Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Gnj3xDrauBXnzKinJ_fUxVmP-z0.roa
File: Gnj3xDrauBXnzKinJ_fUxVmP-z0.roa (raw, json)
Hash identifier: tkybPFKvU79zJLakJwPGQrY7hPx9/Dg24bp+LlcFKSk=
Subject key identifier: 1A:78:F7:C4:3A:DA:B8:15:E7:CC:A8:A7:27:F7:D4:C5:59:8F:FB:3D
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01934B2B02EDDB29A7C7FAD28ED614A793C5
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Gnj3xDrauBXnzKinJ_fUxVmP-z0.roa
Signing time: Wed 20 Nov 2024 20:02:10 +0000
ROA not before: Wed 20 Nov 2024 20:02:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 77.37.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Dec 2024 19:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4b:2b:02:ed:db:29:a7:c7:fa:d2:8e:d6:14:a7:93:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Nov 20 20:02:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a78f7c43adab815e7cca8a727f7d4c5598ffb3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0e:05:b1:6e:dc:31:52:06:07:ee:6e:b2:28:
c2:44:28:60:c4:fc:33:95:f5:fe:d4:87:ee:76:5b:
93:84:19:84:ca:c0:e1:e8:c6:ab:aa:89:9e:33:5c:
0e:1d:70:93:7c:a0:2f:66:9d:7f:e2:ed:15:3e:f2:
e1:8c:94:4a:91:39:ee:12:fd:2b:42:2c:2d:cf:96:
ac:45:db:1a:31:a7:07:92:aa:4e:5d:70:55:c1:fc:
e3:af:f0:9d:4a:51:71:3d:57:32:25:42:c1:4c:73:
7d:51:05:0e:f8:12:e0:86:65:1f:44:c3:ef:3a:04:
96:09:de:a6:7a:cd:c7:e6:c6:2a:3c:7c:a0:e9:9e:
e8:26:a6:3b:0c:55:bf:97:c4:6a:aa:37:c4:53:8e:
b2:c5:4f:be:fa:94:1a:cf:0e:e9:5f:19:1d:59:d6:
4d:12:b5:8b:09:a8:f2:9f:bb:3a:d3:7a:f1:2b:75:
77:c2:09:5f:ad:bd:e8:13:e0:57:a2:ab:d2:42:6d:
2a:04:35:4b:be:62:55:17:89:68:49:98:19:6a:ec:
73:8b:6b:f3:cf:6c:15:c5:36:f7:fc:36:c1:2f:db:
07:b6:fb:32:e5:35:56:90:b0:22:36:8f:98:fc:ec:
30:0f:5a:2c:1b:14:2f:d1:61:a5:d9:b2:cc:a5:92:
0a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:78:F7:C4:3A:DA:B8:15:E7:CC:A8:A7:27:F7:D4:C5:59:8F:FB:3D
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Gnj3xDrauBXnzKinJ_fUxVmP-z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.84.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:dd:d6:7d:c1:92:d7:ad:93:1c:de:4f:0e:68:80:8e:07:13:
89:ad:53:5b:ef:91:bf:f8:db:c5:3d:86:b9:cd:3b:bc:99:dd:
29:a5:f2:7d:8d:be:d0:b4:fa:38:67:4c:bf:f0:e0:f0:56:2e:
ad:b9:1e:99:31:2b:35:9a:1c:f5:f7:08:c5:40:ab:02:90:85:
23:d4:15:6a:d7:1e:57:c0:ae:36:e9:b0:95:57:1b:5a:f5:82:
9f:ef:8e:c8:25:03:8f:fb:f8:a4:ab:e4:64:dd:c8:43:13:f1:
2a:9c:b7:8d:26:9f:c1:b6:f8:e8:79:2b:61:8c:3d:bd:f1:68:
32:37:36:02:52:b5:e2:6c:c2:91:2a:94:2f:75:c4:65:6b:a5:
b2:19:2a:38:32:7b:42:a3:34:d4:b6:cd:fc:ff:49:77:0f:36:
a6:8e:b6:21:e4:78:85:5d:29:43:b2:47:22:62:90:e6:7e:cc:
72:4d:1f:b7:1c:12:a6:7a:71:6c:20:3a:16:b1:98:4d:b3:19:
bf:39:b4:01:23:50:d1:30:cf:f8:3c:1e:84:0b:a7:66:9a:aa:
88:f8:76:ec:ea:aa:7f:7c:04:2c:5f:ad:65:cd:96:3d:0b:91:
cf:43:d9:21:7f:64:ce:f6:dc:18:47:d9:1a:a4:e0:f2:46:89:
93:28:cf:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNLKwLt2ymnx/rSjtYUp5PFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjQxMTIwMjAwMjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTc4ZjdjNDNhZGFiODE1ZTdjY2E4YTcyN2Y3ZDRjNTU5OGZmYjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxw4FsW7cMVIGB+5usijCRChgxPwz
lfX+1IfudluThBmEysDh6MarqomeM1wOHXCTfKAvZp1/4u0VPvLhjJRKkTnuEv0r
Qiwtz5asRdsaMacHkqpOXXBVwfzjr/CdSlFxPVcyJULBTHN9UQUO+BLghmUfRMPv
OgSWCd6mes3H5sYqPHyg6Z7oJqY7DFW/l8RqqjfEU46yxU+++pQazw7pXxkdWdZN
ErWLCajyn7s603rxK3V3wglfrb3oE+BXoqvSQm0qBDVLvmJVF4loSZgZauxzi2vz
z2wVxTb3/DbBL9sHtvsy5TVWkLAiNo+Y/OwwD1osGxQv0WGl2bLMpZIKmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBp498Q62rgV58yopyf31MVZj/s9MB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEvR25qM3hEcmF1QlhuektpbkpfZlV4Vm1QLXowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATSVUMA0G
CSqGSIb3DQEBCwUAA4IBAQCO3dZ9wZLXrZMc3k8OaICOBxOJrVNb75G/+NvFPYa5
zTu8md0ppfJ9jb7QtPo4Z0y/8ODwVi6tuR6ZMSs1mhz19wjFQKsCkIUj1BVq1x5X
wK426bCVVxta9YKf747IJQOP+/ikq+Rk3chDE/EqnLeNJp/BtvjoeSthjD298Wgy
NzYCUrXibMKRKpQvdcRla6WyGSo4MntCozTUts38/0l3DzamjrYh5HiFXSlDskci
YpDmfsxyTR+3HBKmenFsIDoWsZhNsxm/ObQBI1DRMM/4PB6EC6dmmqqI+Hbs6qp/
fAQsX61lzZY9C5HPQ9khf2TO9twYR9kapODyRomTKM8t
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:14:19 2025 by rpki-client