Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/5F9ORaAL2T33bKuQa3ChhpnV1n4.roa
File: 5F9ORaAL2T33bKuQa3ChhpnV1n4.roa (raw, json)
Hash identifier: HjRsrgNFZDLG9cAu9Wjz+MCSP85l79voWyHa2++lM8E=
Subject key identifier: E4:5F:4E:45:A0:0B:D9:3D:F7:6C:AB:90:6B:70:A1:86:99:D5:D6:7E
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 01856F14E5CA3862DE926217592073844631
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/5F9ORaAL2T33bKuQa3ChhpnV1n4.roa
Signing time: Sun 01 Jan 2023 20:45:18 +0000
ROA not before: Sun 01 Jan 2023 20:45:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.71.0/24 maxlen: 24
37.77.70.0/23 maxlen: 23
37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.66.0/23 maxlen: 23
37.77.65.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.68.0/23 maxlen: 23
37.77.68.0/22 maxlen: 22
37.77.72.0/22 maxlen: 22
37.77.72.0/23 maxlen: 23
37.77.73.0/24 maxlen: 24
37.77.72.0/21 maxlen: 21
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.74.0/23 maxlen: 23
37.77.72.0/24 maxlen: 24
37.77.78.0/23 maxlen: 23
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.76.0/22 maxlen: 22
37.77.76.0/23 maxlen: 23
37.77.76.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
37.77.64.0/21 maxlen: 21
37.77.64.0/23 maxlen: 23
37.77.64.0/20 maxlen: 20
37.77.64.0/22 maxlen: 22
37.77.64.0/24 maxlen: 24
185.217.88.0/23 maxlen: 23
185.217.88.0/22 maxlen: 22
185.217.89.0/24 maxlen: 24
185.217.90.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
185.217.90.0/23 maxlen: 23
185.217.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e5:ca:38:62:de:92:62:17:59:20:73:84:46:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jan 1 20:45:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e45f4e45a00bd93df76cab906b70a18699d5d67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:16:c3:63:8b:9e:54:19:e9:ce:03:e4:38:e7:
22:8a:2f:95:b8:a0:95:aa:02:d3:90:71:b1:49:5c:
79:d8:73:04:2e:f0:83:71:be:eb:8c:42:36:8e:2f:
57:c7:ce:b2:dc:f7:c9:c4:1c:23:b9:5d:d6:4a:4b:
0e:02:e2:5e:96:4d:9d:65:1a:a1:df:22:a0:58:d6:
22:77:aa:37:a4:9b:5e:ff:6f:01:69:cb:f9:29:bd:
fc:b1:e2:aa:5b:10:36:c0:c3:02:50:e3:53:86:0b:
c6:0d:de:b2:f3:d7:88:60:e6:4a:0b:07:72:c2:03:
3f:91:28:39:d1:5b:ad:66:56:7b:8a:02:80:67:f3:
a1:3d:5d:74:6f:17:8f:37:32:8f:c5:5c:6a:b3:df:
79:f5:06:47:8c:dc:0e:66:36:6c:6a:b8:2c:5f:32:
dd:3b:eb:92:54:eb:76:f9:3d:a9:bf:5d:cb:1f:cb:
94:40:bf:a0:91:1a:8c:19:96:7e:46:48:26:44:14:
ea:d7:68:9a:a3:3d:60:ff:e2:0d:49:0d:00:7c:de:
67:59:96:c1:db:4a:4b:05:cd:64:bf:f7:61:7c:2d:
b5:21:f9:cb:4b:5f:c8:79:fb:02:72:55:93:e9:8c:
d0:f9:b1:e3:ab:17:55:5d:4d:c9:bc:65:ca:53:c1:
76:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:4E:45:A0:0B:D9:3D:F7:6C:AB:90:6B:70:A1:86:99:D5:D6:7E
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/5F9ORaAL2T33bKuQa3ChhpnV1n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
Signature Algorithm: sha256WithRSAEncryption
54:b9:53:cc:d5:b3:22:2d:01:29:f6:25:77:ee:e8:92:18:aa:
6d:8f:94:21:a1:5e:7b:11:d1:21:88:53:6c:59:03:ae:59:48:
8a:eb:48:15:3a:b0:ea:c1:31:42:73:fc:ce:a1:9b:55:80:79:
48:4d:2c:bc:fe:ec:97:da:fc:99:83:43:b0:d5:e9:c5:8d:99:
07:6c:73:29:94:ac:3a:eb:84:a3:56:e7:da:38:b6:f2:5e:e7:
b0:6c:55:b5:9d:b6:b9:2a:b4:37:27:ca:62:f2:b1:95:df:44:
85:e8:b0:55:e2:1d:b1:4c:00:1f:09:4a:c7:77:ae:b9:42:2e:
18:ca:97:d3:ff:7a:f3:ac:6f:b6:19:9f:92:c0:b1:56:44:60:
26:8d:4d:1c:8f:93:36:94:4d:88:30:0e:8e:93:90:0f:77:44:
68:53:03:6c:69:7f:17:31:f4:d2:f2:fe:f2:f3:e0:25:62:69:
3a:87:75:4c:1c:f3:41:69:dd:64:a5:e7:9f:58:f4:1f:4e:f2:
22:b4:df:e7:99:1c:05:20:67:3e:c3:4f:6c:b5:f2:32:5b:13:
95:1e:5b:7d:17:0f:bc:2f:32:c9:20:ed:63:e9:89:4b:cd:db:
1d:34:b5:7d:6f:4b:1c:92:f5:c1:e2:23:2b:30:cd:a4:01:73:
14:ff:03:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org