Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ql1yTic5ZpoLNlyBQl-4h-5P2Do.roa
File: Ql1yTic5ZpoLNlyBQl-4h-5P2Do.roa (raw, json)
Hash identifier: zm20mnXZOonAdvcc0LEOV/Zt2rnmDZJLaJgRqTo5jP8=
Subject key identifier: 42:5D:72:4E:27:39:66:9A:0B:36:5C:81:42:5F:B8:87:EE:4F:D8:3A
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE32A54B8EF26C387E733668DA3CE
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ql1yTic5ZpoLNlyBQl-4h-5P2Do.roa
Signing time: Sun 01 Jan 2023 06:04:55 +0000
ROA not before: Sun 01 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210220
IP address blocks: 77.65.176.0/22 maxlen: 24
77.65.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e3:2a:54:b8:ef:26:c3:87:e7:33:66:8d:a3:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=425d724e2739669a0b365c81425fb887ee4fd83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2c:e5:44:b2:39:1e:0e:1a:34:0d:82:46:7b:
2f:4c:38:53:4d:d8:66:cb:1d:cf:ff:a9:91:ab:53:
15:a6:41:1c:78:ab:60:21:76:a9:99:9a:78:4f:87:
4f:d2:0a:b5:64:31:5f:8f:b1:f5:ba:05:22:cd:85:
5d:e3:76:18:77:10:ec:3f:04:3c:4a:c6:1f:e2:b0:
b9:55:0f:cc:1e:07:22:4b:8a:18:a7:32:37:d5:ef:
02:92:c2:ba:05:bb:8a:b8:3b:fc:e7:6e:66:20:47:
96:b5:76:01:03:89:c2:32:ec:31:ed:74:9c:21:5e:
00:b4:9b:0c:8f:3a:19:d8:23:cd:f9:76:86:0c:04:
c3:e4:04:22:0b:70:db:d8:66:c5:b0:a4:7a:82:33:
4d:e8:6f:20:f9:d1:ad:78:e8:8b:6d:65:9b:58:dd:
52:0b:ff:1d:19:a2:4b:ab:26:eb:60:8e:70:cf:24:
4d:cb:70:14:b6:73:44:66:a2:37:63:04:ba:ee:78:
f5:8a:c8:18:d8:3a:0c:48:58:a1:1b:af:df:94:3a:
10:0d:26:c3:bf:85:41:06:10:7e:cb:ab:97:7a:7b:
85:5b:de:24:3c:ed:45:68:1c:94:e7:86:0f:52:ce:
61:c1:ce:52:b7:10:5e:e9:fd:a9:54:55:f6:a7:47:
e7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5D:72:4E:27:39:66:9A:0B:36:5C:81:42:5F:B8:87:EE:4F:D8:3A
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ql1yTic5ZpoLNlyBQl-4h-5P2Do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.176.0/22
77.65.184.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:97:c9:48:09:15:93:0e:b3:db:68:10:71:57:f6:d6:f2:20:
a4:b8:d9:3d:d8:0c:83:37:6d:f7:55:38:1b:34:89:fe:fa:96:
10:14:d7:83:68:60:5c:e5:7c:79:56:21:25:67:71:d0:77:a4:
8b:c6:a3:f2:24:f1:1a:0c:e2:e0:1d:4a:2a:a1:9f:aa:00:ab:
84:d3:c6:63:08:ff:63:aa:8c:fa:a3:ba:73:a9:56:bb:b9:72:
35:4c:9f:b6:9f:3c:0a:3b:7e:56:6b:b0:c0:b7:57:a4:81:b0:
c6:3e:39:36:55:e3:f5:52:a2:90:c1:7f:1c:60:0b:7a:12:f9:
b1:e9:87:21:f3:11:89:80:36:7b:cf:e8:92:e2:60:9e:f1:9b:
ee:9f:82:89:60:b4:22:55:19:c2:d4:89:d4:e8:de:ce:c9:17:
c3:fd:04:3d:6d:99:44:81:c6:f9:79:6f:e1:bb:6b:a9:53:ec:
9e:59:da:36:eb:1b:ca:0e:cd:17:e3:7d:86:ed:e7:ab:f2:f8:
f9:13:a0:9f:ea:07:e9:62:60:aa:64:40:5c:20:41:b6:b8:ea:
67:c3:72:b4:ce:08:e0:16:25:43:30:0e:f0:78:ac:03:36:c6:
7f:ff:8e:03:be:33:89:31:c7:76:de:1d:53:0c:3f:46:a6:1a:
77:49:dc:21
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVr7uMqVLjvJsOH5zNmjaPOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjVkNzI0ZTI3Mzk2NjlhMGIzNjVjODE0MjVmYjg4N2VlNGZkODNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyzlRLI5Hg4aNA2CRnsvTDhTTdhm
yx3P/6mRq1MVpkEceKtgIXapmZp4T4dP0gq1ZDFfj7H1ugUizYVd43YYdxDsPwQ8
SsYf4rC5VQ/MHgciS4oYpzI31e8CksK6BbuKuDv8525mIEeWtXYBA4nCMuwx7XSc
IV4AtJsMjzoZ2CPN+XaGDATD5AQiC3Db2GbFsKR6gjNN6G8g+dGteOiLbWWbWN1S
C/8dGaJLqybrYI5wzyRNy3AUtnNEZqI3YwS67nj1isgY2DoMSFihG6/flDoQDSbD
v4VBBhB+y6uXenuFW94kPO1FaByU54YPUs5hwc5StxBe6f2pVFX2p0fnKQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEJdck4nOWaaCzZcgUJfuIfuT9g6MB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvUWwxeVRpYzVacG9MTmx5QlFsLTRoLTVQMkRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCTUGwAwQC
TUG4MA0GCSqGSIb3DQEBCwUAA4IBAQAvl8lICRWTDrPbaBBxV/bW8iCkuNk92AyD
N233VTgbNIn++pYQFNeDaGBc5Xx5ViElZ3HQd6SLxqPyJPEaDOLgHUoqoZ+qAKuE
08ZjCP9jqoz6o7pzqVa7uXI1TJ+2nzwKO35Wa7DAt1ekgbDGPjk2VeP1UqKQwX8c
YAt6Evmx6Ych8xGJgDZ7z+iS4mCe8Zvun4KJYLQiVRnC1InU6N7OyRfD/QQ9bZlE
gcb5eW/hu2upU+yeWdo26xvKDs0X432G7eer8vj5E6Cf6gfpYmCqZEBcIEG2uOpn
w3K0zgjgFiVDMA7weKwDNsZ//44DvjOJMcd23h1TDD9Gphp3Sdwh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org