Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/DuKBBST81u88BdVbNxruAzk2Myw.roa
File: DuKBBST81u88BdVbNxruAzk2Myw.roa (raw, json)
Hash identifier: QtFlvRJBW+g3qrHEZWbXbF05yOor66lrKFhfuTdLQ9c=
Subject key identifier: 0E:E2:81:05:24:FC:D6:EF:3C:05:D5:5B:37:1A:EE:03:39:36:33:2C
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 018583EEC6049DA4E82AAB84CB4D0BB8D518
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/DuKBBST81u88BdVbNxruAzk2Myw.roa
Signing time: Thu 05 Jan 2023 21:55:41 +0000
ROA not before: Thu 05 Jan 2023 21:55:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.71.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.73.0/24 maxlen: 24
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.72.0/24 maxlen: 24
37.77.78.0/23 maxlen: 23
37.77.76.0/24 maxlen: 24
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
37.77.64.0/24 maxlen: 24
185.217.88.0/23 maxlen: 23
185.217.88.0/22 maxlen: 22
185.217.89.0/24 maxlen: 24
185.217.90.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
185.217.90.0/23 maxlen: 23
185.217.88.0/24 maxlen: 24
2a0b:c643::/32 maxlen: 32
2a0b:c641::/32 maxlen: 32
2a0b:c644::/32 maxlen: 32
2a0b:c647::/32 maxlen: 32
2a0b:c646::/32 maxlen: 32
2a0b:c640::/32 maxlen: 32
2a0b:c645::/32 maxlen: 32
2a0b:c642::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Jan 2023 23:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:83:ee:c6:04:9d:a4:e8:2a:ab:84:cb:4d:0b:b8:d5:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jan 5 21:55:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ee2810524fcd6ef3c05d55b371aee033936332c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:50:58:11:ba:90:5e:d4:c8:ea:96:1a:3d:
5e:25:c3:96:cd:0a:d0:8e:8c:2f:b7:31:32:c0:e6:
08:4f:79:10:b3:69:81:78:b3:88:7a:54:e8:33:9e:
e2:be:4c:b0:63:9c:e5:e3:3c:69:b4:b7:00:28:b6:
19:84:5c:96:0b:63:bd:71:3d:8f:9c:0e:90:9e:2b:
f2:da:f9:f0:a5:33:18:57:ef:eb:7a:c7:bd:9e:d4:
c3:d0:ae:86:90:37:e4:2f:fd:b1:e2:de:fb:b0:a6:
45:54:9f:da:29:2d:de:ff:2f:cc:ed:ac:04:f7:d0:
46:de:aa:85:33:47:0e:e4:c5:f6:ad:a8:c3:64:93:
19:94:4c:ae:ea:9d:46:28:be:6c:06:6c:ff:e5:ec:
ca:bf:3d:b9:21:f7:6a:77:e8:d4:d5:6c:a4:70:24:
a4:67:d2:f8:03:24:fb:ce:15:f2:b6:d0:d6:a3:83:
c7:33:53:c8:1e:7a:99:4f:49:6b:14:a4:40:6f:6d:
19:c0:48:3d:b0:d1:93:b3:88:53:cc:a6:79:0a:fc:
c7:0b:10:21:97:82:e6:a6:49:75:59:ac:55:14:ae:
2b:24:36:e1:1d:9d:58:ac:07:63:5f:1d:36:cd:2a:
35:47:35:02:a5:00:d1:e3:1a:15:23:04:00:e1:0b:
bc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E2:81:05:24:FC:D6:EF:3C:05:D5:5B:37:1A:EE:03:39:36:33:2C
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/DuKBBST81u88BdVbNxruAzk2Myw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
IPv6:
2a0b:c640::/29
Signature Algorithm: sha256WithRSAEncryption
59:6c:4d:59:b7:ef:f6:b6:e3:f9:5b:85:8c:ef:f7:6a:01:c2:
61:3c:3c:48:62:02:a3:1c:0d:76:5c:f0:61:7c:f3:2e:b7:1b:
7c:2d:e7:38:5e:0a:7c:e3:04:68:53:de:83:0f:9e:2a:5d:47:
ed:e8:f0:78:28:4b:07:e5:0b:92:c4:62:3e:52:46:4d:e3:5d:
0f:fb:d4:46:5d:4a:f0:4f:f7:09:e5:d5:7e:1a:c1:c3:9c:f2:
cb:42:2c:88:37:49:fc:f8:3b:c1:26:bf:a0:1e:c8:2c:6d:11:
31:03:90:c7:8b:3c:b0:b2:a0:11:d4:b3:31:8a:f3:69:bd:d8:
d2:d2:6b:91:af:7c:2a:71:9f:58:a8:95:76:28:69:d0:5e:7d:
b8:8e:31:f4:4b:14:93:28:36:6d:27:b3:7e:10:fa:80:ff:43:
11:d8:95:8a:58:87:9e:e1:db:2e:77:cc:6f:11:de:ab:bf:52:
50:49:1c:c8:a3:d3:05:30:97:88:2d:d1:37:71:d3:af:39:94:
f4:6b:ce:51:2e:17:35:e5:57:70:4c:b4:a5:14:c2:8d:e1:b6:
35:4f:8f:21:9d:fd:a9:ce:80:a7:27:66:07:08:58:35:1f:70:
32:55:ac:e3:12:e5:08:f6:58:58:13:da:1f:19:d8:61:dc:96:
9d:dc:f2:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:20 2024 by rpki-client on console-fra.rpki-client.org