Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/sVIfYc1RSnq8XYLIT9vB8sqOxnM.roa
File: sVIfYc1RSnq8XYLIT9vB8sqOxnM.roa (raw, json)
Hash identifier: SF9rpOCWKRX0n6fWuihNE/M9KaxWX5Z/PIUS//gyIzE=
Subject key identifier: B1:52:1F:61:CD:51:4A:7A:BC:5D:82:C8:4F:DB:C1:F2:CA:8E:C6:73
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 018CC493983BB4216D73DD15D0FEAFCBBB89
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/sVIfYc1RSnq8XYLIT9vB8sqOxnM.roa
Signing time: Mon 01 Jan 2024 10:30:56 +0000
ROA not before: Mon 01 Jan 2024 10:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210636
IP address blocks: 37.77.58.0/24 maxlen: 24
37.77.57.0/24 maxlen: 24
37.77.56.0/24 maxlen: 24
37.77.59.0/24 maxlen: 24
37.77.63.0/24 maxlen: 24
37.77.62.0/24 maxlen: 24
37.77.60.0/24 maxlen: 24
37.77.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 13:38:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:98:3b:b4:21:6d:73:dd:15:d0:fe:af:cb:bb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 1 10:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1521f61cd514a7abc5d82c84fdbc1f2ca8ec673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:20:6c:f7:54:ae:d2:a0:14:35:26:3a:53:2a:
63:34:17:b9:f3:a0:1d:20:5c:b7:47:05:cf:15:c9:
f0:92:7d:da:9b:5e:6d:67:52:1f:f2:2c:e7:3c:8a:
66:aa:a3:64:6b:b1:ed:1c:75:5d:29:08:70:3a:fd:
10:0a:8d:0b:63:6e:03:c5:73:73:c6:0c:d1:21:ec:
2c:aa:bc:ca:43:1a:0f:20:04:e5:99:2c:74:d2:fb:
27:57:b5:00:79:32:13:e2:27:c3:5a:d7:35:9c:14:
f8:47:fa:11:f9:19:a1:bd:5b:ec:b7:82:c8:01:92:
eb:65:4b:31:55:f2:02:06:2d:7d:28:07:54:02:a7:
ce:f8:fe:4c:db:25:0a:40:27:d8:db:84:57:a3:f2:
1d:39:c5:6c:b2:b7:82:de:e1:ea:2e:e8:bd:5c:8e:
13:c5:db:51:86:c7:a6:82:03:dd:5a:42:0b:4d:3b:
18:1e:72:ee:0c:bc:f2:57:7e:b5:38:b7:6d:22:0e:
9d:5a:a5:da:18:b6:23:6b:99:57:94:53:83:83:48:
81:93:4b:32:2a:68:cb:f8:c1:06:e5:de:45:6c:9e:
b0:a7:32:66:c4:41:ed:92:2b:17:f9:f7:12:d3:6a:
4f:3f:96:34:c2:c6:39:78:1e:c7:85:b8:00:84:6f:
94:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:52:1F:61:CD:51:4A:7A:BC:5D:82:C8:4F:DB:C1:F2:CA:8E:C6:73
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/sVIfYc1RSnq8XYLIT9vB8sqOxnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.56.0/21
Signature Algorithm: sha256WithRSAEncryption
82:6f:40:6a:5f:db:39:75:29:44:c2:db:ab:67:cf:7c:0e:6d:
46:59:1c:23:22:19:1b:4f:a6:56:4b:29:43:fd:15:37:a6:d5:
d6:3a:a1:eb:77:f9:f4:15:2a:37:d6:ff:ab:b4:23:b6:18:65:
a2:69:d8:8a:0a:f5:a6:6e:47:f1:72:fa:9e:48:2c:0e:45:a3:
d6:88:19:e2:6e:81:1c:fe:1c:14:01:ad:21:65:8c:3e:a9:47:
f0:e7:9b:42:e4:21:25:7b:e2:6d:ed:7b:66:83:fb:be:65:00:
86:1a:ff:ee:d6:70:58:c3:df:8f:24:ef:c0:3d:8b:c4:5e:82:
17:6f:a2:a8:6f:24:e9:8c:a9:30:dd:34:57:71:67:c7:8c:93:
08:76:ca:c0:d8:44:c0:f3:74:48:1f:b4:fc:17:ee:c4:d5:24:
a6:8c:9b:3f:4a:82:0f:d8:9f:aa:57:41:70:96:63:50:5e:74:
12:b7:c8:02:8c:0d:70:d1:0a:76:f1:a2:39:78:2a:e0:23:ae:
21:74:52:4c:31:e4:e2:8d:ea:18:02:05:a7:df:cd:4a:41:71:
a5:0e:5d:d9:7b:64:6f:be:e8:a9:55:e4:1a:4f:41:f1:81:d3:
ba:0a:25:8d:d4:8a:28:07:09:98:d9:50:4b:16:db:44:81:3d:
b1:c0:f5:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEk5g7tCFtc90V0P6vy7uJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MGIyODNhMDUxMzk0MGQ1MjBhNjgwYjhiM2QxNGRiYzM2
Nzc3MGQwHhcNMjQwMTAxMTAzMDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTUyMWY2MWNkNTE0YTdhYmM1ZDgyYzg0ZmRiYzFmMmNhOGVjNjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliBs91Su0qAUNSY6UypjNBe586Ad
IFy3RwXPFcnwkn3am15tZ1If8iznPIpmqqNka7HtHHVdKQhwOv0QCo0LY24DxXNz
xgzRIewsqrzKQxoPIATlmSx00vsnV7UAeTIT4ifDWtc1nBT4R/oR+RmhvVvst4LI
AZLrZUsxVfICBi19KAdUAqfO+P5M2yUKQCfY24RXo/IdOcVssreC3uHqLui9XI4T
xdtRhsemggPdWkILTTsYHnLuDLzyV361OLdtIg6dWqXaGLYja5lXlFODg0iBk0sy
KmjL+MEG5d5FbJ6wpzJmxEHtkisX+fcS02pPP5Y0wsY5eB7HhbgAhG+UbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLFSH2HNUUp6vF2CyE/bwfLKjsZzMB8GA1UdIwQY
MBaAFDgLKDoFE5QNUgpoC4s9FNvDZ3cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Fzb09nVVRsQTFTQ21nTGl6MFUyOE5uZHcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9jMDhlMWUtZjViZC00YTFhLThhYmEt
Y2NmNjQ1NGJiMjRjLzEvc1ZJZlljMVJTbnE4WFlMSVQ5dkI4c3FPeG5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9jMDhlMWUtZjViZC00YTFhLThhYmEtY2NmNjQ1NGJiMjRj
LzEvT0Fzb09nVVRsQTFTQ21nTGl6MFUyOE5uZHcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJU04MA0G
CSqGSIb3DQEBCwUAA4IBAQCCb0BqX9s5dSlEwturZ898Dm1GWRwjIhkbT6ZWSylD
/RU3ptXWOqHrd/n0FSo31v+rtCO2GGWiadiKCvWmbkfxcvqeSCwORaPWiBniboEc
/hwUAa0hZYw+qUfw55tC5CEle+Jt7Xtmg/u+ZQCGGv/u1nBYw9+PJO/APYvEXoIX
b6KobyTpjKkw3TRXcWfHjJMIdsrA2ETA83RIH7T8F+7E1SSmjJs/SoIP2J+qV0Fw
lmNQXnQSt8gCjA1w0Qp28aI5eCrgI64hdFJMMeTijeoYAgWn381KQXGlDl3Ze2Rv
vuipVeQaT0HxgdO6CiWN1IooBwmY2VBLFttEgT2xwPWm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org