Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/ULdJY8owDQHo_rCVhFBveksVhDc.roa
File: ULdJY8owDQHo_rCVhFBveksVhDc.roa (raw, json)
Hash identifier: Oe1stmZkmirfH77XoctumKPvhjalRadIqpVHQIaLxr8=
Subject key identifier: 50:B7:49:63:CA:30:0D:01:E8:FE:B0:95:84:50:6F:7A:4B:15:84:37
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018E7F180792857B6C6F7ED2E69147F56D05
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/ULdJY8owDQHo_rCVhFBveksVhDc.roa
Signing time: Wed 27 Mar 2024 08:47:45 +0000
ROA not before: Wed 27 Mar 2024 08:47:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 77.37.34.0/23 maxlen: 24
77.37.36.0/23 maxlen: 24
77.37.38.0/23 maxlen: 24
77.37.40.0/21 maxlen: 24
77.37.48.0/21 maxlen: 24
77.37.56.0/21 maxlen: 24
77.37.66.0/23 maxlen: 24
77.37.68.0/23 maxlen: 24
77.37.70.0/23 maxlen: 24
77.37.72.0/23 maxlen: 24
77.37.74.0/23 maxlen: 24
77.37.78.0/23 maxlen: 24
77.37.80.0/23 maxlen: 24
77.37.82.0/23 maxlen: 24
77.37.86.0/23 maxlen: 24
77.37.88.0/21 maxlen: 24
77.37.114.0/23 maxlen: 24
77.37.116.0/23 maxlen: 24
77.37.118.0/23 maxlen: 24
77.37.120.0/23 maxlen: 24
77.37.122.0/23 maxlen: 24
77.37.124.0/23 maxlen: 24
77.37.126.0/23 maxlen: 24
91.108.96.0/21 maxlen: 24
91.108.104.0/21 maxlen: 24
91.108.112.0/21 maxlen: 24
91.108.120.0/21 maxlen: 24
93.127.162.0/23 maxlen: 24
93.127.166.0/23 maxlen: 24
93.127.168.0/23 maxlen: 24
93.127.172.0/23 maxlen: 24
93.127.178.0/23 maxlen: 24
93.127.186.0/23 maxlen: 24
93.127.188.0/23 maxlen: 24
93.127.190.0/23 maxlen: 24
93.127.192.0/23 maxlen: 24
93.127.194.0/23 maxlen: 24
93.127.196.0/23 maxlen: 24
93.127.198.0/23 maxlen: 24
93.127.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 08:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:18:07:92:85:7b:6c:6f:7e:d2:e6:91:47:f5:6d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Mar 27 08:47:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50b74963ca300d01e8feb09584506f7a4b158437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:3a:ca:f6:0f:98:c8:8d:f6:88:f4:c3:29:
3f:b0:a7:bf:6e:0a:05:97:78:65:4a:67:7e:03:40:
c5:80:5b:b3:8f:ac:2b:5f:51:ac:aa:2a:3a:88:a9:
d7:d9:7b:06:47:76:66:33:ff:fb:df:ae:2e:6c:60:
8d:1f:a6:89:2f:34:f3:59:60:14:fa:24:7f:f8:ff:
a8:64:e0:7d:36:17:1e:c5:59:b3:97:fb:87:e8:e1:
31:3d:69:e4:2a:90:3f:a7:4e:1e:ba:8c:22:0e:06:
3b:5c:f7:a0:24:1d:c9:33:8b:3a:cd:22:fc:c7:00:
7b:9e:ec:93:e2:b2:d5:85:4b:66:18:7e:57:3f:68:
96:df:b4:7d:ef:70:67:df:51:61:7d:c7:b2:66:ee:
74:f3:8f:e1:e1:d6:6f:ce:73:55:94:fb:82:63:ff:
c1:5c:e7:38:55:9f:91:31:d4:35:46:4b:5e:b9:e6:
77:bd:5f:00:37:1e:36:63:e8:b3:0f:bc:d2:90:7f:
b0:b9:ea:8b:78:10:94:38:53:f8:13:ab:4a:c7:8e:
4f:89:b4:16:3f:33:5a:ae:1e:8e:5f:05:3d:c5:a1:
69:2f:b3:ad:8c:9a:af:4b:b7:6f:d4:cc:52:41:2f:
a4:da:34:c7:6c:d5:54:49:55:a0:27:f5:1b:2e:96:
19:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B7:49:63:CA:30:0D:01:E8:FE:B0:95:84:50:6F:7A:4B:15:84:37
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/ULdJY8owDQHo_rCVhFBveksVhDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.34.0-77.37.63.255
77.37.66.0-77.37.75.255
77.37.78.0-77.37.83.255
77.37.86.0-77.37.95.255
77.37.114.0-77.37.127.255
91.108.96.0/19
93.127.162.0/23
93.127.166.0-93.127.169.255
93.127.172.0/23
93.127.178.0/23
93.127.186.0-93.127.201.255
Signature Algorithm: sha256WithRSAEncryption
c8:47:cb:14:71:76:97:b0:bf:90:f8:aa:4c:29:3c:00:aa:00:
a3:1a:a1:1b:bc:d3:a6:59:a3:a7:17:e5:d0:9d:16:70:c5:69:
90:65:48:af:7e:5a:2b:a5:35:8a:97:1b:2a:96:e2:06:5a:5d:
ee:96:48:fd:58:6f:65:72:23:09:a6:f4:fe:a6:8e:fc:58:47:
d3:29:45:6c:63:30:9c:dd:ca:af:d7:b6:9b:8b:b4:ea:b0:04:
df:85:e2:d1:4c:0f:c7:07:86:c9:7b:1d:a5:1b:37:68:13:07:
37:3f:e4:a0:61:6d:13:c9:5a:c7:a0:6d:dc:af:d9:09:7a:e5:
37:89:5a:ef:4b:92:3d:b2:cd:25:24:ca:17:4c:de:95:e0:74:
f3:0e:23:1f:e7:6b:00:09:5c:b0:6a:ee:02:13:6e:44:1f:f0:
c4:9f:1b:5f:e9:95:48:68:b1:2f:66:99:32:bf:31:83:ba:70:
af:4e:38:f3:22:cc:76:56:a6:a1:83:31:11:5b:67:84:ae:7d:
bd:75:6b:ac:87:25:5c:34:1b:e6:1b:9f:5e:03:af:4a:9e:5b:
fb:4a:28:55:6f:18:11:ad:ab:67:a7:28:9d:29:57:e9:44:c5:
a6:7c:f4:85:86:25:25:6e:5a:33:51:8c:c7:4c:6c:9f:76:77:
ac:6c:80:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org