Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/hchHokWfaA5yJL4LIUk1ip9Cf2I.roa
File: hchHokWfaA5yJL4LIUk1ip9Cf2I.roa (raw, json)
Hash identifier: kBgDWUWbqCkmhazIJTVRl3vRTAvdEa1b5brvr2AnCYI=
Subject key identifier: 85:C8:47:A2:45:9F:68:0E:72:24:BE:0B:21:49:35:8A:9F:42:7F:62
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 01906907365CCF6943D215762BBF71033026
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/hchHokWfaA5yJL4LIUk1ip9Cf2I.roa
Signing time: Sun 30 Jun 2024 12:03:18 +0000
ROA not before: Sun 30 Jun 2024 12:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208324
IP address blocks: 37.77.64.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.71.0/24 maxlen: 24
37.77.72.0/24 maxlen: 24
37.77.73.0/24 maxlen: 24
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.76.0/24 maxlen: 24
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:07:36:5c:cf:69:43:d2:15:76:2b:bf:71:03:30:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jun 30 12:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85c847a2459f680e7224be0b2149358a9f427f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:10:4d:99:b8:59:8b:4f:93:79:fc:2a:af:1e:
de:91:10:c7:ef:98:f7:29:3e:40:87:12:07:af:de:
fe:a8:e6:48:48:dc:ab:b8:5f:9d:9c:6b:d9:30:2e:
8b:95:c0:e9:fb:9c:d8:3d:4f:be:a2:6b:14:fc:6f:
a0:44:3e:fd:1b:ee:cb:1e:8c:4b:0e:4c:79:69:f4:
af:9a:7c:fd:56:3e:f0:60:f1:37:8a:9e:86:45:72:
8d:3e:9e:ea:5d:44:27:5f:aa:7e:6a:39:15:55:b6:
93:f0:0e:a6:04:bf:fe:9a:a6:e1:ce:3c:2f:7b:95:
1e:11:5b:9b:c2:33:52:bb:a7:ce:de:33:2c:e0:be:
fc:83:6b:5a:32:6e:e3:b5:2e:9d:5a:05:a9:90:c8:
3f:bc:8f:a9:1b:ad:8c:fe:9d:7a:a8:32:42:d6:ee:
57:3b:19:67:4a:8e:72:9f:0c:99:d9:fd:53:cf:12:
47:7e:27:d4:83:20:fa:d7:e7:ec:00:79:2a:6c:d2:
26:8e:d3:59:68:69:c4:f1:b9:58:c3:56:0b:27:29:
12:1b:34:5d:f6:8f:c6:2b:1e:f7:68:72:78:13:94:
c8:9a:c9:28:7d:65:ca:18:b2:1e:bd:25:0a:92:fd:
bd:e8:d8:c2:71:9d:34:ad:01:77:65:fa:17:82:e3:
03:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C8:47:A2:45:9F:68:0E:72:24:BE:0B:21:49:35:8A:9F:42:7F:62
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/hchHokWfaA5yJL4LIUk1ip9Cf2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
Signature Algorithm: sha256WithRSAEncryption
83:79:e7:ef:aa:57:d2:da:d1:93:f6:cf:05:e8:22:4e:a1:94:
2e:02:80:10:73:14:92:30:e4:40:08:cc:74:f3:32:bf:c1:7e:
a6:17:92:45:e5:ab:d3:a2:6a:3c:56:ff:86:81:e0:d9:40:e6:
a1:a6:ee:75:d0:33:f1:6e:e0:37:f1:c5:e5:ff:81:2e:b3:62:
c3:0e:e1:8d:e5:b6:44:f6:d0:3f:03:a2:6c:46:d2:c1:01:ca:
a0:68:dc:a4:70:93:9b:69:31:b7:53:c7:75:ee:84:21:37:b3:
9e:f2:e1:26:bd:98:82:a2:4c:ab:3c:56:42:ec:3e:b0:a8:d5:
ce:d4:b7:48:e6:ea:a8:6d:ba:68:dd:cd:1e:6b:c2:71:1d:9b:
3a:84:99:28:6a:0d:b0:82:71:3b:28:ab:2a:f2:90:41:63:91:
88:f9:e3:20:7f:e7:d4:bf:0c:1e:1b:01:9c:93:1a:ce:a7:7c:
59:37:49:46:b7:5c:f4:f5:7d:9e:38:4a:44:cd:e5:81:74:41:
88:8c:a4:4e:b9:a3:20:a9:6a:ec:e3:dd:a6:86:b4:d8:b1:c5:
2d:69:b0:0e:d5:37:07:73:80:a6:76:57:71:cc:d0:b9:26:0b:
52:64:58:55:4a:ec:52:f7:3e:e4:f7:a1:cf:04:58:45:29:c8:
11:77:86:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:14 2025 by rpki-client