Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/OWtBlvi2tQG4mmS-ZSJXmWvaf0M.roa
File: OWtBlvi2tQG4mmS-ZSJXmWvaf0M.roa (raw, json)
Hash identifier: UgzMqt8q+a+2odAsUibV2HeyFArjUl29LX16kfmTiVg=
Subject key identifier: 39:6B:41:96:F8:B6:B5:01:B8:9A:64:BE:65:22:57:99:6B:DA:7F:43
Certificate issuer: /CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Certificate serial: 018CC8DF4EC426C0E4A87CDA7F633CEA6F04
Authority key identifier: 25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/OWtBlvi2tQG4mmS-ZSJXmWvaf0M.roa
Signing time: Tue 02 Jan 2024 06:32:07 +0000
ROA not before: Tue 02 Jan 2024 06:32:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24651
IP address blocks: 185.57.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:4e:c4:26:c0:e4:a8:7c:da:7f:63:3c:ea:6f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Validity
Not Before: Jan 2 06:32:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=396b4196f8b6b501b89a64be652257996bda7f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ef:f4:77:70:92:e0:43:7d:f1:d0:c2:e0:ba:
7c:d3:bb:d1:2d:c4:0c:51:d7:17:fc:e4:34:14:fa:
91:e6:e0:a9:4e:53:00:f9:5d:bc:13:9d:07:a3:2d:
2f:a0:d9:06:9b:57:92:4c:ed:9f:f3:9b:40:d5:39:
74:d8:0f:c0:50:e1:e4:2b:d7:82:cc:25:0d:d0:66:
21:96:13:be:d7:ac:ae:7c:44:5a:0e:16:d6:8f:44:
c7:c3:a8:ab:ec:3b:57:90:1e:af:50:ba:86:d1:1f:
c9:09:f9:40:5d:9a:d4:09:6c:28:2a:bd:dc:87:2d:
a2:a3:2f:0d:6c:6b:bd:5f:e3:e5:e6:1e:fc:1e:cb:
4f:46:2b:69:87:34:bf:6b:a5:71:00:39:74:1c:26:
4a:e5:60:5b:7d:b7:07:21:de:9a:2f:f2:0c:38:1c:
74:76:15:ad:6b:47:e6:00:e8:f1:e6:39:dd:4b:11:
61:d2:9f:6c:cf:a4:42:e2:7e:40:8d:41:37:f3:77:
75:bd:aa:28:dd:dd:47:f9:95:49:f2:97:11:d7:ab:
dc:6e:50:e3:ff:2f:04:5f:88:b0:35:3b:e1:8f:bd:
17:f3:60:0f:8f:a0:a2:d0:f6:80:5e:9c:0c:9d:67:
fd:27:e6:26:7d:5f:52:fe:16:05:f8:4a:e6:a2:59:
17:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6B:41:96:F8:B6:B5:01:B8:9A:64:BE:65:22:57:99:6B:DA:7F:43
X509v3 Authority Key Identifier:
keyid:25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/OWtBlvi2tQG4mmS-ZSJXmWvaf0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/JYYj7MjcuRPRAiipRgqG5mDLj7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.77.0/24
Signature Algorithm: sha256WithRSAEncryption
44:fe:b6:c5:6c:21:c8:df:43:15:d4:a6:e4:6d:06:83:2d:9e:
07:3b:b5:ff:a9:40:10:c2:bb:37:f0:8e:4b:93:ce:e5:b2:33:
3f:e8:6e:cd:32:19:3b:2c:46:ea:e7:e1:ca:b1:ea:62:dd:6a:
32:b4:05:a8:ea:1a:a2:eb:1a:d8:6e:1f:94:aa:86:30:7a:41:
7b:32:30:10:12:f9:98:15:5a:4b:ac:ba:77:f3:fd:0a:6d:7b:
50:97:d3:7d:31:f8:bd:5f:40:57:6f:f8:c6:eb:51:14:26:2e:
7b:a0:0b:14:97:b8:32:8d:7c:1c:f4:ca:45:6d:0f:e6:67:1e:
10:fb:f0:8f:26:8e:fe:4e:b3:bb:df:9f:93:9f:ae:17:80:f9:
e4:46:c9:7e:3e:82:b2:4c:23:aa:06:ba:77:05:cf:3d:6a:45:
cf:92:75:88:0d:53:ef:68:b9:22:ff:75:4d:20:d0:d5:30:9a:
1b:19:94:58:25:ff:2c:48:6d:0e:ff:4a:c6:7a:0e:4c:18:b0:
99:d2:e4:7c:b4:73:02:8c:86:11:54:2e:74:eb:e4:70:4e:2b:
48:98:20:05:6f:4f:55:f8:ff:4e:95:b4:0a:4a:92:14:03:93:
c3:02:94:0e:b9:65:0e:d4:34:e7:a0:1c:13:28:c8:ab:aa:ab:
9d:19:3a:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI307EJsDkqHzaf2M86m8EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ODYyM2VjYzhkY2I5MTNkMTAyMjhhOTQ2MGE4NmU2NjBj
YjhmYjIwHhcNMjQwMTAyMDYzMjA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTZiNDE5NmY4YjZiNTAxYjg5YTY0YmU2NTIyNTc5OTZiZGE3ZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+/0d3CS4EN98dDC4Lp807vRLcQM
UdcX/OQ0FPqR5uCpTlMA+V28E50Hoy0voNkGm1eSTO2f85tA1Tl02A/AUOHkK9eC
zCUN0GYhlhO+16yufERaDhbWj0THw6ir7DtXkB6vULqG0R/JCflAXZrUCWwoKr3c
hy2ioy8NbGu9X+Pl5h78HstPRitphzS/a6VxADl0HCZK5WBbfbcHId6aL/IMOBx0
dhWta0fmAOjx5jndSxFh0p9sz6RC4n5AjUE383d1vaoo3d1H+ZVJ8pcR16vcblDj
/y8EX4iwNTvhj70X82APj6Ci0PaAXpwMnWf9J+YmfV9S/hYF+ErmolkXwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDlrQZb4trUBuJpkvmUiV5lr2n9DMB8GA1UdIwQY
MBaAFCWGI+zI3LkT0QIoqUYKhuZgy4+yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSllZajdNamN1UlBSQWlpcFJncUc1bURMajdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC85NmFiOTUtYzJmZS00YjkzLTlhMmUt
NTY4OWVlMDZlMTRjLzEvT1d0Qmx2aTJ0UUc0bW1TLVpTSlhtV3ZhZjBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC85NmFiOTUtYzJmZS00YjkzLTlhMmUtNTY4OWVlMDZlMTRj
LzEvSllZajdNamN1UlBSQWlpcFJncUc1bURMajdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTlNMA0G
CSqGSIb3DQEBCwUAA4IBAQBE/rbFbCHI30MV1KbkbQaDLZ4HO7X/qUAQwrs38I5L
k87lsjM/6G7NMhk7LEbq5+HKsepi3WoytAWo6hqi6xrYbh+UqoYwekF7MjAQEvmY
FVpLrLp38/0KbXtQl9N9Mfi9X0BXb/jG61EUJi57oAsUl7gyjXwc9MpFbQ/mZx4Q
+/CPJo7+TrO735+Tn64XgPnkRsl+PoKyTCOqBrp3Bc89akXPknWIDVPvaLki/3VN
INDVMJobGZRYJf8sSG0O/0rGeg5MGLCZ0uR8tHMCjIYRVC506+RwTitImCAFb09V
+P9OlbQKSpIUA5PDApQOuWUO1DTnoBwTKMirqqudGTqW
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:03:53 2025 by rpki-client