Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/8U0wNwl6g_29KcXk8hKKRMRctzc.roa
File: 8U0wNwl6g_29KcXk8hKKRMRctzc.roa (raw, json)
Hash identifier: BM5TT2eINkO1q7jOOnpbKtN4CiHVWzu3PvwJEGLrlCc=
Subject key identifier: F1:4D:30:37:09:7A:83:FD:BD:29:C5:E4:F2:12:8A:44:C4:5C:B7:37
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 0189B192C8C7A6E2A611E7C5D7B075DFFBA0
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/8U0wNwl6g_29KcXk8hKKRMRctzc.roa
Signing time: Tue 01 Aug 2023 14:48:54 +0000
ROA not before: Tue 01 Aug 2023 14:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 77.232.129.0/24 maxlen: 24
77.232.130.0/24 maxlen: 24
77.232.131.0/24 maxlen: 24
77.232.128.0/24 maxlen: 24
77.232.128.0/22 maxlen: 22
77.232.132.0/22 maxlen: 22
77.232.132.0/24 maxlen: 24
77.232.139.0/24 maxlen: 24
77.232.136.0/24 maxlen: 24
77.232.136.0/22 maxlen: 22
77.232.137.0/24 maxlen: 24
77.232.138.0/24 maxlen: 24
77.232.133.0/24 maxlen: 24
77.232.134.0/24 maxlen: 24
77.232.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:92:c8:c7:a6:e2:a6:11:e7:c5:d7:b0:75:df:fb:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Aug 1 14:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f14d3037097a83fdbd29c5e4f2128a44c45cb737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:46:4e:38:a6:d1:68:e7:2f:97:66:29:26:24:
90:86:01:8b:e2:6b:1d:9a:32:1e:eb:2e:be:11:78:
83:4f:64:f4:c4:d6:c4:93:9f:db:c1:9d:fc:a6:03:
11:e2:f2:3c:ec:cf:1e:2f:98:89:30:ab:8a:bb:b7:
21:d6:4d:9d:ff:58:32:05:83:3a:ee:b9:67:7a:4a:
fc:47:4b:00:b3:b2:07:80:a4:76:6b:d6:36:dc:00:
56:67:96:64:5c:d7:30:d4:d4:2f:78:5d:08:3d:07:
bb:ad:3e:81:21:92:55:78:40:a6:93:3e:44:5d:5d:
c2:29:0e:46:72:d4:20:3f:a8:2a:3b:70:5b:d2:cd:
50:c8:42:53:2a:f0:2f:16:72:6c:e9:14:fb:6c:12:
41:c0:46:0f:80:5f:fe:e3:3f:a4:c2:86:f0:61:d9:
d7:94:61:bf:cf:fe:6c:cc:e1:0a:39:46:62:71:86:
4c:68:c4:72:d3:a9:dd:bd:2c:43:9e:16:61:c1:6b:
55:fb:ae:e0:8b:c9:66:cc:6c:89:ed:d1:6b:9c:ea:
44:b3:3f:63:f1:58:fa:b0:fe:30:e4:e2:60:4e:75:
cb:ce:6d:1e:23:af:a2:08:fc:3e:da:2e:43:24:3e:
52:12:e6:85:21:50:5f:30:f0:13:e2:5d:8a:96:28:
c9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4D:30:37:09:7A:83:FD:BD:29:C5:E4:F2:12:8A:44:C4:5C:B7:37
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/8U0wNwl6g_29KcXk8hKKRMRctzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.128.0-77.232.139.255
Signature Algorithm: sha256WithRSAEncryption
27:d7:a7:f1:07:1e:b1:f2:4e:59:5e:d8:35:29:de:a4:52:3a:
36:b3:f0:07:81:c8:13:f2:ac:52:0b:74:9a:1e:4b:02:3d:9c:
7b:0e:0f:83:e9:06:88:b9:86:6e:90:9e:bf:b3:db:34:47:c9:
b5:33:f0:5f:cb:a6:74:c2:e4:23:23:0a:f4:9e:8d:6a:65:33:
9a:80:00:4c:67:cc:d9:44:fe:d7:63:7a:e8:be:b8:2d:b8:d8:
a7:78:67:0c:ab:24:b6:94:0c:9f:c8:3e:51:e6:ab:7d:d6:9f:
b7:68:79:a2:a7:03:68:a0:20:8e:84:2f:37:8a:bc:63:76:04:
f3:c1:4a:65:a3:c4:0a:c0:25:e5:9b:9d:55:9f:ae:81:ac:f9:
ad:2b:fc:00:8d:44:55:04:d8:f2:47:7a:ef:06:0d:73:ae:5d:
7d:b8:8d:92:e5:7d:49:6e:f0:1c:5c:bd:87:ee:90:9d:69:f3:
71:9b:37:8d:d9:ed:41:d3:49:1d:82:25:ef:01:d5:3c:8d:8d:
56:51:2b:76:e5:44:c0:82:85:8a:a4:e8:83:59:0c:b5:fd:45:
76:6e:3e:20:78:45:4b:c1:41:23:90:82:1a:d5:af:c0:1e:ad:
17:7d:68:fb:cb:93:46:15:b4:23:2d:65:29:ae:d8:6a:b6:d6:
e2:91:4a:ce
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYmxksjHpuKmEefF17B13/ugMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDRlNjQxZTU1YTQ4YWVlMDE0MWUyYzBkMjYyMjcxMDJj
YWE2ZDQwHhcNMjMwODAxMTQ0ODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTRkMzAzNzA5N2E4M2ZkYmQyOWM1ZTRmMjEyOGE0NGM0NWNiNzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEZOOKbRaOcvl2YpJiSQhgGL4msd
mjIe6y6+EXiDT2T0xNbEk5/bwZ38pgMR4vI87M8eL5iJMKuKu7ch1k2d/1gyBYM6
7rlnekr8R0sAs7IHgKR2a9Y23ABWZ5ZkXNcw1NQveF0IPQe7rT6BIZJVeECmkz5E
XV3CKQ5GctQgP6gqO3Bb0s1QyEJTKvAvFnJs6RT7bBJBwEYPgF/+4z+kwobwYdnX
lGG/z/5szOEKOUZicYZMaMRy06ndvSxDnhZhwWtV+67gi8lmzGyJ7dFrnOpEsz9j
8Vj6sP4w5OJgTnXLzm0eI6+iCPw+2i5DJD5SEuaFIVBfMPAT4l2KlijJLwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPFNMDcJeoP9vSnF5PISikTEXLc3MB8GA1UdIwQY
MBaAFNUE5kHlWkiu4BQeLA0mInECyqbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFUbVFlVmFTSzdnRkI0c0RTWWljUUxLcHRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9mMDFmMzUtMmNjYS00ZTVhLTgyOGEt
NmJmZmNiN2MwZjBhLzEvOFUwd053bDZnXzI5S2NYazhoS0tSTVJjdHpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9mMDFmMzUtMmNjYS00ZTVhLTgyOGEtNmJmZmNiN2MwZjBh
LzEvMVFUbVFlVmFTSzdnRkI0c0RTWWljUUxLcHRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAdN6IAD
BAJN6IgwDQYJKoZIhvcNAQELBQADggEBACfXp/EHHrHyTlle2DUp3qRSOjaz8AeB
yBPyrFILdJoeSwI9nHsOD4PpBoi5hm6Qnr+z2zRHybUz8F/LpnTC5CMjCvSejWpl
M5qAAExnzNlE/tdjeui+uC242Kd4ZwyrJLaUDJ/IPlHmq33Wn7doeaKnA2igII6E
LzeKvGN2BPPBSmWjxArAJeWbnVWfroGs+a0r/ACNRFUE2PJHeu8GDXOuXX24jZLl
fUlu8BxcvYfukJ1p83GbN43Z7UHTSR2CJe8B1TyNjVZRK3blRMCChYqk6INZDLX9
RXZuPiB4RUvBQSOQghrVr8AerRd9aPvLk0YVtCMtZSmu2Gq21uKRSs4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:49 2024 by rpki-client on console-fra.rpki-client.org