Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/r1g2Xsdzu30zPFlJCXwy2iO_jT4.roa
File: r1g2Xsdzu30zPFlJCXwy2iO_jT4.roa (raw, json)
Hash identifier: wdA8I6DrFVDPzdpOfzRSwcg9nRPW/Sj5Vb9OhkcS/wA=
Subject key identifier: AF:58:36:5E:C7:73:BB:7D:33:3C:59:49:09:7C:32:DA:23:BF:8D:3E
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 019427B661248F3BA429531E478C17D83576
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/r1g2Xsdzu30zPFlJCXwy2iO_jT4.roa
Signing time: Thu 02 Jan 2025 15:50:51 +0000
ROA not before: Thu 02 Jan 2025 15:50:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16202
IP address blocks: 77.64.128.0/17 maxlen: 17
77.64.128.0/18 maxlen: 18
77.64.128.0/19 maxlen: 19
77.64.146.0/23 maxlen: 23
77.64.160.0/19 maxlen: 19
77.64.192.0/19 maxlen: 19
77.64.192.0/20 maxlen: 20
77.64.208.0/20 maxlen: 20
77.64.224.0/20 maxlen: 20
77.64.240.0/20 maxlen: 20
77.64.252.0/23 maxlen: 23
77.64.254.0/23 maxlen: 23
83.221.64.0/19 maxlen: 23
83.221.64.0/20 maxlen: 23
83.221.64.0/21 maxlen: 21
83.221.72.0/21 maxlen: 21
83.221.80.0/20 maxlen: 20
83.221.80.0/21 maxlen: 21
83.221.88.0/21 maxlen: 21
89.186.128.0/19 maxlen: 19
89.186.128.0/20 maxlen: 20
89.186.128.0/21 maxlen: 21
89.186.136.0/21 maxlen: 21
89.186.144.0/20 maxlen: 20
89.186.144.0/21 maxlen: 21
89.186.152.0/21 maxlen: 21
92.206.0.0/16 maxlen: 16
92.206.0.0/17 maxlen: 17
92.206.0.0/18 maxlen: 18
92.206.64.0/18 maxlen: 23
92.206.128.0/18 maxlen: 23
92.206.160.0/19 maxlen: 19
92.206.190.0/23 maxlen: 23
92.206.192.0/18 maxlen: 23
92.206.224.0/19 maxlen: 19
95.168.128.0/19 maxlen: 19
95.168.128.0/20 maxlen: 20
95.168.144.0/20 maxlen: 20
185.44.148.0/22 maxlen: 22
185.44.150.0/23 maxlen: 23
217.68.160.0/19 maxlen: 19
217.68.160.0/20 maxlen: 20
217.68.176.0/20 maxlen: 20
2a00:c1a0::/32 maxlen: 32
2a00:c1a0::/34 maxlen: 34
2a00:c1a0:4000::/34 maxlen: 34
2a00:c1a0:8000::/34 maxlen: 34
2a00:c1a0:c000::/34 maxlen: 34
2a02:2454:8000::/33 maxlen: 36
2a02:2457:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 24 Feb 2025 10:38:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:61:24:8f:3b:a4:29:53:1e:47:8c:17:d8:35:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Jan 2 15:50:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af58365ec773bb7d333c5949097c32da23bf8d3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:04:9b:a4:f4:64:33:90:04:a6:4c:d8:ed:
71:17:9a:ac:3a:b5:b3:10:d8:93:28:82:b9:d4:da:
23:12:d4:38:43:a9:58:f2:d0:d1:9e:14:91:d9:a2:
66:e9:9d:67:1d:8f:21:a6:35:89:02:b3:b4:37:1c:
1a:a2:f4:51:dc:66:1c:cd:79:fe:15:93:fd:7d:fb:
64:ac:68:0b:d0:7f:d8:bc:82:90:f6:d3:d4:43:50:
12:b2:29:92:93:8b:f7:d8:f9:a7:61:e7:4d:33:4f:
3b:09:ec:1a:31:fc:71:de:3e:62:09:f6:c2:8d:d7:
77:51:55:9e:95:bf:31:bf:c5:b1:9a:c1:bd:dd:57:
05:68:8a:b9:be:42:c6:37:9b:89:3c:8b:0e:6c:cc:
8b:21:16:5c:0b:5f:77:e7:2d:1d:bf:9c:ad:63:c3:
ba:0f:19:a6:81:05:26:52:d9:1f:75:6a:d9:0d:7c:
e0:dc:d2:67:02:33:ee:cd:3a:90:49:8e:89:44:30:
a7:b8:38:d9:0c:03:7b:c0:e1:db:3e:ec:52:74:b9:
87:f5:21:1f:f1:7e:30:a6:72:6a:f6:48:c8:58:a1:
3d:cb:7d:c1:0b:8a:de:02:8b:2a:50:7b:78:24:b9:
ba:c9:e4:3f:a1:c7:cc:44:f7:0e:85:f6:45:c8:6d:
c3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:58:36:5E:C7:73:BB:7D:33:3C:59:49:09:7C:32:DA:23:BF:8D:3E
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/r1g2Xsdzu30zPFlJCXwy2iO_jT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.128.0/17
83.221.64.0/19
89.186.128.0/19
92.206.0.0/16
95.168.128.0/19
185.44.148.0/22
217.68.160.0/19
IPv6:
2a00:c1a0::/32
2a02:2454:8000::/33
2a02:2457:100::/40
Signature Algorithm: sha256WithRSAEncryption
8d:c2:ce:0f:4d:e3:29:9f:ac:18:fc:71:8d:c5:26:b2:98:8f:
b2:64:c7:04:87:31:40:6a:ba:6f:3f:9e:d9:86:33:a1:42:5b:
a1:21:cb:66:6a:c3:72:3c:d6:9d:e8:1e:47:cc:63:18:56:a0:
58:62:53:23:47:1e:18:20:9a:ea:63:31:44:47:2a:05:bd:6e:
08:cf:9b:39:4a:e4:3b:f6:30:e1:d6:25:21:72:94:a4:ed:10:
05:28:57:c9:a9:ed:e4:fc:c4:db:6b:3b:ef:c3:07:7e:f6:07:
ce:a5:39:3b:96:c3:95:64:03:68:91:1d:df:2f:02:82:b4:5a:
29:a3:8f:21:3d:57:3d:fc:8d:59:a2:35:75:ad:b3:e8:88:62:
b6:d7:23:fb:96:d8:82:5e:ea:a5:e8:e2:25:8f:d6:b8:8e:94:
e0:bb:73:42:f2:4f:47:ba:f6:6d:d5:db:7d:66:e9:87:60:63:
11:94:81:e8:db:c1:28:d2:c5:89:93:86:32:13:e0:03:b1:6a:
ef:e7:78:67:81:a4:cf:25:4c:70:2d:f5:df:73:75:6f:e0:35:
2a:d6:b7:47:1b:72:d5:b8:9b:69:c5:96:37:fb:50:b6:20:38:
4c:81:5f:f1:a6:fb:03:29:4d:c5:3c:c6:7f:bd:69:22:b7:fa:
2b:31:91:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:03:34 2025 by rpki-client