
77.55.156.0/23 maxlen: 23
77.55.155.0/24 maxlen: 24
77.55.166.0/24 maxlen: 24
77.55.160.0/23 maxlen: 23
77.55.160.0/20 maxlen: 20
77.55.164.0/23 maxlen: 23
77.55.162.0/23 maxlen: 23
77.55.172.0/23 maxlen: 23
77.55.167.0/24 maxlen: 24
77.55.170.0/23 maxlen: 23
77.55.168.0/21 maxlen: 21
77.55.168.0/23 maxlen: 23
77.55.174.0/23 maxlen: 23
77.55.178.0/24 maxlen: 24
77.55.177.0/24 maxlen: 24
77.55.176.0/23 maxlen: 23
77.55.176.0/24 maxlen: 24
77.55.176.0/21 maxlen: 21
77.55.179.0/24 maxlen: 24
77.55.186.0/23 maxlen: 23
77.55.181.0/24 maxlen: 24
77.55.180.0/23 maxlen: 23
77.55.184.0/23 maxlen: 23
77.55.182.0/23 maxlen: 23
77.55.192.0/20 maxlen: 20
77.55.188.0/23 maxlen: 23
77.55.190.0/23 maxlen: 23
77.55.0.0/18 maxlen: 18
77.55.0.0/16 maxlen: 16
31.172.170.0/23 maxlen: 23
31.172.169.0/24 maxlen: 24
31.172.168.0/24 maxlen: 24
31.172.168.0/22 maxlen: 22
77.55.96.0/22 maxlen: 22
77.55.96.0/20 maxlen: 20
77.55.104.0/23 maxlen: 23
77.55.100.0/22 maxlen: 22
77.55.112.0/23 maxlen: 23
77.55.108.0/22 maxlen: 22
77.55.106.0/23 maxlen: 23
77.55.118.0/23 maxlen: 23
77.55.116.0/23 maxlen: 23
77.55.114.0/23 maxlen: 23
77.55.122.0/23 maxlen: 23
77.55.121.0/24 maxlen: 24
77.55.120.0/24 maxlen: 24
77.55.125.0/24 maxlen: 24
77.55.124.0/24 maxlen: 24
77.55.126.0/24 maxlen: 24
77.55.128.0/20 maxlen: 20
77.55.127.0/24 maxlen: 24
77.55.144.0/21 maxlen: 21
77.55.64.0/19 maxlen: 19
77.55.64.0/22 maxlen: 22
77.55.68.0/22 maxlen: 22
77.55.76.0/23 maxlen: 23
77.55.78.0/23 maxlen: 23
77.55.72.0/22 maxlen: 22
85.128.160.0/19 maxlen: 19
85.128.192.0/18 maxlen: 18
85.128.130.0/24 maxlen: 24
85.128.129.0/24 maxlen: 24
85.128.128.0/24 maxlen: 24
85.128.128.0/17 maxlen: 17
85.128.132.0/23 maxlen: 23
85.128.131.0/24 maxlen: 24
85.128.136.0/22 maxlen: 22
85.128.135.0/24 maxlen: 24
85.128.134.0/24 maxlen: 24
85.128.144.0/20 maxlen: 20
85.128.143.0/24 maxlen: 24
85.128.142.0/24 maxlen: 24
85.128.140.0/23 maxlen: 23
2a01:6100::/32 maxlen: 32
2a01:6100::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Apr 2023 07:53:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4b:95:64:3b:e6:63:8e:de:94:64:a9:32:09:83:49:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Apr 4 09:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=869677c7519d02c0c0d48d3ab0d22102cf93df83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ec:52:90:71:d2:9b:b6:15:d3:d3:14:b7:7f:
0e:9d:93:12:63:22:7b:2e:cc:28:90:3e:44:2c:2b:
95:02:7a:74:26:85:08:c2:11:17:dd:c8:98:51:cd:
7f:63:c1:5b:19:54:fb:45:80:79:5b:9b:f7:1d:ff:
d9:f6:d3:4a:df:84:68:0c:59:93:68:8e:a2:54:de:
6a:f8:c1:e2:2d:0e:f3:49:62:bb:82:79:61:28:26:
d8:90:57:4f:f1:91:9f:2f:68:e8:9b:5a:93:e6:4e:
2f:f1:af:5e:73:0c:bc:2d:cd:f4:8c:39:b8:7a:6b:
d3:2e:6b:b1:93:7c:91:80:9d:1c:f9:09:c9:b2:26:
9a:61:40:6f:ef:d1:6a:1d:9e:97:2f:de:ec:9e:e0:
90:64:40:21:73:0a:9f:ef:c8:96:29:83:bd:f4:b6:
78:79:4b:29:2a:b6:85:57:c4:ac:fa:7f:55:01:a1:
a3:c9:eb:07:8b:4d:9b:fd:75:75:ef:79:53:29:fb:
9d:00:f2:52:06:87:d7:09:a8:79:ba:e0:b9:81:0a:
32:38:fb:6d:c8:e2:77:f8:bd:fe:af:40:f8:98:67:
1d:a3:de:90:f5:83:1d:ce:9c:59:93:dd:21:71:d1:
6f:43:7d:cd:0f:11:05:13:cf:71:e2:7e:78:ce:d9:
b6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:96:77:C7:51:9D:02:C0:C0:D4:8D:3A:B0:D2:21:02:CF:93:DF:83
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/hpZ3x1GdAsDA1I06sNIhAs-T34M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.168.0/22
77.55.0.0/16
85.128.128.0/17
IPv6:
2a01:6100::/32
Signature Algorithm: sha256WithRSAEncryption
5e:49:37:f3:0c:a3:18:91:8f:6e:07:64:b7:d9:4a:82:e5:7a:
f1:89:1b:56:c2:3c:6a:fe:6d:9f:8e:22:f0:6e:5e:79:58:12:
d1:c5:04:89:e3:30:e1:10:af:84:6f:cb:f8:e6:be:6a:98:a8:
69:c4:56:61:d2:f6:f2:77:15:2b:56:9e:77:67:28:92:0f:f6:
93:61:17:3d:b9:f8:42:fc:75:01:12:a7:69:b6:64:27:2e:5e:
ce:2d:19:e3:9e:db:71:25:87:2f:43:9c:a6:14:b8:94:49:22:
1f:70:bd:6a:e3:b8:ef:32:f4:5c:66:26:60:89:56:19:38:f0:
9a:0f:d2:e2:95:c3:23:20:77:c3:9e:5d:02:4f:90:e7:09:0d:
65:33:25:ef:64:12:07:3e:41:c5:a0:84:5e:cb:22:86:5e:70:
f7:b9:6e:d9:9c:f6:ac:43:fe:1f:73:3d:5c:f1:6f:69:56:07:
a8:6a:df:aa:46:48:9f:96:52:28:48:53:13:e2:82:0b:78:bb:
e8:38:7a:2b:77:14:5d:3e:d5:48:a2:6e:fe:16:66:cc:13:11:
70:79:6b:1b:d8:35:b7:15:52:ae:b9:01:3b:ca:da:f9:da:71:
a6:3d:82:8f:b3:70:1f:1d:b6:9b:0f:0a:eb:20:da:e2:34:cc:
eb:bf:82:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:10 2024 by rpki-client on console-ams.rpki-client.org