Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/d65E8clDfGCXxsIY22DoCJM5_NU.roa
File: d65E8clDfGCXxsIY22DoCJM5_NU.roa (raw, json)
Hash identifier: ewOG0IZPKOEhZhcBozw/ikZBm0qsXaw3Xa6uRoFHQ/E=
Subject key identifier: 77:AE:44:F1:C9:43:7C:60:97:C6:C2:18:DB:60:E8:08:93:39:FC:D5
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 018E7F430F4957A99C49A8C9742F796716B7
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/d65E8clDfGCXxsIY22DoCJM5_NU.roa
Signing time: Wed 27 Mar 2024 09:34:45 +0000
ROA not before: Wed 27 Mar 2024 09:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43391
IP address blocks: 77.223.128.0/19 maxlen: 24
77.223.132.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
77.223.148.0/24 maxlen: 24
77.223.149.0/24 maxlen: 24
77.223.152.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.168.0/21 maxlen: 21
91.191.170.0/24 maxlen: 24
91.191.171.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.204.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.206.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
185.80.72.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.33.0/24 maxlen: 24
195.244.43.0/24 maxlen: 24
2a01:aac0::/32 maxlen: 32
2a0a:be80::/29 maxlen: 29
2a0a:be80::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Apr 2024 12:58:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:43:0f:49:57:a9:9c:49:a8:c9:74:2f:79:67:16:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Mar 27 09:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77ae44f1c9437c6097c6c218db60e8089339fcd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:cc:70:92:c3:f8:fb:9d:7d:63:bd:52:6c:
3e:9e:53:1e:43:85:29:d6:81:d6:ac:bb:59:0a:a3:
c4:6b:14:a2:d6:24:8c:08:1f:d6:68:6e:cb:8f:5f:
26:1f:59:ce:61:d5:65:1c:83:30:d3:fa:ae:06:7b:
50:e6:a7:aa:aa:c7:22:ce:02:24:04:d9:6e:b2:04:
4d:dd:4a:ed:3f:7d:8f:6b:12:f7:40:6b:ae:ec:62:
e8:96:e0:db:03:cc:d7:b9:d1:e5:b2:4a:27:45:de:
52:82:e1:46:c0:79:5e:a8:c3:10:21:25:67:a9:27:
76:ad:0b:44:71:14:a3:b7:b9:0a:de:d3:15:39:f3:
4b:79:e6:37:56:27:12:58:e0:17:a2:40:d0:f7:15:
35:e4:c9:1d:32:c3:b2:c8:a7:c1:24:83:15:02:7b:
67:65:00:36:de:58:bf:fc:59:02:01:06:93:03:2b:
c4:0d:9e:28:c8:1a:1b:83:75:68:a8:de:63:54:f2:
62:b2:72:f9:b9:37:8d:aa:3c:98:5c:bf:74:6e:ce:
d0:b0:bf:36:a1:ca:79:6e:94:5d:64:90:73:10:da:
c5:25:c8:c0:55:3d:20:d3:83:48:7f:42:93:8c:c9:
1c:12:11:ba:da:0d:2e:a4:19:4b:03:e3:49:47:f6:
1e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AE:44:F1:C9:43:7C:60:97:C6:C2:18:DB:60:E8:08:93:39:FC:D5
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/d65E8clDfGCXxsIY22DoCJM5_NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
2f:16:f9:11:ea:d7:2f:34:8f:e6:5f:89:88:ca:c4:80:19:61:
e5:3e:c3:d4:a3:5c:ed:98:f4:1a:6a:43:cd:3f:29:07:f9:4b:
ad:4a:ca:7c:17:62:0b:fb:4e:57:ba:e3:65:46:da:52:e2:47:
14:af:13:ed:55:8e:dd:f2:09:d3:61:5d:0d:cd:cf:dd:c2:4c:
95:3d:dd:4f:1a:24:ed:8e:ad:4f:45:60:63:32:56:c0:ab:80:
ed:83:bf:aa:0b:d3:8f:d5:59:20:c2:55:ac:e0:83:a5:6c:86:
43:6c:b5:2f:45:0c:1f:d6:92:7a:df:db:79:9f:03:83:37:f4:
bf:2c:1b:d9:42:28:f8:cb:2a:c6:7d:d8:5e:a0:03:cc:f6:be:
79:37:1e:36:ca:c6:1b:39:a9:39:ca:b9:f8:d4:1c:b9:44:08:
cd:85:c2:4b:b1:40:1c:2d:9d:04:ce:ed:89:35:61:7d:d3:a4:
d8:0d:98:3c:c6:eb:be:d3:74:c3:22:7d:f1:58:49:9b:9f:ac:
c2:d5:35:2a:c2:4e:fb:5c:6f:e9:4c:b2:3c:07:57:89:df:81:
46:77:7d:c4:2e:a5:7a:94:d6:14:82:2c:a3:d2:4e:34:dc:c6:
96:a1:93:7d:76:55:43:40:4c:8c:ad:ee:01:a1:6a:bb:91:53:
d9:e9:de:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:10 2024 by rpki-client on console-fra.rpki-client.org