Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lRr9D5aJBX3C2NYxDKSIfXIkoxQ.roa
File: lRr9D5aJBX3C2NYxDKSIfXIkoxQ.roa (raw, json)
Hash identifier: LXLSSk4gyV+pTtx4zB7ihxJH/3iDEJz3GSd6NYEshkM=
Subject key identifier: 95:1A:FD:0F:96:89:05:7D:C2:D8:D6:31:0C:A4:88:7D:72:24:A3:14
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D86F1E22CDF48C633A23DA34FBD1A01E7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lRr9D5aJBX3C2NYxDKSIfXIkoxQ.roa
Signing time: Thu 08 Feb 2024 04:20:15 +0000
ROA not before: Thu 08 Feb 2024 04:20:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201021
IP address blocks: 77.81.88.0/24 maxlen: 24
86.107.51.0/24 maxlen: 24
89.37.194.0/24 maxlen: 24
89.39.125.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.75.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 04:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:86:f1:e2:2c:df:48:c6:33:a2:3d:a3:4f:bd:1a:01:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 8 04:20:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=951afd0f9689057dc2d8d6310ca4887d7224a314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f7:e4:11:b1:8e:14:05:57:85:0b:a2:fb:b9:
4a:04:0a:16:8f:60:a5:7a:14:93:b5:04:02:34:6e:
93:5e:d3:f9:e7:95:1a:59:96:f2:35:05:2a:1c:2c:
26:c1:44:f0:a2:c5:b9:14:0e:27:e4:c8:2a:98:13:
8a:28:41:60:12:21:91:90:6a:7d:40:af:5f:3c:53:
a0:8a:a2:2b:d2:4e:fe:50:a4:6a:34:d2:38:3a:62:
b9:9a:0b:4f:35:e5:d4:58:53:49:20:81:e7:d1:6d:
74:20:92:6b:fd:db:7c:f3:45:96:ec:6a:97:bf:bd:
62:7c:15:3b:e0:8e:1c:26:83:d0:23:fa:ed:d3:c5:
c0:85:37:d2:70:70:6a:07:28:da:a7:f9:46:be:4e:
ac:d0:f8:44:db:1c:8e:ff:44:50:1c:ae:a6:73:0b:
6e:1c:40:6b:93:ce:03:ce:c3:bf:5e:55:ce:3d:83:
4f:9c:f0:d4:24:2d:73:6d:bd:4c:0a:59:85:f3:37:
c8:72:17:f9:e9:2d:c5:41:5f:d9:d6:59:57:76:eb:
76:1b:6a:cf:9a:f1:7e:9b:86:01:af:5b:58:79:2b:
31:11:f7:70:76:08:20:9e:63:8b:08:de:31:df:36:
86:5b:ad:b5:f6:08:57:3b:c1:1e:2f:6f:c9:19:9a:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1A:FD:0F:96:89:05:7D:C2:D8:D6:31:0C:A4:88:7D:72:24:A3:14
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lRr9D5aJBX3C2NYxDKSIfXIkoxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
86.107.51.0/24
89.37.194.0/24
89.39.125.0/24
89.43.62.0/24
89.45.162.0/24
93.90.75.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d8:ff:1c:58:79:f8:6e:5e:87:c6:ee:15:5c:bc:d0:51:20:
a2:d0:f1:cf:75:c0:0d:14:64:90:1f:a4:56:a9:80:d5:52:92:
86:96:8c:38:7a:52:9a:ef:ff:59:c9:1d:80:d8:8a:e9:97:f6:
b0:92:ea:31:23:11:d6:e7:cd:19:c0:2d:07:3a:63:5f:0e:17:
7d:4f:9e:b5:95:9d:61:a8:15:ec:a9:5e:f4:ad:d9:2c:89:72:
6a:4d:06:73:9a:5e:6f:3a:02:e3:e4:2a:12:15:67:18:4d:9f:
eb:d1:11:70:8b:e7:de:4e:3b:43:be:e6:82:5d:fe:e6:d7:9f:
8b:f1:ae:56:6e:b4:86:38:31:70:e9:22:10:67:54:35:c9:d1:
ba:8c:c5:5a:7b:e3:f7:7e:be:cd:73:c2:06:8d:2b:d7:c8:75:
9e:47:6c:85:3a:2f:f0:36:ff:75:70:87:87:d7:da:b9:0f:bf:
5a:d6:b1:8a:70:cd:ee:39:2d:0d:e2:fa:41:93:10:f9:ff:8f:
e7:ec:5b:a2:a6:36:28:cf:ef:66:94:e7:77:83:56:46:54:2f:
fd:75:cd:dc:a8:75:a1:95:2c:46:93:3c:85:8a:d0:bf:6f:67:
a0:4a:4f:ac:96:cd:f8:49:5e:82:5d:3c:05:4a:d8:d4:56:43:
89:b2:d9:c3
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAY2G8eIs30jGM6I9o0+9GgHnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMjA4MDQyMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTFhZmQwZjk2ODkwNTdkYzJkOGQ2MzEwY2E0ODg3ZDcyMjRhMzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvfkEbGOFAVXhQui+7lKBAoWj2Cl
ehSTtQQCNG6TXtP555UaWZbyNQUqHCwmwUTwosW5FA4n5MgqmBOKKEFgEiGRkGp9
QK9fPFOgiqIr0k7+UKRqNNI4OmK5mgtPNeXUWFNJIIHn0W10IJJr/dt880WW7GqX
v71ifBU74I4cJoPQI/rt08XAhTfScHBqByjap/lGvk6s0PhE2xyO/0RQHK6mcwtu
HEBrk84DzsO/XlXOPYNPnPDUJC1zbb1MClmF8zfIchf56S3FQV/Z1llXdut2G2rP
mvF+m4YBr1tYeSsxEfdwdgggnmOLCN4x3zaGW6219ghXO8EeL2/JGZoe7QIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFJUa/Q+WiQV9wtjWMQykiH1yJKMUMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvbFJyOUQ1YUpCWDNDMk5ZeERLU0lmWElrb3hRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQATVFYAwQA
VmszAwQAWSXCAwQAWSd9AwQAWSs+AwQAWS2iAwQAXVpLAwQAvPGJMA0GCSqGSIb3
DQEBCwUAA4IBAQBF2P8cWHn4bl6Hxu4VXLzQUSCi0PHPdcANFGSQH6RWqYDVUpKG
low4elKa7/9ZyR2A2Irpl/awkuoxIxHW580ZwC0HOmNfDhd9T561lZ1hqBXsqV70
rdksiXJqTQZzml5vOgLj5CoSFWcYTZ/r0RFwi+feTjtDvuaCXf7m15+L8a5WbrSG
ODFw6SIQZ1Q1ydG6jMVae+P3fr7Nc8IGjSvXyHWeR2yFOi/wNv91cIeH19q5D79a
1rGKcM3uOS0N4vpBkxD5/4/n7FuipjYoz+9mlOd3g1ZGVC/9dc3cqHWhlSxGkzyF
itC/b2egSk+sls34SV6CXTwFStjUVkOJstnD
Generated at Wed Oct 2 04:59:39 2024 by rpki-client on console-fra.rpki-client.org