Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/e3bbc9-78c3-43a2-b9b0-48acef672e4a/1/m5VbNtHITbZVuB46QLdOBqGNONg.roa
File: m5VbNtHITbZVuB46QLdOBqGNONg.roa (raw, json)
Hash identifier: U4AjMzIoG6d2PkLsOO+pQ3Scwf9MAUn3zHg18bKD2og=
Subject key identifier: 9B:95:5B:36:D1:C8:4D:B6:55:B8:1E:3A:40:B7:4E:06:A1:8D:38:D8
Certificate issuer: /CN=bd82e60d072e5185435a900e323f463806d433c9
Certificate serial: 01877103D0FB61C9B53E5EB71DCA3DD2244C
Authority key identifier: BD:82:E6:0D:07:2E:51:85:43:5A:90:0E:32:3F:46:38:06:D4:33:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYLmDQcuUYVDWpAOMj9GOAbUM8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/e3bbc9-78c3-43a2-b9b0-48acef672e4a/1/m5VbNtHITbZVuB46QLdOBqGNONg.roa
Signing time: Tue 11 Apr 2023 15:51:28 +0000
ROA not before: Tue 11 Apr 2023 15:51:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43356
IP address blocks: 77.92.2.0/24 maxlen: 24
77.92.3.0/24 maxlen: 24
77.92.0.0/20 maxlen: 20
77.92.1.0/24 maxlen: 24
77.92.4.0/24 maxlen: 24
77.92.6.0/24 maxlen: 24
77.92.7.0/24 maxlen: 24
193.201.128.0/24 maxlen: 24
77.92.5.0/24 maxlen: 24
193.201.131.0/24 maxlen: 24
193.201.129.0/24 maxlen: 24
193.201.130.0/24 maxlen: 24
77.92.8.0/22 maxlen: 22
77.92.16.0/22 maxlen: 22
77.92.15.0/24 maxlen: 24
77.92.13.0/24 maxlen: 24
77.92.14.0/24 maxlen: 24
77.92.12.0/24 maxlen: 24
77.92.20.0/24 maxlen: 24
77.92.21.0/24 maxlen: 24
77.92.23.0/24 maxlen: 24
77.92.24.0/24 maxlen: 24
77.92.22.0/24 maxlen: 24
77.92.25.0/24 maxlen: 24
77.92.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:71:03:d0:fb:61:c9:b5:3e:5e:b7:1d:ca:3d:d2:24:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd82e60d072e5185435a900e323f463806d433c9
Validity
Not Before: Apr 11 15:51:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b955b36d1c84db655b81e3a40b74e06a18d38d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:57:eb:37:80:59:13:ff:3b:33:ad:98:58:67:
7b:ef:1c:9b:74:10:da:ef:82:69:4d:62:7b:e7:07:
5a:59:1e:d1:4e:0d:cb:56:a6:4d:07:06:09:0e:55:
5a:81:7b:53:0c:8c:24:c4:b8:91:39:d7:8d:f1:46:
a8:4d:b9:b4:58:68:5d:92:4e:ea:12:1c:45:a2:0f:
35:7d:3b:88:48:03:fa:0f:59:2a:83:7f:dc:dc:65:
e4:6d:e7:76:1e:4a:58:f9:28:52:6d:5c:22:dd:f2:
96:7d:23:4c:b4:0c:05:24:b8:95:df:af:7c:a3:c7:
4a:32:47:b0:7c:aa:5b:3e:bf:20:71:db:07:25:86:
f7:d5:06:4c:4e:90:e5:f5:6f:7b:e8:15:bf:c8:53:
e3:0d:81:ca:66:4e:db:95:6e:d0:5d:2c:6c:ed:44:
47:17:d9:73:8c:69:8e:ef:db:cc:e7:33:bc:ff:02:
58:ea:5e:8e:c9:68:05:1a:8b:a4:27:fe:e4:81:40:
21:6c:46:ad:07:26:49:af:d1:0a:0a:51:61:a4:a2:
c4:f7:ef:57:f2:a8:7b:b3:f0:39:f7:d6:d5:c7:93:
30:92:2e:fc:dd:13:57:d6:d8:9b:f7:5c:7f:d5:2d:
33:d8:e1:76:43:3d:69:48:80:21:4e:6f:3f:27:54:
a8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:95:5B:36:D1:C8:4D:B6:55:B8:1E:3A:40:B7:4E:06:A1:8D:38:D8
X509v3 Authority Key Identifier:
keyid:BD:82:E6:0D:07:2E:51:85:43:5A:90:0E:32:3F:46:38:06:D4:33:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYLmDQcuUYVDWpAOMj9GOAbUM8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e3bbc9-78c3-43a2-b9b0-48acef672e4a/1/m5VbNtHITbZVuB46QLdOBqGNONg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e3bbc9-78c3-43a2-b9b0-48acef672e4a/1/vYLmDQcuUYVDWpAOMj9GOAbUM8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.0.0-77.92.26.255
193.201.128.0/22
Signature Algorithm: sha256WithRSAEncryption
94:4a:66:ef:42:d1:8f:2a:d9:1d:fa:fc:78:43:f8:6d:08:ab:
70:3a:26:b6:76:51:06:b9:5a:14:ac:81:2c:28:ba:1c:85:07:
9a:8a:eb:8e:fb:9c:fe:56:dd:27:3a:fd:81:5d:44:d9:8a:67:
70:68:cd:a2:f0:5f:a8:70:a3:65:19:11:49:ed:59:c4:8d:ba:
57:5b:7a:4a:4e:c3:aa:de:be:69:33:c5:91:cd:97:32:7b:20:
70:89:b4:25:79:c3:bd:27:f0:b6:44:46:a7:6b:e0:a3:fe:0e:
99:ae:55:bc:04:cc:cf:fa:ed:d7:7e:4d:a4:15:6b:27:83:57:
42:96:8e:94:11:c6:7f:87:42:b5:cc:f9:25:62:6d:e9:a1:21:
41:4c:5e:4a:f5:ee:cc:2a:78:69:b0:4a:e5:47:d6:cf:fa:2c:
28:9b:5e:0f:f9:45:a9:c0:a6:8f:f9:7b:99:70:48:69:7e:d4:
df:64:b4:9c:6e:3c:93:99:42:d5:60:4c:5b:58:35:2f:04:a6:
93:a3:c7:ea:19:38:cf:10:48:25:a7:aa:80:86:f6:e1:94:e9:
55:4a:40:fd:43:82:22:a6:9e:9c:e2:18:31:82:7d:eb:1d:a3:
27:d5:ac:c7:11:64:5f:70:4c:23:61:00:d7:63:f3:06:da:c8:
79:ac:85:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:00 2024 by rpki-client on console-ams.rpki-client.org