Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/D4w1TcT9Z7p50KX9ew8Szt5w_og.roa
File: D4w1TcT9Z7p50KX9ew8Szt5w_og.roa (raw, json)
Hash identifier: bqZt2oOIOjP2EJUZqKmjlRnGpg7C72mnW+yVmo9WBN8=
Subject key identifier: 0F:8C:35:4D:C4:FD:67:BA:79:D0:A5:FD:7B:0F:12:CE:DE:70:FE:88
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018CF39162B477F8351C7C1E2B2A38766878
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/D4w1TcT9Z7p50KX9ew8Szt5w_og.roa
Signing time: Wed 10 Jan 2024 13:30:40 +0000
ROA not before: Wed 10 Jan 2024 13:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34602
IP address blocks: 185.185.140.0/22 maxlen: 22
77.50.0.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.2.0/23 maxlen: 23
77.50.0.0/16 maxlen: 16
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.243.96.0/20 maxlen: 20
31.130.144.0/20 maxlen: 20
94.141.160.0/19 maxlen: 19
81.17.144.0/20 maxlen: 20
91.204.128.0/22 maxlen: 22
77.50.128.0/17 maxlen: 17
31.130.128.0/21 maxlen: 21
77.50.32.0/19 maxlen: 19
77.233.192.0/19 maxlen: 19
77.50.64.0/18 maxlen: 18
2a00:e79::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e78::/34 maxlen: 34
2a00:e78::/33 maxlen: 33
2a00:e78:6000::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, certificate revoked on Fri 16 Feb 2024 06:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:91:62:b4:77:f8:35:1c:7c:1e:2b:2a:38:76:68:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Jan 10 13:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f8c354dc4fd67ba79d0a5fd7b0f12cede70fe88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:a6:b2:04:a5:cf:22:fd:33:f1:35:16:57:
71:d0:f0:a3:af:18:c5:ae:1a:ab:2a:f2:3d:50:90:
18:23:30:67:d8:ed:f2:ae:5d:5a:c5:38:f6:cb:c3:
46:6d:a2:cd:c0:a7:15:b6:f5:0a:b3:41:a2:3a:e8:
ed:b9:22:34:37:a3:ba:44:75:5b:e3:2a:59:c3:14:
42:0f:ab:77:0e:34:32:49:8f:4c:eb:bb:57:7e:5c:
3a:fa:aa:42:d7:b0:f9:ee:f5:6b:e4:65:11:df:40:
d0:73:4f:d9:2a:84:58:07:ea:36:b2:c0:59:8f:6c:
bf:0e:16:73:28:31:c6:05:8d:88:e2:ab:f2:d6:d7:
8d:ce:d6:3f:8a:b4:b1:1b:f7:99:c0:1d:5f:ef:a9:
ba:05:94:a1:02:b4:48:5e:8e:78:c7:d6:08:d4:92:
82:a6:61:d9:b7:40:55:bb:2d:71:4c:39:24:15:56:
86:e1:75:29:16:1c:cf:4d:dd:be:9a:ba:3c:91:96:
0b:e1:c6:0f:2c:42:02:c1:f6:2b:5a:e8:d3:61:e2:
a0:25:7a:23:7a:2e:27:c4:b2:43:52:74:f9:2d:45:
73:66:62:8e:71:61:20:14:83:5f:a9:0d:20:de:b3:
89:c7:fc:5a:2c:2d:1c:94:f1:e0:ab:2c:5c:2e:98:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8C:35:4D:C4:FD:67:BA:79:D0:A5:FD:7B:0F:12:CE:DE:70:FE:88
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/D4w1TcT9Z7p50KX9ew8Szt5w_og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/21
31.130.144.0/20
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/22
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2b:0b:d2:3d:95:b6:14:9a:d6:d9:69:00:23:ef:e0:28:de:00:
4f:0d:a4:dd:18:57:29:69:1c:72:d9:89:d9:6d:35:e2:02:1e:
39:cc:48:d1:be:cb:e1:e0:04:4a:11:ae:a3:9f:4c:b1:92:c2:
7a:30:97:b0:f8:3b:1e:ea:3b:9b:3d:30:8d:f7:2d:0c:5f:7b:
ea:86:01:67:95:42:9c:c5:67:8a:bd:a0:3c:dd:7d:8c:11:96:
74:d2:c9:6f:7a:ad:66:86:af:b2:0a:52:8d:fc:80:02:0f:a6:
3a:66:d5:e1:bb:03:9d:ac:f5:3c:8b:97:2b:67:9d:10:22:64:
54:52:c2:6c:a8:35:4e:5b:fa:eb:74:78:e9:fd:b7:d5:39:7a:
9f:43:dd:e0:84:d5:d3:6f:98:a1:d3:2d:7b:43:69:fd:65:c1:
a3:6a:7b:25:26:a8:e6:58:ef:49:e7:23:d1:b7:7d:52:03:dd:
65:a1:4b:b8:21:59:cd:b2:a6:e6:66:54:96:d0:8d:58:94:1b:
b8:02:38:43:6b:51:87:61:cf:b5:31:b3:3f:80:83:35:7e:45:
98:a9:3b:a8:f1:82:d1:8b:13:a0:d3:76:5c:96:d5:a9:d1:dd:
50:e5:a7:89:ea:96:e7:a4:e0:d6:7d:b9:8b:e3:80:41:d5:ea:
f5:de:f2:36
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISAYzzkWK0d/g1HHweKyo4dmh4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNzFjOTYwMDVlMTNhODRhM2YzMWVmMWQ5OTE3NzdmNGI2
ZTMxYTcwHhcNMjQwMTEwMTMzMDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjhjMzU0ZGM0ZmQ2N2JhNzlkMGE1ZmQ3YjBmMTJjZWRlNzBmZTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mqmsgSlzyL9M/E1Fldx0PCjrxjF
rhqrKvI9UJAYIzBn2O3yrl1axTj2y8NGbaLNwKcVtvUKs0GiOujtuSI0N6O6RHVb
4ypZwxRCD6t3DjQySY9M67tXflw6+qpC17D57vVr5GUR30DQc0/ZKoRYB+o2ssBZ
j2y/DhZzKDHGBY2I4qvy1teNztY/irSxG/eZwB1f76m6BZShArRIXo54x9YI1JKC
pmHZt0BVuy1xTDkkFVaG4XUpFhzPTd2+mro8kZYL4cYPLEICwfYrWujTYeKgJXoj
ei4nxLJDUnT5LUVzZmKOcWEgFINfqQ0g3rOJx/xaLC0clPHgqyxcLpiBpwIDAQAB
o4ICWDCCAlQwHQYDVR0OBBYEFA+MNU3E/We6edCl/XsPEs7ecP6IMB8GA1UdIwQY
MBaAFCxxyWAF4TqEo/Me8dmRd39LbjGnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUt
N2EyOGFmMjljZGMyLzEvRDR3MVRjVDlaN3A1MEtYOWV3OFN6dDV3X29nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUtN2EyOGFmMjljZGMy
LzEvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTA7BAIAATA1AwQDH4KAAwQE
H4KQAwMATTIDBAVN6cADBARN82ADBARREZADBAJbzIADBAVejaADBAK5uYwwHgQC
AAIwGAMGByoADngAMA4DBQAqAA55AwUCKgAOeDANBgkqhkiG9w0BAQsFAAOCAQEA
KwvSPZW2FJrW2WkAI+/gKN4ATw2k3RhXKWkcctmJ2W014gIeOcxI0b7L4eAEShGu
o59MsZLCejCXsPg7Huo7mz0wjfctDF976oYBZ5VCnMVnir2gPN19jBGWdNLJb3qt
ZoavsgpSjfyAAg+mOmbV4bsDnaz1PIuXK2edECJkVFLCbKg1Tlv663R46f231Tl6
n0Pd4ITV02+YodMte0Np/WXBo2p7JSao5ljvSecj0bd9UgPdZaFLuCFZzbKm5mZU
ltCNWJQbuAI4Q2tRh2HPtTGzP4CDNX5FmKk7qPGC0YsToNN2XJbVqdHdUOWnieqW
56Tg1n25i+OAQdXq9d7yNg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:02 2024 by rpki-client on console-fra.rpki-client.org