Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/i6uiXswideQ6HKgSQeKSx8a-OKA.roa
File: i6uiXswideQ6HKgSQeKSx8a-OKA.roa (raw, json)
Hash identifier: bIKCHCvSv03xSp91vFA7ZLXwg1Z5GvzgTJlVgMsmgo4=
Subject key identifier: 8B:AB:A2:5E:CC:22:75:E4:3A:1C:A8:12:41:E2:92:C7:C6:BE:38:A0
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018E84161B316A6CA0111320745BD643A02E
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/i6uiXswideQ6HKgSQeKSx8a-OKA.roa
Signing time: Thu 28 Mar 2024 08:03:45 +0000
ROA not before: Thu 28 Mar 2024 08:03:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 77.37.34.0/23 maxlen: 24
77.37.36.0/23 maxlen: 24
77.37.38.0/23 maxlen: 24
77.37.40.0/21 maxlen: 24
77.37.48.0/21 maxlen: 24
77.37.56.0/21 maxlen: 24
77.37.66.0/23 maxlen: 24
77.37.68.0/23 maxlen: 24
77.37.70.0/23 maxlen: 24
77.37.72.0/23 maxlen: 24
77.37.74.0/23 maxlen: 24
77.37.78.0/23 maxlen: 24
77.37.80.0/23 maxlen: 24
77.37.82.0/23 maxlen: 24
77.37.86.0/23 maxlen: 24
77.37.88.0/21 maxlen: 24
77.37.114.0/23 maxlen: 24
77.37.116.0/23 maxlen: 24
77.37.118.0/23 maxlen: 24
77.37.120.0/23 maxlen: 24
77.37.122.0/23 maxlen: 24
77.37.124.0/23 maxlen: 24
77.37.126.0/23 maxlen: 24
91.108.96.0/21 maxlen: 24
91.108.104.0/21 maxlen: 24
91.108.112.0/21 maxlen: 24
91.108.120.0/21 maxlen: 24
93.127.162.0/23 maxlen: 24
93.127.166.0/23 maxlen: 24
93.127.168.0/23 maxlen: 24
93.127.172.0/23 maxlen: 24
93.127.178.0/23 maxlen: 24
93.127.186.0/23 maxlen: 24
93.127.188.0/23 maxlen: 24
93.127.190.0/23 maxlen: 24
93.127.192.0/23 maxlen: 24
93.127.194.0/23 maxlen: 24
93.127.196.0/23 maxlen: 24
93.127.198.0/23 maxlen: 24
93.127.200.0/23 maxlen: 24
93.127.202.0/23 maxlen: 24
93.127.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 09:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:16:1b:31:6a:6c:a0:11:13:20:74:5b:d6:43:a0:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Mar 28 08:03:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8baba25ecc2275e43a1ca81241e292c7c6be38a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:b1:f4:3f:fa:6d:15:51:53:1e:35:2f:73:
fb:80:d6:39:2b:8d:8f:d5:c1:84:44:ab:16:d0:6f:
36:11:92:2e:2a:9f:2f:23:7b:16:b7:30:ed:6a:14:
d5:a6:cc:74:9b:fd:f4:a2:ce:43:3a:de:15:2d:37:
e8:6a:b1:f1:a1:29:f2:fe:38:08:ff:15:c0:cb:5a:
ab:d7:06:53:ee:44:e7:56:25:16:63:42:9a:77:55:
75:d2:fc:d9:a6:c7:52:f1:c8:70:24:02:1d:9d:28:
c8:5c:9d:0d:31:0c:68:0e:2d:17:56:c5:b1:89:78:
85:45:44:38:17:1b:a3:f0:f2:e9:5f:ee:9e:79:fe:
27:96:15:a0:c1:5d:7c:9d:bc:16:9b:45:0e:c8:31:
17:05:e3:11:52:ba:ed:bc:c2:63:07:de:6d:e5:9d:
c8:00:d2:b5:8e:78:2e:93:25:bb:8e:41:a1:51:60:
3b:73:58:ed:9c:eb:72:88:c3:0c:9e:49:85:e3:d3:
12:b6:21:63:05:e3:1e:69:a2:74:cf:f2:dc:09:bd:
1d:45:6d:37:53:4b:c9:e1:3c:0c:a4:f2:04:12:fd:
74:8e:bc:1b:fd:79:54:99:e7:1e:c2:31:fd:68:18:
5e:3f:84:0d:09:ac:c1:51:44:dd:18:b6:21:f4:e8:
f6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AB:A2:5E:CC:22:75:E4:3A:1C:A8:12:41:E2:92:C7:C6:BE:38:A0
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/i6uiXswideQ6HKgSQeKSx8a-OKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.34.0-77.37.63.255
77.37.66.0-77.37.75.255
77.37.78.0-77.37.83.255
77.37.86.0-77.37.95.255
77.37.114.0-77.37.127.255
91.108.96.0/19
93.127.162.0/23
93.127.166.0-93.127.169.255
93.127.172.0/23
93.127.178.0/23
93.127.186.0-93.127.205.255
Signature Algorithm: sha256WithRSAEncryption
88:fa:29:fd:fa:be:c7:5f:53:25:c8:ee:9c:fa:03:9c:08:d7:
d9:0d:48:0a:53:8b:35:15:b3:24:e8:ad:f2:51:19:7b:9c:36:
3b:03:87:04:96:03:c4:fb:d6:12:20:99:47:62:e1:b6:77:20:
6a:aa:77:dd:d5:be:7d:40:50:33:bd:13:13:a4:8c:7b:fa:c1:
b8:21:14:00:6d:ca:0c:5e:19:1f:0f:06:b1:7b:7e:59:37:e1:
08:49:ef:5b:13:eb:e9:62:08:72:43:fa:d7:b2:e5:59:b6:ba:
7c:02:d5:2d:66:e0:1d:a2:f2:be:7d:4e:3a:3c:cc:b8:17:20:
82:96:1a:67:b5:01:81:52:35:d4:9a:f1:67:b7:1f:2c:4b:57:
db:67:2d:6f:ca:0f:b2:6e:f2:55:28:94:a2:58:23:a8:4f:9c:
20:ea:83:43:42:10:14:40:1b:6a:28:ca:f5:a2:69:c1:45:9c:
dd:16:57:d3:3a:cf:3c:bd:e3:b0:26:3f:d2:08:df:29:13:bb:
06:dc:92:dd:12:0f:18:23:c1:84:c9:92:4c:8b:7a:06:36:72:
96:6d:9b:2a:0b:bf:eb:b3:fa:ab:ad:0e:4f:dc:bc:c6:04:5f:
4a:a2:0b:92:82:f7:a2:92:7f:b4:c6:f2:83:75:46:0b:f7:d3:
5e:28:09:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:04 2024 by rpki-client on console-ams.rpki-client.org