Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/q3Vu2t8-H63rKblZxBq4pn3qEyQ.roa
File: q3Vu2t8-H63rKblZxBq4pn3qEyQ.roa (raw, json)
Hash identifier: 3cJA5I5LNc/jvS4p4h4gImflEspe5d4cMrX2gmFxjX4=
Subject key identifier: AB:75:6E:DA:DF:3E:1F:AD:EB:29:B9:59:C4:1A:B8:A6:7D:EA:13:24
Certificate issuer: /CN=586329f307b98285b71d22c7197ec19b701ded67
Certificate serial: 0189FD0802E4D3625B5A6C97BFA8D5A12B35
Authority key identifier: 58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/q3Vu2t8-H63rKblZxBq4pn3qEyQ.roa
Signing time: Wed 16 Aug 2023 06:28:27 +0000
ROA not before: Wed 16 Aug 2023 06:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42586
IP address blocks: 77.36.128.0/17 maxlen: 21
77.36.128.0/19 maxlen: 19
77.36.128.0/20 maxlen: 20
77.36.128.0/18 maxlen: 18
77.36.144.0/20 maxlen: 20
77.36.224.0/20 maxlen: 20
77.36.224.0/19 maxlen: 19
77.36.240.0/20 maxlen: 20
77.36.160.0/20 maxlen: 20
77.36.160.0/19 maxlen: 19
77.36.165.0/24 maxlen: 24
185.194.244.0/22 maxlen: 22
77.36.166.0/24 maxlen: 24
77.36.163.0/24 maxlen: 24
77.36.164.0/24 maxlen: 24
77.36.176.0/20 maxlen: 20
77.36.192.0/20 maxlen: 20
77.36.192.0/19 maxlen: 19
77.36.192.0/18 maxlen: 18
77.36.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:08:02:e4:d3:62:5b:5a:6c:97:bf:a8:d5:a1:2b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586329f307b98285b71d22c7197ec19b701ded67
Validity
Not Before: Aug 16 06:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab756edadf3e1fadeb29b959c41ab8a67dea1324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6d:0f:d2:eb:ee:13:4b:b5:51:49:76:94:1f:
36:cd:67:de:96:18:8d:46:b3:7b:e3:31:d7:9a:b4:
d7:97:7f:a9:f9:50:33:36:e6:78:b7:7b:8a:2c:c1:
f3:e0:7e:ae:0e:1a:aa:b3:63:7d:b0:01:ac:81:1e:
15:2f:0e:3b:53:f3:be:d9:ee:ae:61:87:11:f8:51:
0d:f4:55:3d:3e:84:5a:86:62:1a:d2:21:10:3a:d7:
0b:50:45:56:db:dd:d3:3a:b0:43:bd:c7:28:7c:01:
e3:29:31:43:37:1c:8d:19:ee:13:e9:35:b5:a2:2a:
18:78:55:30:c8:43:17:26:3e:33:2e:5f:ee:9d:a7:
9c:4b:65:4f:44:2c:e0:a7:cd:93:b8:8e:f9:b5:96:
2a:59:40:3e:09:32:5a:8b:a7:2a:ee:62:10:12:2d:
39:1a:37:23:ba:c0:2c:9f:2b:21:5b:e4:75:a5:ba:
e8:1e:27:59:74:b3:e9:18:92:55:4a:06:a0:97:bc:
e1:df:22:58:cd:84:cf:a9:b3:01:01:f9:50:c5:ff:
1b:3a:da:98:04:bd:12:ea:41:01:19:06:1f:ba:5a:
fd:ed:2e:4c:a3:c7:77:88:5d:cc:e5:4c:c8:85:bc:
e2:a6:c8:bf:22:89:ca:a5:36:52:75:30:e7:95:fb:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:75:6E:DA:DF:3E:1F:AD:EB:29:B9:59:C4:1A:B8:A6:7D:EA:13:24
X509v3 Authority Key Identifier:
keyid:58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/q3Vu2t8-H63rKblZxBq4pn3qEyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.128.0/17
185.194.244.0/22
Signature Algorithm: sha256WithRSAEncryption
40:c4:64:4a:99:83:44:c9:82:30:76:f7:96:0d:b1:4c:31:56:
aa:53:ba:3c:80:72:f5:c7:42:98:ed:1b:f9:4b:40:97:93:79:
c2:d3:80:3d:ae:05:09:78:53:49:ed:5d:6b:f9:49:a0:19:88:
03:e7:12:f2:e1:51:46:fa:7c:c1:e8:4b:65:56:49:17:85:83:
b0:46:98:27:de:78:69:35:ba:2c:49:2d:b0:dc:86:31:12:33:
17:2f:f4:36:83:26:47:4b:1e:08:20:34:68:e8:ed:82:3a:f0:
f9:ec:9e:5a:67:11:a2:13:3a:ec:74:d3:5f:0d:02:b4:09:bb:
6d:5a:82:4c:0b:99:df:e1:40:e9:7f:8b:96:52:cc:3d:3e:79:
90:94:1b:74:a1:aa:29:67:49:e3:cb:2d:15:ee:d5:10:b1:45:
e7:db:44:c0:43:0b:56:4c:86:1d:ba:01:fa:01:50:ab:91:01:
e1:f9:ca:39:e3:c5:7b:dd:b8:37:ea:31:1c:d8:01:2d:e3:3a:
e3:01:af:43:3f:56:5c:81:1b:9f:3d:0f:7f:2e:47:0b:c8:73:
38:e3:45:d4:5a:d3:6e:bf:b0:7e:06:ab:cc:83:4e:95:73:f5:
3b:3b:4b:c7:67:15:27:27:04:61:35:5b:53:ed:08:4c:5c:0c:
19:68:bd:f0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYn9CALk02JbWmyXv6jVoSs1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NjMyOWYzMDdiOTgyODViNzFkMjJjNzE5N2VjMTliNzAx
ZGVkNjcwHhcNMjMwODE2MDYyODI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjc1NmVkYWRmM2UxZmFkZWIyOWI5NTljNDFhYjhhNjdkZWExMzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt20P0uvuE0u1UUl2lB82zWfelhiN
RrN74zHXmrTXl3+p+VAzNuZ4t3uKLMHz4H6uDhqqs2N9sAGsgR4VLw47U/O+2e6u
YYcR+FEN9FU9PoRahmIa0iEQOtcLUEVW293TOrBDvccofAHjKTFDNxyNGe4T6TW1
oioYeFUwyEMXJj4zLl/unaecS2VPRCzgp82TuI75tZYqWUA+CTJai6cq7mIQEi05
GjcjusAsnyshW+R1pbroHidZdLPpGJJVSgagl7zh3yJYzYTPqbMBAflQxf8bOtqY
BL0S6kEBGQYfulr97S5Mo8d3iF3M5UzIhbzipsi/IonKpTZSdTDnlftg2QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKt1btrfPh+t6ym5WcQauKZ96hMkMB8GA1UdIwQY
MBaAFFhjKfMHuYKFtx0ixxl+wZtwHe1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0dNcDh3ZTVnb1czSFNMSEdYN0JtM0FkN1djLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wZWUyYWItMDdkOS00YTgxLWFiZjAt
ZTBlNGJlNjY5NmY5LzEvcTNWdTJ0OC1INjNyS2JsWnhCcTRwbjNxRXlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wZWUyYWItMDdkOS00YTgxLWFiZjAtZTBlNGJlNjY5NmY5
LzEvV0dNcDh3ZTVnb1czSFNMSEdYN0JtM0FkN1djLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHTSSAAwQC
ucL0MA0GCSqGSIb3DQEBCwUAA4IBAQBAxGRKmYNEyYIwdveWDbFMMVaqU7o8gHL1
x0KY7Rv5S0CXk3nC04A9rgUJeFNJ7V1r+UmgGYgD5xLy4VFG+nzB6EtlVkkXhYOw
Rpgn3nhpNbosSS2w3IYxEjMXL/Q2gyZHSx4IIDRo6O2COvD57J5aZxGiEzrsdNNf
DQK0CbttWoJMC5nf4UDpf4uWUsw9PnmQlBt0oaopZ0njyy0V7tUQsUXn20TAQwtW
TIYdugH6AVCrkQHh+co548V73bg36jEc2AEt4zrjAa9DP1ZcgRufPQ9/LkcLyHM4
40XUWtNuv7B+BqvMg06Vc/U7O0vHZxUnJwRhNVtT7QhMXAwZaL3w
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org