Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/dLkv6a6snD1NOJXbYknR8P9aD6M.roa
File: dLkv6a6snD1NOJXbYknR8P9aD6M.roa (raw, json)
Hash identifier: 8eH9Le5lfSDEXM0/1Fu8BrB2E7GMctXLONNiFPCewE4=
Subject key identifier: 74:B9:2F:E9:AE:AC:9C:3D:4D:38:95:DB:62:49:D1:F0:FF:5A:0F:A3
Certificate issuer: /CN=2c40fcd53987b209f8af39ca1211f27060a8902e
Certificate serial: 01880F893166B469F334A99CA912B46D2785
Authority key identifier: 2C:40:FC:D5:39:87:B2:09:F8:AF:39:CA:12:11:F2:70:60:A8:90:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LED81TmHsgn4rznKEhHycGCokC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/dLkv6a6snD1NOJXbYknR8P9aD6M.roa
Signing time: Fri 12 May 2023 10:37:09 +0000
ROA not before: Fri 12 May 2023 10:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208800
IP address blocks: 188.116.28.0/22 maxlen: 22
77.242.240.0/24 maxlen: 24
77.242.240.0/23 maxlen: 23
77.242.240.0/22 maxlen: 22
77.242.240.0/21 maxlen: 21
77.242.242.0/24 maxlen: 24
77.242.242.0/23 maxlen: 23
77.242.241.0/24 maxlen: 24
77.242.245.0/24 maxlen: 24
77.242.244.0/22 maxlen: 22
77.242.244.0/23 maxlen: 23
77.242.244.0/24 maxlen: 24
77.242.243.0/24 maxlen: 24
77.242.246.0/24 maxlen: 24
77.242.246.0/23 maxlen: 23
77.242.249.0/24 maxlen: 24
77.242.248.0/24 maxlen: 24
77.242.247.0/24 maxlen: 24
77.242.251.0/24 maxlen: 24
77.242.250.0/24 maxlen: 24
77.242.255.0/24 maxlen: 24
91.201.4.0/24 maxlen: 24
91.201.4.0/22 maxlen: 22
91.201.7.0/24 maxlen: 24
91.201.6.0/24 maxlen: 24
91.201.5.0/24 maxlen: 24
2a0e:6e80::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:89:31:66:b4:69:f3:34:a9:9c:a9:12:b4:6d:27:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c40fcd53987b209f8af39ca1211f27060a8902e
Validity
Not Before: May 12 10:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74b92fe9aeac9c3d4d3895db6249d1f0ff5a0fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cf:5c:01:a1:c4:d1:64:9b:88:5a:9a:cf:30:
56:03:09:43:67:94:5a:d3:4b:9f:02:7b:16:81:d6:
ee:33:69:b3:d5:f1:e4:b5:ce:06:c7:c8:52:eb:82:
6b:a9:b3:ff:56:cf:ba:0c:8b:5c:80:22:2b:fa:5b:
1d:ce:ab:25:dd:a0:a4:d1:c5:b9:8a:b5:51:c0:91:
85:20:eb:37:d1:e9:8d:a5:cd:a3:90:90:b7:9a:db:
9e:c0:1f:9e:56:ad:5d:1f:e0:f5:69:b8:06:32:6a:
2b:77:c5:ca:ba:2a:e5:27:aa:e0:1d:5c:c3:2b:67:
71:cb:71:02:7f:08:e8:7c:14:57:be:58:3f:1e:77:
d1:69:7e:7c:d8:49:25:ff:e8:e4:1a:20:ac:91:f4:
3c:2d:72:d9:5b:96:99:65:9f:d0:29:b0:28:da:1d:
94:5a:7c:04:57:56:18:29:7b:e1:ba:08:83:08:11:
81:d5:d0:28:f4:13:f7:1c:1d:a1:d5:9c:37:28:0c:
8d:11:3f:55:31:0d:0a:0a:ef:8a:3c:2c:09:e0:56:
2c:8f:37:1e:a1:ed:45:e9:ec:03:ed:2b:07:6b:62:
a2:7c:67:d1:df:ad:be:35:6c:3b:d2:e1:05:ed:ba:
d0:78:01:9b:0a:89:a4:6e:0c:09:7e:24:ad:af:7c:
ec:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B9:2F:E9:AE:AC:9C:3D:4D:38:95:DB:62:49:D1:F0:FF:5A:0F:A3
X509v3 Authority Key Identifier:
keyid:2C:40:FC:D5:39:87:B2:09:F8:AF:39:CA:12:11:F2:70:60:A8:90:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LED81TmHsgn4rznKEhHycGCokC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/dLkv6a6snD1NOJXbYknR8P9aD6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/LED81TmHsgn4rznKEhHycGCokC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.240.0-77.242.251.255
77.242.255.0/24
91.201.4.0/22
188.116.28.0/22
IPv6:
2a0e:6e80::/44
Signature Algorithm: sha256WithRSAEncryption
5a:a6:e5:b5:0e:29:6d:df:6a:d5:e2:07:77:cf:54:b0:72:c9:
24:58:3e:b1:51:4a:e9:89:7a:7e:ce:aa:77:bf:bb:3b:18:6b:
10:08:7f:e5:22:12:52:58:ab:68:04:5b:42:2b:52:98:4e:a3:
7f:76:17:23:d4:56:ed:ab:48:48:04:95:de:56:92:ec:08:5c:
fa:39:ca:7d:84:4e:a7:64:25:f6:04:c0:3a:39:38:77:2d:11:
9a:5f:24:d6:a0:11:e2:5e:94:9c:3f:9a:84:fe:94:c4:43:d3:
00:6f:9f:28:e4:f1:a0:c4:f8:5b:6e:89:b0:df:e6:74:a2:a5:
44:d1:93:f3:e8:c2:ba:b1:95:f2:25:69:d0:d3:45:4e:86:0b:
d0:ce:c2:19:62:d5:34:a0:ff:37:91:39:9c:56:97:1c:d4:90:
fc:cd:4c:45:68:5b:44:26:c3:8a:6b:01:8f:63:35:6f:d1:fb:
14:11:60:12:15:a9:74:a3:9b:36:6c:15:f6:e6:b2:11:9b:c3:
a8:cd:ff:7f:24:16:d1:4d:e1:c5:3a:54:92:7d:55:8f:fe:0a:
9a:cf:81:3a:b9:5c:3a:3f:37:df:4a:b6:6a:4e:06:57:37:eb:
38:ec:ab:c6:9e:2b:6e:06:13:16:14:c7:74:46:c8:aa:b4:0c:
66:57:8d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:41 2023 by rpki-client on console-fra.rpki-client.org