Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/lLHqpvrbkiJq3RauF04ePv_0G9g.roa
File: lLHqpvrbkiJq3RauF04ePv_0G9g.roa (raw, json)
Hash identifier: HPVgxz+dYPe5dO+CwxiijwyMipzmWexq5bZiiwTfUpA=
Subject key identifier: 94:B1:EA:A6:FA:DB:92:22:6A:DD:16:AE:17:4E:1E:3E:FF:F4:1B:D8
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018B34A16AB776294B31E8EA744F40130E26
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/lLHqpvrbkiJq3RauF04ePv_0G9g.roa
Signing time: Sun 15 Oct 2023 18:37:55 +0000
ROA not before: Sun 15 Oct 2023 18:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48592
IP address blocks: 128.65.160.0/22 maxlen: 22
77.81.76.0/24 maxlen: 24
77.81.78.0/24 maxlen: 24
77.81.83.0/24 maxlen: 24
77.81.82.0/24 maxlen: 24
185.39.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:34:a1:6a:b7:76:29:4b:31:e8:ea:74:4f:40:13:0e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Oct 15 18:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94b1eaa6fadb92226add16ae174e1e3efff41bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:ca:50:26:d1:c0:33:6e:56:f9:0a:10:9e:
e7:a9:48:7f:7e:f5:12:f1:d3:89:76:59:46:b7:41:
d7:67:40:91:ba:29:8e:aa:12:b6:1d:85:2b:40:93:
e7:15:2a:29:7e:62:78:7a:00:ec:89:88:c8:d0:fe:
0c:d9:dd:9d:21:b5:e0:7b:c0:3c:12:d0:df:2b:e8:
6c:9e:b7:ca:a3:7a:7a:53:76:b0:7e:5b:88:a5:01:
33:dc:02:c1:6f:18:b3:51:a9:91:b6:62:6a:fd:3b:
db:e3:73:85:12:4f:07:95:f2:57:b9:55:7d:34:15:
b5:58:e7:e9:e9:2f:e2:01:69:99:d3:32:54:a5:ca:
78:8a:85:42:69:8b:da:33:31:b0:5e:91:a7:1a:00:
76:9a:88:00:3f:e5:71:d3:0f:3d:d5:d8:4c:5e:5e:
6b:e3:e6:ef:25:ae:fc:c4:8b:4a:b3:22:b8:fe:1c:
3f:c0:55:50:69:9d:3a:66:d2:cc:61:3a:86:d5:4b:
f6:ad:38:5f:d9:e2:12:e4:91:8f:b6:5f:86:61:c4:
04:48:bf:73:b7:41:d6:88:2a:32:36:0a:26:e6:55:
04:c4:ea:84:20:45:f4:0f:91:c2:64:a4:77:97:1b:
65:58:30:70:61:47:1b:39:4c:d6:01:af:02:3c:ed:
36:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B1:EA:A6:FA:DB:92:22:6A:DD:16:AE:17:4E:1E:3E:FF:F4:1B:D8
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/lLHqpvrbkiJq3RauF04ePv_0G9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.76.0/24
77.81.78.0/24
77.81.82.0/23
128.65.160.0/22
185.39.180.0/22
Signature Algorithm: sha256WithRSAEncryption
87:97:94:0a:14:4b:92:78:a1:02:29:ee:f7:0f:6b:bc:5c:55:
d7:b1:4f:0b:af:a4:e7:69:77:02:ba:91:ed:29:c2:d2:19:52:
bc:f6:18:26:40:04:d5:25:e9:20:6b:40:3a:5a:26:e4:e6:0d:
9c:5c:ce:47:8d:6a:31:a7:6a:b6:d3:f6:2c:27:bb:88:6f:9d:
26:82:0f:1a:6d:a2:e7:5a:a1:84:c6:3a:9f:6b:42:e8:2b:e4:
98:d4:ad:5f:44:f9:67:d5:64:f2:2e:3c:90:98:7b:44:e3:e5:
67:9f:86:15:0e:98:3b:8e:76:c3:13:9a:16:74:e3:bb:e7:ce:
fb:d7:8a:02:d5:3f:5d:54:10:03:03:e2:d4:ab:ae:da:a9:9d:
bc:14:a4:8f:b2:f7:8c:46:db:10:b2:b5:40:43:55:59:69:6c:
c8:1e:e4:f0:e6:48:4f:59:df:0a:11:28:5b:57:d9:f0:18:5e:
25:f1:1b:8f:e6:68:2b:18:12:05:7f:16:f7:96:86:e6:fa:1b:
3c:6b:ad:3d:1f:e8:28:1f:5a:a0:cb:d5:64:0a:cc:cd:b8:fa:
30:ac:16:9b:9a:dd:83:3b:6b:ab:9f:e0:11:d1:19:09:df:16:
46:e5:fa:f6:68:0f:9e:b7:3b:69:22:d8:ca:e4:10:d9:00:83:
0a:3a:3a:02
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYs0oWq3dilLMejqdE9AEw4mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjMxMDE1MTgzNzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGIxZWFhNmZhZGI5MjIyNmFkZDE2YWUxNzRlMWUzZWZmZjQxYmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoq/KUCbRwDNuVvkKEJ7nqUh/fvUS
8dOJdllGt0HXZ0CRuimOqhK2HYUrQJPnFSopfmJ4egDsiYjI0P4M2d2dIbXge8A8
EtDfK+hsnrfKo3p6U3awfluIpQEz3ALBbxizUamRtmJq/Tvb43OFEk8HlfJXuVV9
NBW1WOfp6S/iAWmZ0zJUpcp4ioVCaYvaMzGwXpGnGgB2mogAP+Vx0w891dhMXl5r
4+bvJa78xItKsyK4/hw/wFVQaZ06ZtLMYTqG1Uv2rThf2eIS5JGPtl+GYcQESL9z
t0HWiCoyNgom5lUExOqEIEX0D5HCZKR3lxtlWDBwYUcbOUzWAa8CPO02TQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFJSx6qb625Iiat0WrhdOHj7/9BvYMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvbExIcXB2cmJraUpxM1JhdUYwNGVQdl8wRzlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATVFMAwQA
TVFOAwQBTVFSAwQCgEGgAwQCuSe0MA0GCSqGSIb3DQEBCwUAA4IBAQCHl5QKFEuS
eKECKe73D2u8XFXXsU8Lr6TnaXcCupHtKcLSGVK89hgmQATVJekga0A6Wibk5g2c
XM5HjWoxp2q20/YsJ7uIb50mgg8abaLnWqGExjqfa0LoK+SY1K1fRPln1WTyLjyQ
mHtE4+Vnn4YVDpg7jnbDE5oWdOO7587714oC1T9dVBADA+LUq67aqZ28FKSPsveM
RtsQsrVAQ1VZaWzIHuTw5khPWd8KEShbV9nwGF4l8RuP5mgrGBIFfxb3lobm+hs8
a609H+goH1qgy9VkCszNuPowrBabmt2DO2urn+AR0RkJ3xZG5fr2aA+etztpItjK
5BDZAIMKOjoC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org