Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mByw4NFMwE2RVR8k4gLnmDPTJYo.roa
File: mByw4NFMwE2RVR8k4gLnmDPTJYo.roa (raw, json)
Hash identifier: Y8BHbMrePuWx4FEV3PtA0+eYlGuNq5BUaYJ03a4xArE=
Subject key identifier: 98:1C:B0:E0:D1:4C:C0:4D:91:55:1F:24:E2:02:E7:98:33:D3:25:8A
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018CC94D3DD4DA1AED9AA62150C8D7D6906E
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mByw4NFMwE2RVR8k4gLnmDPTJYo.roa
Signing time: Tue 02 Jan 2024 08:32:11 +0000
ROA not before: Tue 02 Jan 2024 08:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25500
IP address blocks: 77.47.128.0/17 maxlen: 17
77.47.130.0/24 maxlen: 24
77.47.128.0/24 maxlen: 24
77.47.137.0/24 maxlen: 24
77.47.135.0/24 maxlen: 24
77.47.202.0/23 maxlen: 23
77.47.201.0/24 maxlen: 24
77.47.206.0/24 maxlen: 24
77.47.204.0/23 maxlen: 23
77.47.200.0/24 maxlen: 24
77.47.209.0/24 maxlen: 24
77.47.207.0/24 maxlen: 24
77.47.208.0/24 maxlen: 24
77.47.216.0/24 maxlen: 24
77.47.217.0/24 maxlen: 24
77.47.214.0/24 maxlen: 24
77.47.215.0/24 maxlen: 24
77.47.218.0/24 maxlen: 24
77.47.223.0/24 maxlen: 24
77.47.224.0/24 maxlen: 24
77.47.222.0/24 maxlen: 24
77.47.225.0/24 maxlen: 24
77.47.226.0/24 maxlen: 24
77.47.227.0/24 maxlen: 24
77.47.235.0/24 maxlen: 24
77.47.236.0/24 maxlen: 24
77.47.234.0/24 maxlen: 24
77.47.161.0/24 maxlen: 24
77.47.160.0/24 maxlen: 24
77.47.164.0/24 maxlen: 24
77.47.165.0/24 maxlen: 24
77.47.162.0/24 maxlen: 24
77.47.163.0/24 maxlen: 24
77.47.166.0/24 maxlen: 24
77.47.168.0/24 maxlen: 24
77.47.171.0/24 maxlen: 24
77.47.172.0/24 maxlen: 24
77.47.169.0/24 maxlen: 24
77.47.170.0/24 maxlen: 24
77.47.174.0/24 maxlen: 24
77.47.175.0/24 maxlen: 24
77.47.173.0/24 maxlen: 24
77.47.186.0/23 maxlen: 23
77.47.184.0/23 maxlen: 23
77.47.190.0/24 maxlen: 24
77.47.196.0/23 maxlen: 23
77.47.194.0/24 maxlen: 24
77.47.199.0/24 maxlen: 24
77.47.198.0/24 maxlen: 24
2a02:db0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Jun 2024 12:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:3d:d4:da:1a:ed:9a:a6:21:50:c8:d7:d6:90:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 2 08:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=981cb0e0d14cc04d91551f24e202e79833d3258a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:f3:48:31:21:59:00:39:29:d6:8e:c5:e8:
c9:0f:6e:16:79:3f:b7:97:70:53:d8:f3:dc:a3:d4:
6d:83:2f:c7:c0:ee:6b:71:0d:c6:44:55:17:3d:98:
db:8c:84:26:30:f7:72:21:95:9c:8b:a9:bf:11:cb:
34:ae:ce:26:d7:6f:1e:bb:9b:31:a6:d0:61:66:bf:
cd:b9:92:5d:13:47:10:67:e0:a2:f0:e3:d6:e5:ab:
b1:6b:7e:5e:be:3e:5b:1c:80:8d:db:9f:d4:e0:81:
46:6a:7e:e4:76:18:dd:e1:00:3c:1e:6a:d6:34:e2:
cc:6c:f6:7e:60:5a:20:44:4e:95:c5:19:49:6d:64:
a6:b4:b6:6b:04:86:68:df:ef:7d:ff:d6:9a:fa:e1:
ff:99:e1:68:6d:b2:10:7d:0b:bf:74:a3:ea:0b:4e:
b6:f8:2e:07:c3:80:7b:2e:5e:f0:c0:65:3a:06:2d:
ef:77:f9:8f:75:b4:df:10:af:c5:c7:b0:51:bc:f1:
da:1b:24:a5:f4:d7:fb:ee:d7:da:61:79:d4:21:84:
a7:bb:c3:75:1f:55:59:01:60:8b:04:71:85:fd:60:
c0:8f:17:a3:34:d3:44:8c:5c:d6:1b:14:5e:9d:a5:
7a:6f:98:10:b9:f2:7a:50:2e:e0:bc:df:65:45:a3:
91:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1C:B0:E0:D1:4C:C0:4D:91:55:1F:24:E2:02:E7:98:33:D3:25:8A
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mByw4NFMwE2RVR8k4gLnmDPTJYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.128.0/17
IPv6:
2a02:db0::/32
Signature Algorithm: sha256WithRSAEncryption
5c:e4:72:65:16:f0:65:a7:ec:0c:6e:7c:44:cb:ff:d4:f6:a3:
09:1f:84:17:e6:24:94:90:c6:93:7a:ab:87:49:4e:d2:57:dd:
57:ad:1a:b0:29:9d:bc:a6:ff:9b:84:fb:4d:51:51:b6:cd:de:
40:bb:d1:37:ad:5b:60:ed:ed:43:63:c0:7f:2f:b0:fc:df:63:
9c:cf:4d:be:e1:21:d9:a8:c1:9d:17:2d:d7:9a:6f:53:0b:1d:
22:db:6d:db:0c:b7:fa:71:fb:b3:5c:80:7b:c9:e3:d1:93:4d:
fa:26:48:57:80:40:a0:a7:93:aa:64:4c:d7:0d:70:f4:32:ac:
77:dc:5b:17:d4:0c:bc:9a:4c:a1:52:b1:0d:6c:d9:76:1a:f7:
01:06:61:55:d2:2e:87:11:fb:c9:fc:59:27:6f:69:a4:3e:ad:
70:18:52:bd:f6:c2:31:50:a7:44:86:d5:43:d9:d3:d5:40:48:
02:a9:2b:0c:60:2c:83:8a:e1:6f:81:2a:fc:f7:ac:8c:45:14:
c2:15:4e:5b:fb:9b:02:59:fd:a3:f3:65:1d:07:12:75:af:db:
36:fe:f6:c2:55:25:0e:4c:04:92:e1:f7:19:67:af:d6:3a:bb:
8c:c7:32:2f:f1:e0:6f:96:d3:93:bf:21:b5:59:74:73:8d:35:
ac:df:6a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 18:28:28 2024 by rpki-client on console-ams.rpki-client.org