Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/DG_-Dfee66oVGZRcLuEgJcN66sk.roa
File: DG_-Dfee66oVGZRcLuEgJcN66sk.roa (raw, json)
Hash identifier: iGA8DJoD1YK56syAcMxJ4ci2vZoh/QUoMHBuF5LfsKI=
Subject key identifier: 0C:6F:FE:0D:F7:9E:EB:AA:15:19:94:5C:2E:E1:20:25:C3:7A:EA:C9
Certificate issuer: /CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Certificate serial: 0185723A1AB26168CF7E9326451D659A178E
Authority key identifier: DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/DG_-Dfee66oVGZRcLuEgJcN66sk.roa
Signing time: Mon 02 Jan 2023 11:24:48 +0000
ROA not before: Mon 02 Jan 2023 11:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43019
IP address blocks: 77.75.91.0/24 maxlen: 24
77.75.89.0/24 maxlen: 24
77.75.90.0/24 maxlen: 24
77.75.88.0/24 maxlen: 24
77.75.94.0/24 maxlen: 24
77.75.95.0/24 maxlen: 24
77.75.93.0/24 maxlen: 24
77.75.92.0/24 maxlen: 24
185.206.203.0/24 maxlen: 24
185.206.201.0/24 maxlen: 24
185.206.202.0/24 maxlen: 24
185.206.200.0/24 maxlen: 24
2a0b:3f80:0:204::/64 maxlen: 64
2a0b:3f87:fc1b::/48 maxlen: 48
2a0b:3f87::/32 maxlen: 32
2a0b:3f87:fc20::/48 maxlen: 48
2a0b:3f87:fc19::/48 maxlen: 48
2a0b:3f80:0:203::/64 maxlen: 64
2a0b:3f80:3::/126 maxlen: 126
2a0b:3f80:2::/126 maxlen: 126
2a0b:3f80::/29 maxlen: 29
2a0b:3f87:fc1a::/48 maxlen: 48
2a0b:3f80:0:201::/64 maxlen: 64
2a0b:3f80:0:202::/64 maxlen: 64
2a0b:3f87:fc18::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 11 Jan 2023 18:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:1a:b2:61:68:cf:7e:93:26:45:1d:65:9a:17:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Validity
Not Before: Jan 2 11:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c6ffe0df79eebaa1519945c2ee12025c37aeac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:39:76:d6:d6:14:b2:80:f7:f4:03:4f:d1:2d:
07:b4:ab:ff:d6:81:34:f5:ce:bb:72:59:dd:28:83:
8d:08:c7:cc:45:8e:9a:08:14:e9:a4:40:7e:cb:f3:
25:ba:71:a5:11:9b:f9:47:99:76:54:2a:82:bd:be:
5f:c9:f6:4a:0b:15:d1:9b:a0:8a:a2:d3:ad:70:2b:
79:d5:bd:9a:27:72:33:9f:bd:24:c1:4a:9a:f9:a4:
bd:3f:fc:11:f6:71:d5:4a:79:76:67:9c:91:b6:4a:
31:57:91:f2:9e:4b:31:99:15:29:89:33:2c:e2:b3:
bd:fa:4c:17:b9:fc:9c:84:17:3a:c1:a6:f3:9f:c7:
61:ef:93:52:52:73:e6:20:89:11:a2:f5:3a:2e:e4:
84:e5:88:ae:dd:e5:56:e5:14:b7:20:b7:90:f6:f5:
8d:88:6d:3a:c1:e6:d8:d5:42:8a:ee:cd:50:11:eb:
87:6f:40:b6:fd:0e:3e:34:80:b1:08:96:3d:e2:5f:
d7:63:cf:a2:4b:4e:6e:1a:ae:a2:f3:94:4e:3c:5e:
7e:be:06:da:c1:df:5a:34:c7:a8:66:0c:0f:d2:5f:
64:85:ee:3c:b1:b0:98:78:64:f2:3c:fc:38:6b:f9:
87:c7:f7:ce:9f:75:7d:e1:dc:73:72:29:d4:4e:79:
8d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6F:FE:0D:F7:9E:EB:AA:15:19:94:5C:2E:E1:20:25:C3:7A:EA:C9
X509v3 Authority Key Identifier:
keyid:DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/DG_-Dfee66oVGZRcLuEgJcN66sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/3KRrH82StH9PVfrQOMlYE0Cp03A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.88.0/21
185.206.200.0/22
IPv6:
2a0b:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
00:b3:51:f1:fa:3b:22:18:1b:6f:88:87:5a:f5:2b:78:6a:fc:
54:dd:dc:76:6f:84:6f:50:43:1a:41:f9:ad:d7:dc:00:3c:79:
f9:e2:48:6d:3e:94:61:5f:14:13:90:d5:89:6a:38:4c:63:64:
54:6b:b7:b9:29:90:c5:45:42:0c:35:1e:01:a2:72:6c:81:19:
46:48:73:5d:a2:26:19:c2:0f:37:09:fd:c6:7d:a2:b7:24:98:
64:6d:65:58:dd:37:e6:45:a8:a7:a1:59:6e:b8:2a:bb:9c:86:
c8:5d:8b:54:34:0c:2c:82:93:ae:03:b8:b0:94:89:51:13:c2:
79:be:55:97:df:5c:c6:ee:2c:43:90:6b:84:f0:ff:b2:c9:4a:
e8:08:44:f7:31:1a:ea:6d:92:73:67:ef:02:0a:60:a8:92:9c:
39:c4:68:3e:8d:23:de:14:85:f7:27:90:a3:a2:f5:ba:5c:e2:
55:53:ec:aa:6e:dd:2e:9c:da:26:9e:a4:12:a0:b7:08:b3:39:
5e:0e:9f:50:83:46:c0:ea:1e:ac:17:b1:8b:7d:b2:98:17:a9:
93:31:ed:e9:62:02:06:5b:ab:cc:44:24:92:76:b1:24:66:cf:
34:2f:a7:14:ec:68:d1:1e:b5:05:25:eb:aa:38:88:ce:7d:b4:
b8:e2:a4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:15 2024 by rpki-client on console-fra.rpki-client.org