Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/S_z_dmOMoRoZJCyhlWs7KYKKE_c.roa
File: S_z_dmOMoRoZJCyhlWs7KYKKE_c.roa (raw, json)
Hash identifier: dO1zBXuteDRTaG+NkPm8AW6LoAxCVtc72nYwzmhIVco=
Subject key identifier: 4B:FC:FF:76:63:8C:A1:1A:19:24:2C:A1:95:6B:3B:29:82:8A:13:F7
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 019425FBF6C52C9E90956F466950B84A30B0
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/S_z_dmOMoRoZJCyhlWs7KYKKE_c.roa
Signing time: Thu 02 Jan 2025 07:47:37 +0000
ROA not before: Thu 02 Jan 2025 07:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50889
IP address blocks: 77.111.248.0/24 maxlen: 24
77.111.249.0/24 maxlen: 24
77.111.250.0/24 maxlen: 24
77.111.251.0/24 maxlen: 24
80.84.160.0/24 maxlen: 24
80.84.161.0/24 maxlen: 24
80.84.162.0/24 maxlen: 24
80.84.163.0/24 maxlen: 24
80.84.164.0/24 maxlen: 24
80.84.165.0/24 maxlen: 24
80.84.166.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
80.84.168.0/24 maxlen: 24
80.84.169.0/24 maxlen: 24
80.84.170.0/24 maxlen: 24
80.84.171.0/24 maxlen: 24
80.84.172.0/24 maxlen: 24
80.84.173.0/24 maxlen: 24
80.84.174.0/24 maxlen: 24
80.84.175.0/24 maxlen: 24
80.250.96.0/24 maxlen: 24
80.250.97.0/24 maxlen: 24
80.250.98.0/24 maxlen: 24
185.136.69.0/24 maxlen: 24
185.136.70.0/24 maxlen: 24
185.136.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 18:44:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fb:f6:c5:2c:9e:90:95:6f:46:69:50:b8:4a:30:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Jan 2 07:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4bfcff76638ca11a19242ca1956b3b29828a13f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:85:3b:95:11:55:36:2f:1f:e3:7d:7e:94:3b:
31:64:5f:9c:cc:81:e7:3e:f9:3e:a2:89:89:b0:2a:
21:6a:52:e0:40:24:1a:53:59:91:1f:70:79:8f:c3:
f7:d2:6b:20:8d:22:cd:a3:a6:dd:10:47:4a:f5:27:
10:68:cc:36:12:4d:c4:5c:f7:5e:d0:99:19:cf:08:
f4:f7:e9:b2:34:48:88:cb:1d:db:7a:5d:07:38:d2:
17:51:0b:02:77:f2:91:84:be:b8:53:5c:aa:7c:41:
d5:75:70:7d:b3:16:4b:ad:0a:6a:c5:2c:f3:c8:f6:
6f:c1:3e:b5:1d:a1:59:e5:a5:e9:2a:69:6c:27:74:
0a:39:ef:5d:24:89:78:43:d4:00:d8:6f:f9:b1:ba:
29:5c:b1:75:74:3a:d4:bc:05:41:dc:53:61:fd:f9:
0a:d4:f3:da:95:c5:2f:7e:fc:40:5d:8b:95:e0:ef:
1b:87:d9:29:5e:e4:95:a3:86:b6:7b:bf:4a:a2:b5:
e5:07:2e:50:ff:af:dc:ef:36:b2:66:a9:cf:20:bc:
59:e7:75:58:f1:71:4b:41:00:0b:c4:6c:0c:85:62:
82:23:de:2f:f3:d8:df:16:2a:4c:47:f6:af:aa:0f:
9d:4a:ef:da:79:52:c0:a2:cb:bc:cf:01:71:1d:94:
87:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FC:FF:76:63:8C:A1:1A:19:24:2C:A1:95:6B:3B:29:82:8A:13:F7
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/S_z_dmOMoRoZJCyhlWs7KYKKE_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.248.0/22
80.84.160.0/20
80.250.96.0-80.250.98.255
185.136.69.0-185.136.71.255
Signature Algorithm: sha256WithRSAEncryption
12:02:41:a7:04:7b:34:61:99:18:96:85:f9:e2:e9:fc:8f:2c:
21:1d:b6:c0:01:4e:a4:8e:42:c1:2c:7e:f8:8c:18:19:a7:fc:
5a:6b:ff:b9:a5:0e:08:e7:a0:88:e4:a5:da:8f:2e:4a:40:5a:
28:e9:53:95:dd:be:98:3e:11:9f:ce:35:a1:84:fa:44:5f:7f:
b4:12:69:be:68:33:80:c9:07:67:fb:ea:11:61:4f:3f:00:49:
2a:49:df:bf:82:72:92:a8:a2:7b:f8:e2:9b:dc:5e:87:36:01:
85:60:3f:c8:84:16:16:5c:12:20:08:3d:8e:aa:e5:5c:58:22:
03:61:f9:d0:aa:c2:d0:bb:6a:67:65:f6:08:79:fd:10:84:68:
e3:d2:25:2a:0c:1a:c4:a3:bf:15:15:11:78:c1:d6:6b:e8:41:
02:9e:01:05:f0:b0:90:09:0e:2c:95:85:63:7c:3d:5b:62:6f:
98:d4:17:ee:61:b9:23:0b:a7:fd:e0:96:e9:bc:e9:94:62:b1:
25:2c:07:c3:a7:d8:ed:97:19:87:ba:ae:15:f2:e6:83:99:fa:
60:fa:55:1b:86:07:bd:08:f7:e8:92:ae:fd:92:fe:07:29:a8:
75:af:16:d1:48:88:5f:f3:a9:7d:ab:0d:13:fe:07:c2:b8:a2:
51:eb:c0:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:35:25 2025 by rpki-client