Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/DGyn9scqXqOUouMe9QtUUGrRbEA.roa
File: DGyn9scqXqOUouMe9QtUUGrRbEA.roa (raw, json)
Hash identifier: F4ElGc2HLrcO87Nf9mnTFsdsL7WFhlKLBs7H96rUUcM=
Subject key identifier: 0C:6C:A7:F6:C7:2A:5E:A3:94:A2:E3:1E:F5:0B:54:50:6A:D1:6C:40
Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108
Certificate serial: 019395AE05519B6E2FA63D50C34A001A1D70
Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/DGyn9scqXqOUouMe9QtUUGrRbEA.roa
Signing time: Thu 05 Dec 2024 07:17:09 +0000
ROA not before: Thu 05 Dec 2024 07:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5377
IP address blocks: 77.70.128.0/17 maxlen: 17
77.70.128.0/19 maxlen: 19
77.70.144.0/20 maxlen: 20
77.70.160.0/20 maxlen: 20
77.70.176.0/22 maxlen: 24
77.70.181.0/24 maxlen: 24
77.70.184.0/21 maxlen: 24
77.70.191.0/24 maxlen: 24
77.70.192.0/19 maxlen: 19
77.70.207.0/24 maxlen: 24
77.70.240.0/20 maxlen: 20
77.70.254.0/24 maxlen: 24
77.70.255.0/24 maxlen: 24
193.219.192.0/18 maxlen: 18
193.219.196.0/24 maxlen: 24
193.220.0.0/16 maxlen: 16
193.220.88.0/21 maxlen: 21
193.220.94.0/24 maxlen: 24
193.220.165.0/24 maxlen: 24
193.220.174.0/23 maxlen: 24
193.220.220.0/22 maxlen: 22
193.220.224.0/20 maxlen: 20
193.220.240.0/20 maxlen: 24
2a02:6600::/29 maxlen: 32
2a02:6600:f000::/48 maxlen: 48
2a02:6600:f001::/48 maxlen: 48
2a02:6601::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:95:ae:05:51:9b:6e:2f:a6:3d:50:c3:4a:00:1a:1d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896a82a725ed22bb46847ae568912078de25c108
Validity
Not Before: Dec 5 07:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c6ca7f6c72a5ea394a2e31ef50b54506ad16c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1c:a8:94:aa:09:e1:22:e3:59:3d:03:ea:09:
f3:2b:c6:86:51:fd:50:77:b2:79:55:e5:e3:a4:a8:
4e:87:10:3e:42:ae:79:da:21:99:ba:cb:07:34:53:
c9:ea:f8:ed:03:54:39:db:92:17:11:b7:80:00:8f:
9a:6a:d6:f1:92:8d:7d:3a:3f:51:0b:30:f2:18:2e:
0f:b4:e2:cb:cd:94:ff:a7:62:b3:20:f7:d5:33:69:
5f:86:5f:f5:d2:c5:77:bc:bc:b1:f3:7e:9f:0b:c4:
e9:d4:ed:c0:b1:9c:d1:91:40:6b:ec:93:5b:7a:2a:
e9:9e:0e:59:d1:67:71:0d:9f:8c:3d:1d:46:b4:13:
2f:ef:cd:e6:5f:1b:fa:0d:1e:ac:17:17:e7:f7:e1:
9c:91:9b:5d:a0:ee:f8:c0:d7:b5:5b:ed:1d:f6:d4:
55:93:86:72:ec:a8:09:b6:1c:6e:ce:69:74:80:62:
88:b0:06:b0:5c:de:96:44:bf:83:af:7f:8a:4a:3d:
8f:1d:0a:10:90:bf:e6:f6:a6:6f:19:c4:b6:09:5d:
87:13:e0:88:7a:f1:3c:27:0a:9a:6b:5a:cb:a5:2e:
f8:39:2d:f9:24:c7:08:0e:df:e5:25:0e:e6:15:62:
44:6e:e5:7b:d3:36:ea:f0:4c:39:01:8d:73:88:11:
ad:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6C:A7:F6:C7:2A:5E:A3:94:A2:E3:1E:F5:0B:54:50:6A:D1:6C:40
X509v3 Authority Key Identifier:
keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/DGyn9scqXqOUouMe9QtUUGrRbEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.70.128.0/17
193.219.192.0-193.220.255.255
IPv6:
2a02:6600::/29
Signature Algorithm: sha256WithRSAEncryption
87:cb:ca:6d:50:c3:57:5c:85:ba:07:53:b6:3a:39:e1:b3:89:
07:8d:07:e8:25:05:43:b2:0e:54:b1:ce:a3:a3:c0:ed:5d:4d:
a4:27:40:25:74:da:b3:b0:84:f0:cd:a8:3e:d2:88:63:dc:86:
38:60:40:30:77:bb:ea:ba:4b:74:4b:42:43:34:41:8a:8c:74:
82:1d:0f:c3:fc:70:c3:41:f5:e4:b6:26:e8:0f:cc:41:1f:1c:
53:d7:38:0f:89:9e:6b:4f:91:92:d8:4b:4c:55:21:da:8e:e0:
4e:66:fb:0c:42:3f:ef:7c:ef:b8:b3:5c:d7:7d:8d:c8:99:6d:
82:2e:77:75:70:b5:47:38:9c:ed:4c:67:a0:d1:dd:ba:96:ed:
31:94:83:fe:fb:ed:0f:d0:b1:25:80:68:ed:ae:ba:3e:70:0c:
6f:fd:74:5e:c5:af:71:1c:e9:df:c8:67:7a:54:f3:d8:a6:6d:
90:73:98:22:6c:28:01:95:d4:4a:72:93:0f:9a:a5:64:68:e0:
d8:19:08:a4:d6:1e:5d:4f:4f:b2:c9:98:ef:d0:31:9a:7f:6a:
b0:60:55:ff:9a:ff:bb:d6:1a:82:2c:28:b9:00:af:7f:ca:9e:
ad:e9:49:38:14:37:66:e1:d4:c8:3e:ff:df:dc:41:ab:60:5a:
4e:c3:89:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:26:55 2025 by rpki-client