Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/mUz4FewDr7HgH8epHlaBz7n_CZI.roa
File: mUz4FewDr7HgH8epHlaBz7n_CZI.roa (raw, json)
Hash identifier: PFszTZFKU4QqdtBEqFuh4slE5wI7zaPT+EaMXyDlkRk=
Subject key identifier: 99:4C:F8:15:EC:03:AF:B1:E0:1F:C7:A9:1E:56:81:CF:B9:FF:09:92
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 01916F2D428FD2E8EE73BA0E905805868D35
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/mUz4FewDr7HgH8epHlaBz7n_CZI.roa
Signing time: Tue 20 Aug 2024 09:45:22 +0000
ROA not before: Tue 20 Aug 2024 09:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16202
IP address blocks: 77.64.128.0/17 maxlen: 17
77.64.128.0/18 maxlen: 18
77.64.128.0/19 maxlen: 19
77.64.146.0/23 maxlen: 23
77.64.160.0/19 maxlen: 19
77.64.192.0/19 maxlen: 19
77.64.192.0/20 maxlen: 20
77.64.208.0/20 maxlen: 20
77.64.224.0/20 maxlen: 20
77.64.240.0/20 maxlen: 20
77.64.252.0/23 maxlen: 23
77.64.254.0/23 maxlen: 23
83.221.64.0/19 maxlen: 19
83.221.64.0/20 maxlen: 23
83.221.64.0/21 maxlen: 21
83.221.72.0/21 maxlen: 21
83.221.80.0/20 maxlen: 20
83.221.80.0/21 maxlen: 21
83.221.88.0/21 maxlen: 21
89.186.128.0/19 maxlen: 19
89.186.128.0/20 maxlen: 20
89.186.128.0/21 maxlen: 21
89.186.136.0/21 maxlen: 21
89.186.144.0/20 maxlen: 20
89.186.144.0/21 maxlen: 21
89.186.152.0/21 maxlen: 21
92.206.0.0/16 maxlen: 16
92.206.0.0/17 maxlen: 17
92.206.0.0/18 maxlen: 18
92.206.64.0/18 maxlen: 23
92.206.128.0/18 maxlen: 23
92.206.160.0/19 maxlen: 19
92.206.190.0/23 maxlen: 23
92.206.192.0/18 maxlen: 23
92.206.224.0/19 maxlen: 19
95.168.128.0/19 maxlen: 19
95.168.128.0/20 maxlen: 20
95.168.144.0/20 maxlen: 20
185.44.148.0/22 maxlen: 22
185.44.150.0/23 maxlen: 23
217.68.160.0/19 maxlen: 19
217.68.160.0/20 maxlen: 20
217.68.176.0/20 maxlen: 20
2a00:c1a0::/32 maxlen: 32
2a00:c1a0::/34 maxlen: 34
2a00:c1a0:4000::/34 maxlen: 34
2a00:c1a0:8000::/34 maxlen: 34
2a00:c1a0:c000::/34 maxlen: 34
2a02:2454:8000::/33 maxlen: 36
2a02:2457:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 19 Sep 2024 05:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:2d:42:8f:d2:e8:ee:73:ba:0e:90:58:05:86:8d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Aug 20 09:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=994cf815ec03afb1e01fc7a91e5681cfb9ff0992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:60:a5:21:38:da:ec:4d:b0:78:2e:9e:23:
74:d5:05:38:6b:2a:50:ce:a1:db:66:f0:6b:57:b6:
e9:3a:61:83:25:78:6f:3c:16:a9:91:33:35:1c:3f:
b3:ea:57:51:c9:74:99:10:e2:ee:d0:21:82:31:99:
59:9f:42:ce:fd:3f:c9:56:19:9c:7b:86:0a:c8:fb:
43:d6:7d:89:6c:01:38:9f:6d:76:b8:24:96:f1:51:
eb:5e:87:f0:35:7b:80:2e:4c:d1:91:82:1a:ec:1e:
14:8b:be:23:b1:78:9d:6e:a7:7a:f1:1c:33:72:39:
13:a7:55:0a:eb:b9:b1:6e:1a:e6:2a:b4:68:67:24:
16:10:88:10:a4:80:18:05:6f:29:c5:eb:49:81:c1:
02:fe:ca:ae:2f:6c:07:6d:d4:74:20:5a:ba:32:15:
05:2d:43:ed:b8:a6:e5:a0:3e:90:cf:e3:f6:e8:a0:
90:56:c9:53:1c:c2:ec:eb:8d:30:a1:5e:05:05:10:
44:a7:cf:24:e8:17:54:7b:c2:e3:cb:0a:35:61:1a:
2c:11:5a:49:fc:81:bc:dc:66:e0:09:81:8f:f0:84:
cf:f7:30:f6:c6:d6:97:d1:cd:27:24:8a:2c:68:1e:
fd:47:9b:b5:5d:35:2f:4a:b5:0e:cd:32:4f:d1:8d:
03:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:4C:F8:15:EC:03:AF:B1:E0:1F:C7:A9:1E:56:81:CF:B9:FF:09:92
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/mUz4FewDr7HgH8epHlaBz7n_CZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.128.0/17
83.221.64.0/19
89.186.128.0/19
92.206.0.0/16
95.168.128.0/19
185.44.148.0/22
217.68.160.0/19
IPv6:
2a00:c1a0::/32
2a02:2454:8000::/33
2a02:2457:100::/40
Signature Algorithm: sha256WithRSAEncryption
55:bc:9e:72:21:f8:e6:75:ac:3e:4a:b5:c6:15:76:61:ba:8c:
6e:52:70:06:23:3c:57:7e:65:a3:75:20:26:0a:7e:c2:a6:18:
9d:72:bc:ac:33:95:bc:8d:83:65:6f:df:7c:85:22:ad:0a:96:
22:f8:c1:79:00:c3:cd:26:f1:b0:d2:a4:80:d8:24:cf:f8:c7:
b8:c8:98:4d:4d:c7:46:89:d7:ed:e7:94:ce:9e:26:ae:aa:bf:
2f:bf:ec:17:24:29:f2:a5:1c:51:d8:83:c3:ec:6a:83:46:68:
14:f6:da:2e:c5:be:6e:77:f1:eb:0d:24:75:8d:ca:1f:f1:20:
c1:30:77:69:2c:86:e1:2f:97:7b:70:b9:75:ad:c0:46:84:e2:
69:ef:38:3f:bb:cc:ad:0b:ec:62:58:99:68:10:26:24:d0:85:
91:c4:cc:fd:0a:a4:6e:f5:31:3f:98:25:29:71:92:6f:c3:dc:
99:93:4d:ec:26:49:c1:3a:38:20:08:70:a8:29:0f:c2:c3:0b:
f1:51:b5:c8:3f:cd:65:8a:14:2f:b6:0f:fb:9c:f1:61:ac:ca:
9a:c9:18:30:d2:c1:3d:78:e4:f9:16:cf:01:16:40:57:90:8b:
a5:61:81:89:76:7e:4e:df:af:98:d2:0b:59:55:e8:17:ac:81:
3d:05:71:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 07:47:40 2024 by rpki-client on console-fra.rpki-client.org