Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/c_LWpjGfEVgaJSh_lopuU9IG6pY.roa
File: c_LWpjGfEVgaJSh_lopuU9IG6pY.roa (raw, json)
Hash identifier: ZxyolhVUlbLSqnS+UIofoXJKlZTssKrg7pIdKP6SKDM=
Subject key identifier: 73:F2:D6:A6:31:9F:11:58:1A:25:28:7F:96:8A:6E:53:D2:06:EA:96
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 018ED4AEC3540ACF24B339409D7EB9B4178D
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/c_LWpjGfEVgaJSh_lopuU9IG6pY.roa
Signing time: Fri 12 Apr 2024 23:40:06 +0000
ROA not before: Fri 12 Apr 2024 23:40:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.64.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.71.0/24 maxlen: 24
37.77.72.0/24 maxlen: 24
37.77.73.0/24 maxlen: 24
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.76.0/24 maxlen: 24
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
185.217.88.0/24 maxlen: 24
185.217.89.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
2a0b:c640::/32 maxlen: 32
2a0b:c641::/32 maxlen: 32
2a0b:c642::/32 maxlen: 32
2a0b:c643::/32 maxlen: 32
2a0b:c644::/32 maxlen: 32
2a0b:c645::/32 maxlen: 32
2a0b:c646::/32 maxlen: 32
2a0b:c647::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 13 Apr 2024 02:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d4:ae:c3:54:0a:cf:24:b3:39:40:9d:7e:b9:b4:17:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Apr 12 23:40:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73f2d6a6319f11581a25287f968a6e53d206ea96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bf:ec:2d:ea:7d:07:bd:7e:07:2e:6c:0d:7a:
fa:ed:64:db:b9:1b:b2:8f:b6:c5:af:c7:08:31:a0:
43:f6:f4:9e:65:22:94:a3:10:99:c8:e0:ee:07:ee:
92:ba:a0:57:64:33:65:1b:4a:7d:4f:9b:ef:cc:e4:
41:83:68:ee:61:b9:cd:88:ab:2b:b3:7b:d7:27:7d:
b5:9e:5a:07:49:ad:5c:9a:30:1a:c6:60:5b:ad:80:
5a:6c:74:ff:80:94:2b:1b:28:3c:ec:73:71:73:83:
ab:8e:58:01:19:7a:3f:45:96:93:5d:af:a3:8b:26:
96:5a:84:28:20:72:7a:f0:07:4a:1d:4d:e1:62:5c:
cc:7d:cd:ae:ba:a8:9e:2e:f5:5d:68:e1:42:e3:b3:
d1:88:ac:91:79:91:61:35:7e:e0:a1:a8:d6:0d:5c:
04:dc:83:45:03:d6:82:e6:1b:ba:81:de:22:e6:af:
39:87:b0:95:47:81:e6:fc:a4:ce:d6:d6:32:bb:60:
8b:00:0a:eb:93:f0:11:34:01:d4:40:ee:02:7a:9c:
dc:33:6e:a8:3e:39:0f:42:26:9f:45:58:f5:6f:11:
77:86:df:e7:2d:18:75:47:dc:c4:4d:80:3f:43:c4:
b7:d3:20:e6:2c:4b:ae:6f:22:fb:ae:02:6b:85:54:
13:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F2:D6:A6:31:9F:11:58:1A:25:28:7F:96:8A:6E:53:D2:06:EA:96
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/c_LWpjGfEVgaJSh_lopuU9IG6pY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/23
185.217.91.0/24
IPv6:
2a0b:c640::/29
Signature Algorithm: sha256WithRSAEncryption
1b:08:0f:24:93:d5:21:6a:3c:3d:73:d7:b7:a2:e9:af:a3:99:
49:6c:ff:c4:fa:ec:f4:96:24:28:c0:dd:a4:67:ba:bb:63:88:
7a:fd:ad:38:e6:fe:83:19:5d:2e:33:b5:bf:2e:da:f5:9f:70:
4f:bd:94:a4:fb:ba:da:fb:a5:82:a9:46:03:e2:6c:91:8a:f8:
6d:02:df:f4:4f:e8:79:8d:31:92:04:03:2f:9b:31:39:ca:41:
80:9b:04:09:cb:5d:bb:4e:d4:e4:0c:d5:c8:b0:0b:6b:8a:01:
60:5c:a0:0b:eb:fd:9f:4d:25:06:64:67:a8:6d:b4:34:b1:76:
74:f7:64:4a:65:6f:a4:f8:32:9f:69:f5:a0:9d:e6:5c:07:1b:
fb:48:a2:06:67:f3:60:b6:8e:15:3a:8a:62:2d:da:93:53:ea:
bd:3c:b7:7a:f7:70:ac:f8:1e:0a:a4:b5:2d:d5:71:f9:85:3d:
a4:20:3f:e5:fb:eb:ad:eb:44:f4:e2:06:ac:ed:29:de:5b:99:
0c:16:be:81:9b:f8:a6:e8:da:69:39:2c:1c:c3:f6:aa:8d:60:
55:18:eb:02:62:b9:6b:e2:59:43:4e:d0:45:75:7a:ec:d2:e9:
97:45:17:66:40:f0:fe:79:56:39:30:ca:09:5f:e8:73:ac:d9:
0f:53:f8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:12 2024 by rpki-client on console-ams.rpki-client.org