Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/AKc64b21dmJEemf2waiErKuOlX0.roa
File: AKc64b21dmJEemf2waiErKuOlX0.roa (raw, json)
Hash identifier: MnqMOtv8l8HE8bh5v1ZSqzhknZmFulUllYVQ6tp5AM8=
Subject key identifier: 00:A7:3A:E1:BD:B5:76:62:44:7A:67:F6:C1:A8:84:AC:AB:8E:95:7D
Certificate issuer: /CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Certificate serial: 018737A8FCE380949D82F28F112F92BF1272
Authority key identifier: DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/AKc64b21dmJEemf2waiErKuOlX0.roa
Signing time: Fri 31 Mar 2023 12:33:54 +0000
ROA not before: Fri 31 Mar 2023 12:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43019
IP address blocks: 77.75.92.0/29 maxlen: 29
77.75.91.0/24 maxlen: 24
77.75.89.0/24 maxlen: 24
77.75.90.0/24 maxlen: 24
77.75.88.0/24 maxlen: 24
77.75.94.0/24 maxlen: 24
77.75.95.128/26 maxlen: 26
77.75.94.64/26 maxlen: 26
77.75.95.0/24 maxlen: 24
77.75.93.0/24 maxlen: 24
77.75.92.0/24 maxlen: 24
185.206.203.128/26 maxlen: 26
185.206.203.0/24 maxlen: 24
185.206.201.0/24 maxlen: 24
185.206.202.0/24 maxlen: 24
185.206.200.0/24 maxlen: 24
77.75.94.0/30 maxlen: 30
2a0b:3f80:0:204::/64 maxlen: 64
2a0b:3f87:fc1b::/48 maxlen: 48
2a0b:3f87::/32 maxlen: 32
2a0b:3f87:fc20::/48 maxlen: 48
2a0b:3f87:fc19::/48 maxlen: 48
2a0b:3f80:0:203::/64 maxlen: 64
2a0b:3f80:3::/126 maxlen: 126
2a0b:3f80:2::/126 maxlen: 126
2a0b:3f80::/29 maxlen: 29
2a0b:3f80:15::/48 maxlen: 48
2a0b:3f87:fc1a::/48 maxlen: 48
2a0b:3f80:0:201::/64 maxlen: 64
2a0b:3f80:0:202::/64 maxlen: 64
2a0b:3f87:fc18::/48 maxlen: 48
2a0b:3f81::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 May 2023 21:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:a8:fc:e3:80:94:9d:82:f2:8f:11:2f:92:bf:12:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Validity
Not Before: Mar 31 12:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00a73ae1bdb57662447a67f6c1a884acab8e957d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:23:bf:9c:90:d7:61:e0:b7:d0:76:93:28:
d0:54:97:f9:6e:e4:ab:b0:f0:e7:5a:f7:10:d1:48:
39:5b:6a:d6:74:85:bd:10:e9:73:95:6c:5a:f7:c0:
67:9c:3e:57:0d:32:9c:bc:fb:9d:d7:6a:cd:65:71:
02:94:74:af:6c:f6:f6:f5:88:97:16:2f:10:7b:4e:
07:6c:62:5e:2c:ff:cb:88:ce:3f:be:5f:5f:74:e3:
59:16:7c:57:0f:60:c7:33:de:39:30:73:ef:67:59:
62:a0:a5:f5:a9:8a:a2:3b:7c:eb:51:ef:0f:1e:2d:
01:9f:ad:b5:c6:83:a8:59:69:e1:e7:20:a3:8a:1e:
bc:bb:cd:f6:11:54:72:87:2b:4b:26:79:f1:40:48:
d8:92:57:9c:8c:c8:09:92:e2:00:c3:11:7e:6a:f3:
4e:08:9e:e9:56:a4:97:c2:60:16:9e:cd:5f:18:da:
01:c5:eb:45:37:95:88:87:fc:d8:9b:ac:58:17:eb:
1a:20:50:00:77:44:9d:86:9a:f2:0f:4c:a0:2a:6d:
13:8a:ce:52:e1:80:8a:16:c0:14:82:3d:97:83:4a:
c7:99:87:5c:39:7b:d4:8f:e4:af:50:de:4a:7e:31:
cb:b2:3f:be:92:c4:af:aa:c5:ea:85:c0:d4:64:0c:
ed:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A7:3A:E1:BD:B5:76:62:44:7A:67:F6:C1:A8:84:AC:AB:8E:95:7D
X509v3 Authority Key Identifier:
keyid:DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/AKc64b21dmJEemf2waiErKuOlX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/3KRrH82StH9PVfrQOMlYE0Cp03A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.88.0/21
185.206.200.0/22
IPv6:
2a0b:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
b7:d4:fb:d1:25:23:14:bd:be:43:25:b0:42:f8:ed:dd:89:dc:
bf:c5:7a:18:c6:ff:80:48:4d:dc:35:85:d9:77:96:92:82:c6:
b5:28:8e:05:a5:ba:db:b2:b1:16:44:b8:a0:a8:52:9c:ae:15:
68:de:50:64:84:49:1b:cb:55:2a:6e:0e:46:bf:46:0f:3f:31:
de:6c:2a:ae:45:0a:89:92:86:ff:bc:50:f7:fe:d5:60:3d:02:
38:5c:82:9d:70:d8:8a:c3:ad:42:dc:37:79:f3:a0:fd:08:b4:
db:40:25:36:dd:1a:10:dc:4d:ef:1f:6c:e3:0f:e9:27:96:40:
f6:a9:74:41:bc:f2:a5:94:9f:2f:31:13:9d:ad:8f:72:eb:5d:
df:8c:b3:a4:9e:66:9f:fa:a9:66:9c:97:51:23:08:0a:ec:85:
d7:cd:b2:d4:2a:a3:02:d8:15:03:31:22:41:6a:f1:76:a8:d9:
43:8f:97:20:cd:5b:4d:be:a6:20:c5:e9:ca:fc:9b:82:d9:7c:
08:5c:6a:3f:df:e1:7d:27:f5:06:ac:fb:c2:df:43:ac:a1:f4:
26:e3:c3:14:de:2d:2f:ff:69:b0:dc:2e:ab:a8:a1:24:0d:ff:
9b:1e:8c:d3:01:06:9c:87:96:2e:ee:12:ee:79:b2:64:ae:82:
fc:f7:85:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:06 2024 by rpki-client on console-ams.rpki-client.org