Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/dxNb8QLLCTTk0Y-pERAEWM8boT0.roa
File: dxNb8QLLCTTk0Y-pERAEWM8boT0.roa (raw, json)
Hash identifier: zGE6AxDjH/k33TDnPF9rQWVI3w5S22gxN52Jt+X33dw=
Subject key identifier: 77:13:5B:F1:02:CB:09:34:E4:D1:8F:A9:11:10:04:58:CF:1B:A1:3D
Certificate issuer: /CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Certificate serial: 018FDF34C22004B2A214EBCD7B7AADF0C067
Authority key identifier: DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/dxNb8QLLCTTk0Y-pERAEWM8boT0.roa
Signing time: Mon 03 Jun 2024 17:45:27 +0000
ROA not before: Mon 03 Jun 2024 17:45:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28756
IP address blocks: 145.64.128.0/21 maxlen: 21
145.64.128.0/22 maxlen: 22
145.64.130.0/24 maxlen: 24
145.64.132.0/22 maxlen: 22
145.64.132.0/23 maxlen: 23
145.64.134.0/24 maxlen: 24
145.64.135.0/24 maxlen: 24
145.64.144.0/20 maxlen: 20
145.64.144.0/23 maxlen: 23
145.64.146.0/24 maxlen: 24
145.64.148.0/24 maxlen: 24
145.64.149.0/24 maxlen: 24
145.64.157.0/24 maxlen: 24
145.64.158.0/24 maxlen: 24
145.64.159.0/24 maxlen: 24
145.64.160.0/20 maxlen: 20
145.64.160.0/24 maxlen: 24
145.64.161.0/24 maxlen: 24
145.64.162.0/24 maxlen: 24
145.64.170.0/24 maxlen: 24
145.64.240.0/21 maxlen: 21
145.64.242.0/24 maxlen: 24
145.64.245.0/24 maxlen: 24
145.64.248.0/21 maxlen: 21
145.64.248.0/22 maxlen: 22
145.64.250.0/24 maxlen: 24
145.64.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 04 Jun 2024 09:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:df:34:c2:20:04:b2:a2:14:eb:cd:7b:7a:ad:f0:c0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc377b5d022bf0be4a6224b47eea6ca0b81bf037
Validity
Not Before: Jun 3 17:45:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77135bf102cb0934e4d18fa911100458cf1ba13d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:ce:c8:49:4e:a1:d3:b0:ab:13:03:3b:e9:
d4:4c:ea:b4:c7:29:93:41:a5:89:34:50:13:d1:10:
6a:94:0d:b0:be:29:0c:fa:62:0c:43:97:94:39:f6:
75:b6:72:bf:7f:ca:f9:5b:4e:08:3a:60:13:72:4b:
ea:71:f0:4c:69:69:11:e5:53:ab:a0:fd:29:e4:c1:
62:50:91:09:50:3a:15:1b:fd:92:b8:c2:2b:94:0e:
fe:b0:2c:f8:8e:49:bc:3d:11:94:81:d1:63:27:9b:
32:a8:0e:90:4a:16:7d:a0:24:47:a3:e7:2f:05:b9:
20:92:3b:6d:41:81:c8:7d:22:25:57:5a:66:5e:f6:
66:21:88:e2:d8:a3:38:8f:01:8a:b1:f7:27:fe:9e:
23:7f:71:62:70:49:02:77:e4:aa:82:5d:6b:40:b4:
43:3b:1a:80:da:ec:bb:5f:b9:19:31:d2:b0:ba:ba:
99:cc:20:76:0f:64:b4:2a:8c:2a:6b:35:74:a4:55:
ea:04:50:b4:de:c0:bf:a4:a3:cf:e8:e6:27:d2:4b:
2f:3d:58:e1:ec:82:e7:5e:d3:1c:da:16:e3:5a:8d:
2b:ef:cc:4b:53:a0:d2:41:3f:cf:ce:4c:82:2c:d2:
af:98:aa:a2:05:fc:44:13:c7:ec:86:f0:6c:7d:7d:
28:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:5B:F1:02:CB:09:34:E4:D1:8F:A9:11:10:04:58:CF:1B:A1:3D
X509v3 Authority Key Identifier:
keyid:DC:37:7B:5D:02:2B:F0:BE:4A:62:24:B4:7E:EA:6C:A0:B8:1B:F0:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/dxNb8QLLCTTk0Y-pERAEWM8boT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cc558c-35e5-4dd6-867b-8b05b778e0d5/1/3Dd7XQIr8L5KYiS0fupsoLgb8Dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.64.128.0/21
145.64.144.0-145.64.175.255
145.64.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:84:fb:f9:7e:fb:77:e9:6b:3c:bc:ec:60:dc:d3:b5:a2:d3:
8c:5d:15:52:48:e3:89:79:82:9c:2b:ee:00:9d:01:b1:ba:d6:
6b:e6:93:78:84:e0:82:63:a0:0b:cc:14:d7:b8:12:a2:1f:a8:
e2:5c:b8:8b:5d:51:e7:a8:a7:28:01:40:ca:8c:68:c0:8e:6e:
69:d8:c9:f7:65:b0:e4:bb:36:d4:ca:f1:de:0f:11:a6:ca:f9:
98:b9:b3:18:ec:85:67:94:cd:44:09:86:0f:00:ab:53:68:32:
7f:c8:c4:1e:f9:47:be:69:c8:0e:d1:64:e7:dd:ae:81:81:0b:
a5:6c:a1:5a:64:d0:c3:5a:4e:26:41:67:74:31:7d:e3:82:d0:
9b:ae:73:f1:ea:97:d7:54:cd:7f:6f:ed:b6:81:04:55:ac:59:
77:ab:f1:05:80:fa:ac:d5:1c:06:4c:bf:37:20:c4:78:f4:fe:
c3:78:3f:2f:f0:c1:2d:ee:b0:f8:57:16:d4:f2:31:aa:c3:f5:
3c:02:19:66:e2:e8:2c:c1:ac:3b:a4:54:b4:fd:ec:df:ee:cf:
b3:ae:ab:6e:db:d5:a4:18:b1:f3:32:10:9b:47:6c:0b:64:3a:
19:f5:19:26:a3:88:35:cf:e9:0c:a8:bb:37:88:69:f3:3e:41:
c8:bd:db:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:42 2025 by rpki-client