Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/d7OHv5Dku_W9_iP9paaRzIPabAs.roa
File: d7OHv5Dku_W9_iP9paaRzIPabAs.roa (raw, json)
Hash identifier: Jp/J6wyTAprCZiJ20S/GdxyZlVtndCEmKFh1bt7+0sU=
Subject key identifier: 77:B3:87:BF:90:E4:BB:F5:BD:FE:23:FD:A5:A6:91:CC:83:DA:6C:0B
Certificate issuer: /CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Certificate serial: 01856DE654C3B8C120F9FC5B1DC0ECD10D25
Authority key identifier: C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/d7OHv5Dku_W9_iP9paaRzIPabAs.roa
Signing time: Sun 01 Jan 2023 15:14:49 +0000
ROA not before: Sun 01 Jan 2023 15:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42943
IP address blocks: 77.240.83.0/24 maxlen: 24
77.240.82.0/24 maxlen: 24
77.240.81.0/24 maxlen: 24
77.240.80.0/22 maxlen: 22
77.240.80.0/24 maxlen: 24
77.240.91.0/24 maxlen: 24
77.240.86.0/23 maxlen: 23
77.240.86.0/24 maxlen: 24
77.240.90.0/24 maxlen: 24
77.240.89.0/24 maxlen: 24
77.240.88.0/24 maxlen: 24
77.240.88.0/21 maxlen: 21
77.240.87.0/24 maxlen: 24
77.240.93.0/24 maxlen: 24
77.240.92.0/24 maxlen: 24
77.240.95.0/24 maxlen: 24
77.240.94.0/24 maxlen: 24
85.184.232.0/22 maxlen: 22
85.184.232.0/24 maxlen: 24
85.184.233.0/24 maxlen: 24
85.184.236.0/23 maxlen: 23
85.184.235.0/24 maxlen: 24
85.184.234.0/24 maxlen: 24
185.109.179.0/24 maxlen: 24
185.109.178.0/24 maxlen: 24
185.109.177.0/24 maxlen: 24
185.109.176.0/22 maxlen: 22
185.109.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:54:c3:b8:c1:20:f9:fc:5b:1d:c0:ec:d1:0d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Validity
Not Before: Jan 1 15:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77b387bf90e4bbf5bdfe23fda5a691cc83da6c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:0d:fb:41:58:54:32:14:bb:55:46:e0:47:
f3:97:e2:06:e8:44:c6:9d:4f:48:19:5c:eb:c2:8e:
e6:42:d7:3d:88:d9:a7:68:7e:d8:b6:a7:5d:1b:e0:
c8:c4:58:bb:fa:6a:9c:6b:21:4f:3b:01:c6:91:24:
9d:80:69:dd:e5:3a:af:69:a7:7c:3e:d8:4c:f1:72:
ca:2f:9e:4f:00:dd:e5:dd:46:31:27:30:16:cf:5f:
54:72:30:ec:01:c9:8d:bf:d5:b8:ff:2b:66:a8:7d:
95:e3:6e:ed:61:2a:b9:d7:f1:5c:bb:ce:fc:ee:a8:
ff:b8:61:54:6f:58:a0:10:14:33:b4:dc:cf:0a:22:
98:6d:bf:ab:3f:06:36:78:24:76:98:c5:5b:ef:1a:
39:92:19:ba:68:8c:2e:f8:e8:f0:2b:fe:31:aa:1e:
11:c1:47:dd:7e:92:e9:3e:b5:c8:b7:78:e5:c5:e3:
c5:27:ca:1d:f3:b7:e7:5f:e8:40:b1:e6:a1:40:49:
e4:d9:31:d3:4f:ef:68:d6:5b:29:de:80:ba:f5:a9:
3c:42:82:ec:7c:ee:97:e8:70:39:49:c2:2d:da:11:
ac:93:85:3e:b0:06:b1:ac:59:75:35:41:50:33:3a:
4f:24:04:da:04:85:0d:09:02:7f:9b:9d:31:3d:f1:
24:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B3:87:BF:90:E4:BB:F5:BD:FE:23:FD:A5:A6:91:CC:83:DA:6C:0B
X509v3 Authority Key Identifier:
keyid:C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/d7OHv5Dku_W9_iP9paaRzIPabAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/ydy2lccNtLljcGAHUJGKSzqKIak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.80.0/22
77.240.86.0-77.240.95.255
85.184.232.0-85.184.237.255
185.109.176.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:72:e7:7e:0c:c6:f1:a6:5c:28:ea:5c:51:45:05:0a:45:2e:
61:c5:47:3f:5c:32:80:6c:b5:a0:d3:99:37:9f:82:50:5f:8b:
12:93:95:13:82:98:12:d4:8c:8f:50:c8:ca:96:f8:76:90:17:
8f:dd:aa:e9:e3:29:4b:a1:45:d4:a7:e2:93:4c:cf:62:f6:73:
7e:e3:67:57:9e:a4:9f:d9:0b:44:18:c8:dd:16:dc:1f:f0:9e:
59:7e:59:15:29:5e:ab:42:5b:d6:17:90:b0:ef:2c:23:dd:2d:
2a:9e:60:22:11:e6:0c:e4:1f:0f:cd:ba:d9:b1:d8:f6:e8:02:
ef:5b:21:7e:ae:c7:f2:d9:8b:ba:36:5d:86:57:76:32:66:9c:
f7:5a:a0:5a:a4:8f:43:54:24:b4:03:52:a9:1e:aa:c0:fa:24:
bf:69:2f:73:cd:6f:43:47:54:7c:ec:4c:fd:a5:5c:ff:2f:fa:
a2:2c:2c:12:f3:a5:04:da:86:12:e4:d5:b8:c6:54:ca:41:ea:
7c:b6:c7:4f:9e:55:30:83:cd:98:fd:80:2b:3a:4c:55:b2:fe:
be:bc:9b:5e:ea:80:57:b1:a0:38:6d:71:7d:a4:b5:75:bd:98:
fe:00:f5:c1:c2:4d:06:aa:2f:c3:4a:d6:56:b8:b2:52:9c:7b:
f8:fa:7e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:51 2023 by rpki-client on console-ams.rpki-client.org