Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/53rngUMOMJ5FFKH2QkQZPOveXf8.roa
File: 53rngUMOMJ5FFKH2QkQZPOveXf8.roa (raw, json)
Hash identifier: 6RqSYuCVpjsmlsCUruopJFuL2IpFLkh6+zcgTKSAN4Q=
Subject key identifier: E7:7A:E7:81:43:0E:30:9E:45:14:A1:F6:42:44:19:3C:EB:DE:5D:FF
Certificate issuer: /CN=d4ce2bf0001cd430e9277fb00ed1abe51c0b5c7c
Certificate serial: 0194F66B1E3A1D7247DCD8902D124F76B076
Authority key identifier: D4:CE:2B:F0:00:1C:D4:30:E9:27:7F:B0:0E:D1:AB:E5:1C:0B:5C:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/53rngUMOMJ5FFKH2QkQZPOveXf8.roa
Signing time: Tue 11 Feb 2025 19:10:02 +0000
ROA not before: Tue 11 Feb 2025 19:10:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210644
IP address blocks: 77.110.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 07:26:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f6:6b:1e:3a:1d:72:47:dc:d8:90:2d:12:4f:76:b0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ce2bf0001cd430e9277fb00ed1abe51c0b5c7c
Validity
Not Before: Feb 11 19:10:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e77ae781430e309e4514a1f64244193cebde5dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:16:ba:97:04:17:f9:cf:3c:b7:24:bd:21:82:
e1:5b:39:c0:5b:b8:ae:97:1e:5d:06:a1:27:df:6e:
c9:d8:03:60:3f:c9:94:5a:bf:c7:8b:ee:95:92:3f:
8d:41:16:16:98:12:41:02:5f:c4:62:36:43:e5:43:
fe:17:28:99:ca:f6:9a:cb:44:ad:62:6c:97:05:f0:
2d:20:d9:ce:97:35:e0:1d:64:b8:21:e9:a4:df:84:
26:56:d1:31:1c:11:e8:5c:bf:ac:a6:c3:87:9e:05:
87:fe:88:ff:7b:98:fd:94:24:e7:cc:8a:65:ed:3e:
9c:d8:32:2b:8c:69:69:ab:45:ea:f9:79:bd:18:e3:
fd:9f:b1:d7:99:28:16:5e:7f:bc:6a:43:2e:0d:cb:
26:02:2d:ad:72:2b:8d:7c:eb:74:7a:63:0c:a1:ae:
70:e3:67:e0:93:34:50:7e:53:26:52:83:99:6c:a8:
d3:df:ac:da:f4:85:fd:84:30:30:41:77:8c:f2:8d:
01:55:c6:3a:ca:60:5b:67:78:1b:55:a5:84:cb:44:
db:f0:3e:ab:62:d9:50:f2:ed:9f:cb:1a:d7:9c:43:
2f:cc:07:fd:8c:a9:f0:48:8c:4c:83:2c:4e:c8:7a:
3a:a8:cf:52:ab:97:c1:01:8d:3d:f0:7b:19:30:fe:
65:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7A:E7:81:43:0E:30:9E:45:14:A1:F6:42:44:19:3C:EB:DE:5D:FF
X509v3 Authority Key Identifier:
keyid:D4:CE:2B:F0:00:1C:D4:30:E9:27:7F:B0:0E:D1:AB:E5:1C:0B:5C:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/53rngUMOMJ5FFKH2QkQZPOveXf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.110.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b5:ba:e2:01:25:58:62:85:62:66:8f:90:ee:12:7d:3d:05:
be:3d:18:40:a7:af:b1:cb:0f:1f:38:9d:95:1a:89:7c:ef:3c:
ac:bd:e0:64:c1:bb:36:ca:5c:c2:8e:b7:c7:4f:c7:66:69:42:
0d:d1:07:e7:f8:8f:85:ef:ea:b4:bc:c2:10:c2:3b:a1:ea:c3:
8e:aa:58:35:81:2b:ed:b7:89:7f:22:89:6c:fc:0a:da:62:3c:
30:86:37:7f:ea:9b:2c:fd:1e:cf:ea:d5:93:c7:5a:5c:e8:5f:
c4:39:ed:44:47:16:50:1f:c0:82:cb:e0:a7:2c:dd:22:81:e8:
04:c1:24:de:88:e9:a6:88:7e:f6:cc:38:3b:3e:76:e1:2f:e2:
47:45:51:9b:84:ae:96:87:ce:f7:1d:30:0a:c4:a9:a7:67:aa:
c0:39:c4:18:cd:ff:d0:84:90:ce:7d:3b:98:67:2d:4a:cc:ec:
50:f1:65:fb:be:9d:32:0a:d2:11:4f:27:7c:f6:65:61:31:13:
70:b1:ec:57:d0:18:91:e6:2e:4d:2e:54:de:88:2a:9e:ef:33:
fa:75:f7:b1:4b:c0:b1:50:42:21:96:98:19:c0:34:6e:f4:9d:
ff:2a:d0:33:77:8a:67:85:5d:8c:f6:14:33:e2:32:3d:0e:cc:
ab:86:8e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:25:27 2025 by rpki-client