Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/aKGvQV-DDTlPFgr5HTPLg_uPLCQ.roa
File: aKGvQV-DDTlPFgr5HTPLg_uPLCQ.roa (raw, json)
Hash identifier: 0oxX1d4fpXIa5npTYo77gIcRwSbmrAOqdlZJN+MX70U=
Subject key identifier: 68:A1:AF:41:5F:83:0D:39:4F:16:0A:F9:1D:33:CB:83:FB:8F:2C:24
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 018CC26D6CCD75D487F5231911E7258B30EC
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/aKGvQV-DDTlPFgr5HTPLg_uPLCQ.roa
Signing time: Mon 01 Jan 2024 00:30:00 +0000
ROA not before: Mon 01 Jan 2024 00:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.71.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.73.0/24 maxlen: 24
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.72.0/24 maxlen: 24
37.77.76.0/24 maxlen: 24
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
37.77.64.0/24 maxlen: 24
185.217.89.0/24 maxlen: 24
185.217.90.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
185.217.88.0/24 maxlen: 24
2a0b:c643::/32 maxlen: 32
2a0b:c641::/32 maxlen: 32
2a0b:c644::/32 maxlen: 32
2a0b:c647::/32 maxlen: 32
2a0b:c646::/32 maxlen: 32
2a0b:c640::/32 maxlen: 32
2a0b:c645::/32 maxlen: 32
2a0b:c642::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 12 Apr 2024 23:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:6c:cd:75:d4:87:f5:23:19:11:e7:25:8b:30:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jan 1 00:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68a1af415f830d394f160af91d33cb83fb8f2c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:30:b9:b6:c1:90:ab:7a:43:14:99:1e:a2:37:
c3:1d:45:5d:1e:61:7f:5e:f8:b0:23:bc:d0:84:3a:
03:7c:5d:2b:ac:0a:6f:49:a7:c9:a9:68:ca:12:e4:
4a:69:aa:30:ce:12:f4:96:76:10:a0:86:08:1c:e7:
53:84:0e:38:0e:20:87:48:f6:a0:ea:ad:4d:b6:74:
63:c0:ae:ec:04:77:58:80:3d:69:0f:95:b9:64:5f:
60:29:c7:b0:41:97:6e:7b:68:f8:fe:17:60:eb:8f:
b9:26:d0:ec:ae:55:a2:7e:d6:e0:bb:d6:ca:9c:19:
b2:09:3c:77:7e:26:57:61:af:cc:fb:01:11:57:ee:
97:69:ee:27:24:28:7d:31:67:dc:51:9b:a7:b7:33:
18:ca:98:0d:29:04:dd:7a:af:01:bc:93:16:cd:3d:
1b:0b:af:ab:25:5a:ef:d7:33:40:1b:58:b5:03:b4:
a0:ac:67:1e:48:0e:38:bf:d3:0a:40:ed:79:49:6b:
c7:2f:03:f4:73:6e:fd:43:a4:d4:03:91:f1:14:90:
c3:bf:0f:62:63:9a:91:2a:3d:a9:eb:02:49:51:fd:
03:2c:eb:ef:62:0b:1c:bf:01:32:48:6d:c0:a4:f1:
c6:1e:29:9c:f6:ee:ec:38:ee:d5:5f:fb:97:85:19:
a8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A1:AF:41:5F:83:0D:39:4F:16:0A:F9:1D:33:CB:83:FB:8F:2C:24
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/aKGvQV-DDTlPFgr5HTPLg_uPLCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
IPv6:
2a0b:c640::/29
Signature Algorithm: sha256WithRSAEncryption
0b:3d:14:62:94:0f:84:00:65:42:c2:35:c4:8c:02:d9:15:da:
2e:39:aa:a3:9d:08:3c:bb:a7:d3:31:f5:1d:b0:1d:e9:be:04:
17:06:ed:fb:49:06:ea:63:22:d9:91:7a:24:f4:60:28:81:9c:
0e:72:57:57:4f:64:45:e7:b2:0f:72:1d:7d:ca:3d:79:d1:2b:
ff:9a:21:0d:7d:fe:1e:3f:59:a8:49:52:1f:a8:74:d5:8a:6d:
05:d7:9c:8b:8f:b8:8d:15:fc:db:3c:d1:80:8c:52:b0:8c:4f:
49:ae:68:cd:a3:14:61:2b:9d:e3:01:af:28:33:4c:82:6a:ab:
5c:34:f7:3a:9e:3c:6f:48:f2:b2:81:5d:cd:74:6b:09:80:3a:
f4:ec:87:36:f1:3c:4c:9b:4f:ad:d1:19:ae:60:fb:bc:cc:46:
ff:40:62:7e:19:c6:14:88:8d:9f:6d:c7:4e:34:3e:fe:f3:2f:
ac:bf:06:18:a5:e0:c7:02:b9:24:26:1a:2a:c1:67:97:75:52:
c7:d0:03:da:b0:87:7a:0b:0b:74:bb:46:41:8c:8f:32:4b:f8:
06:6f:11:bd:6d:56:04:bd:8d:98:61:ca:51:9b:7d:15:50:4a:
79:43:fa:06:6f:29:b8:a0:b6:f9:2d:53:fb:4f:9e:88:c1:6b:
06:fd:58:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:12 2024 by rpki-client on console-ams.rpki-client.org