Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/u7udbRgiVgL8aWx45IzO6uuBM3E.roa
File: u7udbRgiVgL8aWx45IzO6uuBM3E.roa (raw, json)
Hash identifier: MSGbztU3Gt8l/03JGW0lvMxjYN9hRndm/ycmEZjU8Pc=
Subject key identifier: BB:BB:9D:6D:18:22:56:02:FC:69:6C:78:E4:8C:CE:EA:EB:81:33:71
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 018583EC06C2B41B7EC3C7EFB8E182B7F79E
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/u7udbRgiVgL8aWx45IzO6uuBM3E.roa
Signing time: Thu 05 Jan 2023 21:52:41 +0000
ROA not before: Thu 05 Jan 2023 21:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205473
IP address blocks: 37.77.71.0/24 maxlen: 24
37.77.70.0/23 maxlen: 23
37.77.69.0/24 maxlen: 24
37.77.70.0/24 maxlen: 24
37.77.66.0/24 maxlen: 24
37.77.65.0/24 maxlen: 24
37.77.66.0/23 maxlen: 23
37.77.67.0/24 maxlen: 24
37.77.68.0/24 maxlen: 24
37.77.68.0/23 maxlen: 23
37.77.68.0/22 maxlen: 22
37.77.72.0/22 maxlen: 22
37.77.72.0/23 maxlen: 23
37.77.73.0/24 maxlen: 24
37.77.72.0/21 maxlen: 21
37.77.74.0/24 maxlen: 24
37.77.75.0/24 maxlen: 24
37.77.74.0/23 maxlen: 23
37.77.72.0/24 maxlen: 24
37.77.78.0/23 maxlen: 23
37.77.77.0/24 maxlen: 24
37.77.78.0/24 maxlen: 24
37.77.76.0/22 maxlen: 22
37.77.76.0/23 maxlen: 23
37.77.76.0/24 maxlen: 24
37.77.79.0/24 maxlen: 24
37.77.64.0/21 maxlen: 21
37.77.64.0/23 maxlen: 23
37.77.64.0/20 maxlen: 20
37.77.64.0/22 maxlen: 22
37.77.64.0/24 maxlen: 24
185.217.88.0/23 maxlen: 23
185.217.88.0/22 maxlen: 22
185.217.89.0/24 maxlen: 24
185.217.90.0/24 maxlen: 24
185.217.91.0/24 maxlen: 24
185.217.90.0/23 maxlen: 23
185.217.88.0/24 maxlen: 24
2a0b:c643::/32 maxlen: 32
2a0b:c641::/32 maxlen: 32
2a0b:c644::/32 maxlen: 32
2a0b:c647::/32 maxlen: 32
2a0b:c646::/32 maxlen: 32
2a0b:c640::/32 maxlen: 32
2a0b:c645::/32 maxlen: 32
2a0b:c642::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:83:ec:06:c2:b4:1b:7e:c3:c7:ef:b8:e1:82:b7:f7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jan 5 21:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbbb9d6d18225602fc696c78e48cceeaeb813371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8b:99:99:84:a8:37:f4:cd:64:47:e0:fc:71:
f7:86:55:5b:fb:16:8d:74:58:ff:38:f3:2e:51:60:
ed:67:ca:1d:86:ef:dc:7b:17:a0:4a:3d:97:73:2f:
0e:2d:9e:e2:27:16:e2:67:06:d8:0b:db:b5:e4:70:
ff:83:65:02:99:5a:b5:4d:66:9f:62:8f:1a:c3:0c:
5d:cd:d1:65:79:0a:c2:96:cf:f9:2c:99:7b:a5:2d:
98:08:34:a8:7e:5f:9e:bc:30:df:f5:9a:c8:99:97:
6a:35:8f:54:e8:26:d3:a3:18:6b:74:83:56:1e:82:
77:58:89:4c:2e:a6:fd:c6:35:41:7e:38:44:49:83:
77:93:02:8b:b5:9a:c5:40:49:85:ff:67:7f:6f:19:
94:ec:26:8e:7d:4f:4e:0a:95:5c:d4:f7:2a:e4:7d:
fd:40:4f:b8:67:8a:27:d4:54:5f:f9:fe:5d:63:15:
44:5f:23:bd:a6:17:47:70:0b:ff:ca:81:87:36:23:
c7:bb:ad:f5:40:1d:ea:ac:8a:ae:7e:4f:27:d9:b3:
17:53:8c:bb:d8:ca:e3:3d:9b:7c:7a:0f:83:07:50:
de:f5:78:3a:ea:bf:f1:83:81:2e:46:6e:6e:6b:14:
ea:4c:f0:83:d0:80:71:16:36:61:9a:1c:db:4d:b7:
56:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BB:9D:6D:18:22:56:02:FC:69:6C:78:E4:8C:CE:EA:EB:81:33:71
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/u7udbRgiVgL8aWx45IzO6uuBM3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.64.0/20
185.217.88.0/22
IPv6:
2a0b:c640::/29
Signature Algorithm: sha256WithRSAEncryption
a9:89:76:43:34:36:2a:bb:7f:ae:47:79:64:b8:8a:b5:85:f8:
d5:3d:ac:5d:27:69:5b:49:ab:2f:a4:9d:75:33:dc:54:1e:1c:
d8:f1:77:ec:45:8a:3c:93:1d:7a:45:e0:8d:60:2a:4f:6b:3e:
d2:43:3d:2c:75:0c:23:c1:4a:39:d9:1b:26:6e:ce:3a:6e:5a:
c2:0c:9b:57:be:c7:ec:4f:82:2e:ce:40:56:d9:13:2d:e7:be:
96:5e:79:21:02:ce:b2:29:82:44:b6:98:1b:43:5d:71:09:12:
b9:69:e6:b3:97:f0:97:61:19:83:1a:87:f8:a2:68:e2:d6:74:
df:00:0e:c8:64:f2:d1:f2:0c:1a:2f:b5:cf:72:89:cb:da:71:
46:27:15:92:d3:90:ea:63:9b:ae:b1:76:f8:e8:dc:7a:93:34:
3a:fe:7c:64:19:7e:fd:ad:ca:c0:8b:55:be:20:f0:73:94:4f:
51:73:35:95:2e:17:b7:9f:8e:36:95:4a:f6:6a:e0:68:fc:71:
32:7e:8c:f8:29:32:be:9f:db:0d:43:0f:b0:d7:c4:b9:a8:1d:
af:4e:b9:b1:dc:f9:8c:3f:fc:8f:cc:d3:98:9d:c1:e6:fd:60:
1a:39:22:e5:16:a8:d9:67:3b:35:27:77:62:5b:eb:af:b7:4f:
ff:a3:07:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-fra.rpki-client.org