Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mT5KlOlUJdvOffPUrkRaurLL_f0.roa
File: mT5KlOlUJdvOffPUrkRaurLL_f0.roa (raw, json)
Hash identifier: Nia8P4r8y9GL/mK49zFkrE5zyEzzg29uHCs9fGfOrUY=
Subject key identifier: 99:3E:4A:94:E9:54:25:DB:CE:7D:F3:D4:AE:44:5A:BA:B2:CB:FD:FD
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0193BF8F099D6F377EBDA0313043CF40D59F
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mT5KlOlUJdvOffPUrkRaurLL_f0.roa
Signing time: Fri 13 Dec 2024 10:27:22 +0000
ROA not before: Fri 13 Dec 2024 10:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.143.0/24 maxlen: 24
77.47.148.0/22 maxlen: 24
77.47.156.0/22 maxlen: 24
77.47.212.0/23 maxlen: 24
77.47.240.0/23 maxlen: 24
77.47.243.0/24 maxlen: 24
77.47.244.0/22 maxlen: 24
185.143.56.0/22 maxlen: 24
195.178.132.0/24 maxlen: 24
195.178.133.0/24 maxlen: 24
195.178.134.0/24 maxlen: 24
195.178.135.0/24 maxlen: 24
195.178.144.0/23 maxlen: 23
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
195.178.152.0/22 maxlen: 22
195.178.156.0/24 maxlen: 24
212.111.207.0/24 maxlen: 24
212.111.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:8f:09:9d:6f:37:7e:bd:a0:31:30:43:cf:40:d5:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 13 10:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=993e4a94e95425dbce7df3d4ae445abab2cbfdfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4e:ef:6c:11:3e:da:a1:24:33:f0:6b:6c:f8:
7c:67:2f:29:55:e9:85:30:7a:93:0d:73:30:35:80:
82:1b:dd:e7:4f:70:41:ff:8c:ac:3e:fa:26:a2:8c:
23:c9:5a:e8:5d:c6:fa:93:e7:47:44:01:1e:50:1b:
fc:d4:8e:db:b5:53:37:b2:b3:9d:03:f8:83:06:61:
e8:e2:5f:4f:6a:9f:93:17:bf:a7:7e:11:e4:fc:15:
0c:62:59:81:71:94:93:f0:87:11:92:cb:3a:ef:5c:
fb:a3:29:63:8f:73:52:dd:c5:de:46:7c:16:af:f6:
31:70:13:7c:65:86:6b:eb:f4:3b:56:96:b0:bd:5c:
b9:77:ac:3f:15:7a:b4:8a:a7:ce:b1:a7:f7:6b:94:
10:b3:bd:4c:d9:4b:e8:d1:4b:5f:5a:e4:6c:19:f5:
c6:35:24:17:f6:94:bf:11:74:02:bc:07:1f:85:1a:
56:75:a4:9c:ee:73:52:30:75:bb:b3:b5:d0:f1:5e:
17:bd:ba:37:d8:24:18:08:00:50:9a:14:d3:40:53:
c4:f2:d8:fc:32:d5:f5:a4:53:fc:e5:71:fa:b0:ef:
53:3f:94:89:b7:1b:64:5e:d3:3a:f0:b6:bb:7f:a1:
cb:6f:2b:21:c4:77:aa:54:b6:b0:32:d3:f2:15:18:
86:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3E:4A:94:E9:54:25:DB:CE:7D:F3:D4:AE:44:5A:BA:B2:CB:FD:FD
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/mT5KlOlUJdvOffPUrkRaurLL_f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.148.0/22
77.47.156.0/22
77.47.212.0/23
77.47.240.0/23
77.47.243.0-77.47.247.255
185.143.56.0/22
195.178.132.0/22
195.178.144.0/22
195.178.152.0-195.178.156.255
212.111.207.0/24
212.111.217.0/24
Signature Algorithm: sha256WithRSAEncryption
95:43:3f:65:e5:24:d1:cc:ec:ea:f8:af:cd:df:3b:93:9f:a8:
2c:82:b2:61:5f:27:7e:2c:7f:a0:28:d8:45:75:67:31:97:e3:
d9:20:d5:02:b4:d0:a7:92:e1:e8:2f:a7:8e:99:43:e7:0b:cb:
f3:c6:f3:d2:27:d6:fd:1e:0d:74:08:a7:c6:17:81:9b:ea:87:
21:d0:eb:2a:67:ba:b2:aa:1a:56:ac:b9:84:5e:c0:ba:6d:43:
f8:9e:f9:95:23:44:a7:88:82:09:23:95:4a:fb:16:0e:e7:31:
bb:b5:5f:d1:84:b1:99:2f:34:66:2b:e6:1b:7c:4f:87:8b:95:
b7:ee:0c:a8:bc:72:30:10:fa:89:ff:b5:b5:0f:7a:8e:ea:3d:
bb:a4:d3:19:b3:10:43:34:80:c0:34:29:c7:7d:e5:f8:2b:fa:
04:8f:cf:bc:1f:f2:1d:b1:55:d6:81:47:ae:5b:e5:92:6f:31:
f3:dc:bf:4a:ff:ad:a3:c4:b5:11:64:d2:b5:42:2b:ed:85:4f:
b2:c0:cf:af:b4:09:35:ac:f0:26:0c:0e:27:5c:b4:76:e7:9b:
4e:66:b7:5b:f6:79:15:da:c0:47:70:49:b0:48:43:e5:15:5b:
84:5e:df:4b:aa:ca:aa:a3:b1:e1:fb:27:4c:f5:a2:03:32:34:
5d:af:e3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:08:19 2025 by rpki-client