Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/bokKLkSZvrExy0ym3GNF82xElNM.roa
File: bokKLkSZvrExy0ym3GNF82xElNM.roa (raw, json)
Hash identifier: AthF+hJDHoL759Lkm7lcavlWgZZSKnXOQMhCAaM/lYU=
Subject key identifier: 6E:89:0A:2E:44:99:BE:B1:31:CB:4C:A6:DC:63:45:F3:6C:44:94:D3
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 018ED54FE56670F15AFB588BF9B2174CD95B
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/bokKLkSZvrExy0ym3GNF82xElNM.roa
Signing time: Sat 13 Apr 2024 02:36:06 +0000
ROA not before: Sat 13 Apr 2024 02:36:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.64.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.71.0/24 maxlen: 24
37.77.72.0/24 maxlen: 24
37.77.73.0/24 maxlen: 24
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.76.0/24 maxlen: 24
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
185.217.88.0/24 maxlen: 24
185.217.89.0/24 maxlen: 24
185.217.90.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
2a0b:c640::/32 maxlen: 32
2a0b:c641::/32 maxlen: 32
2a0b:c642::/32 maxlen: 32
2a0b:c643::/32 maxlen: 32
2a0b:c644::/32 maxlen: 32
2a0b:c645::/32 maxlen: 32
2a0b:c646::/32 maxlen: 32
2a0b:c647::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 29 Jun 2024 19:11:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d5:4f:e5:66:70:f1:5a:fb:58:8b:f9:b2:17:4c:d9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Apr 13 02:36:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e890a2e4499beb131cb4ca6dc6345f36c4494d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:88:a2:7e:86:75:6e:cc:c4:f1:a4:b2:83:10:
09:a4:3c:a2:45:82:18:7c:09:f4:fa:08:0d:1f:91:
ee:67:46:d5:e9:f2:2b:96:46:ad:ff:74:dd:2e:71:
58:53:47:cd:c1:97:82:a4:f5:3f:0d:0b:51:cf:30:
84:3e:e0:91:02:26:25:b1:ab:37:e4:24:9c:3f:a1:
d4:6a:16:0b:b5:13:85:42:c1:f3:3e:3c:4c:92:0b:
bb:52:51:ea:d8:78:95:7b:45:98:84:e1:f0:bc:65:
94:ca:c2:e1:ad:31:77:14:90:9e:2b:9a:1f:a9:3c:
e8:23:f0:60:59:19:7f:7d:9f:19:15:29:4c:33:6a:
d3:3c:a7:ac:9e:6c:67:b9:aa:eb:51:76:45:69:11:
27:63:10:92:92:c3:63:e0:9b:fe:e4:c4:f3:d9:d8:
2c:fa:dc:da:bf:cb:fa:14:46:af:d2:46:ec:6c:f1:
b1:a8:de:76:bd:1d:d6:e3:75:4d:d4:f7:c1:b5:22:
0c:dd:0c:c3:ee:bf:f2:96:45:d5:35:91:b9:89:62:
e4:73:79:7b:02:55:dd:3a:05:e8:de:cb:04:5c:3c:
c1:37:58:bd:19:e9:9c:4d:95:a2:63:50:5e:77:54:
f6:3c:32:d2:1e:16:ab:da:b7:8d:02:f1:96:87:c2:
79:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:89:0A:2E:44:99:BE:B1:31:CB:4C:A6:DC:63:45:F3:6C:44:94:D3
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/bokKLkSZvrExy0ym3GNF82xElNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
IPv6:
2a0b:c640::/29
Signature Algorithm: sha256WithRSAEncryption
04:6c:b1:bd:8c:1f:cd:15:38:ab:15:28:ac:56:87:22:76:2b:
ce:3c:79:e4:31:1a:3d:33:3c:0e:cc:e9:0c:bb:71:93:b6:18:
ed:05:e1:33:08:64:bc:db:e2:f8:79:b9:9d:42:f6:19:fa:b3:
7f:f3:54:de:57:3a:2c:d0:76:6b:c5:9d:5b:e7:77:59:84:73:
9a:09:07:c1:90:39:7f:b4:ba:01:25:df:73:58:5c:a7:94:86:
b6:90:71:ba:e7:5a:bd:65:97:3c:ce:e1:f0:b9:06:36:ba:39:
00:11:86:c1:1d:9d:73:96:c4:c5:ce:c2:e9:fd:73:0b:cb:fc:
1b:73:81:db:47:b6:24:91:ba:5c:bb:31:80:de:e7:1c:e6:93:
9f:a0:3f:1f:0c:e2:ba:c9:2c:90:e3:35:88:fd:66:cf:3d:b7:
47:41:ce:17:88:70:d2:86:f0:62:99:a3:32:f7:ae:55:07:f8:
b8:d1:ba:cf:6c:c9:24:57:2f:89:07:5d:01:1e:d9:60:4a:11:
8f:69:73:f9:9b:bc:0a:83:ab:4f:3b:1e:41:85:c4:4f:6b:dd:
a9:4c:53:83:fd:47:aa:7d:49:cd:28:c3:6b:73:e7:b8:42:61:
26:3b:e2:aa:1f:45:9e:b0:fa:a7:ff:f8:e2:c3:1d:af:bd:1c:
a7:4e:d0:c7
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAY7VT+VmcPFa+1iL+bIXTNlbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2
ZGNmMTAwHhcNMjQwNDEzMDIzNjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTg5MGEyZTQ0OTliZWIxMzFjYjRjYTZkYzYzNDVmMzZjNDQ5NGQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgoiifoZ1bszE8aSygxAJpDyiRYIY
fAn0+ggNH5HuZ0bV6fIrlkat/3TdLnFYU0fNwZeCpPU/DQtRzzCEPuCRAiYlsas3
5CScP6HUahYLtROFQsHzPjxMkgu7UlHq2HiVe0WYhOHwvGWUysLhrTF3FJCeK5of
qTzoI/BgWRl/fZ8ZFSlMM2rTPKesnmxnuarrUXZFaREnYxCSksNj4Jv+5MTz2dgs
+tzav8v6FEav0kbsbPGxqN52vR3W43VN1PfBtSIM3QzD7r/ylkXVNZG5iWLkc3l7
AlXdOgXo3ssEXDzBN1i9GemcTZWiY1Bed1T2PDLSHhar2reNAvGWh8J5oQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFG6JCi5Emb6xMctMptxjRfNsRJTTMB8GA1UdIwQY
MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt
ODVhOTU1ZjIxNjNiLzEvYm9rS0xrU1p2ckV4eTB5bTNHTkY4MnhFbE5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi
LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQEJU1AAwQC
udlYMA0EAgACMAcDBQMqC8ZAMA0GCSqGSIb3DQEBCwUAA4IBAQAEbLG9jB/NFTir
FSisVocidivOPHnkMRo9MzwOzOkMu3GTthjtBeEzCGS82+L4ebmdQvYZ+rN/81Te
Vzos0HZrxZ1b53dZhHOaCQfBkDl/tLoBJd9zWFynlIa2kHG651q9ZZc8zuHwuQY2
ujkAEYbBHZ1zlsTFzsLp/XMLy/wbc4HbR7YkkbpcuzGA3ucc5pOfoD8fDOK6ySyQ
4zWI/WbPPbdHQc4XiHDShvBimaMy965VB/i40brPbMkkVy+JB10BHtlgShGPaXP5
m7wKg6tPOx5BhcRPa92pTFOD/UeqfUnNKMNrc+e4QmEmO+KqH0WesPqn//jiwx2v
vRynTtDH
Generated at Sat Jun 29 21:12:12 2024 by rpki-client on console-fra.rpki-client.org