Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/ll-rZVDlaRVz2mSy488JlNF4Ne8.roa
File: ll-rZVDlaRVz2mSy488JlNF4Ne8.roa (raw, json)
Hash identifier: wlJm1C6l9LaKKwYMJ0mKzK69mMnxbh6IOUvZdfBES/0=
Subject key identifier: 96:5F:AB:65:50:E5:69:15:73:DA:64:B2:E3:CF:09:94:D1:78:35:EF
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 01973096CA80EC29C812263104ED9A2A6516
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/ll-rZVDlaRVz2mSy488JlNF4Ne8.roa
Signing time: Mon 02 Jun 2025 12:21:18 +0000
ROA not before: Mon 02 Jun 2025 12:21:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204383
IP address blocks: 77.78.77.0/24 maxlen: 24
77.78.78.0/23 maxlen: 23
77.78.94.0/24 maxlen: 24
77.78.112.0/22 maxlen: 22
77.78.116.0/23 maxlen: 23
81.0.230.0/24 maxlen: 24
81.0.242.0/23 maxlen: 23
82.208.4.0/23 maxlen: 23
82.208.26.0/24 maxlen: 24
82.208.32.0/23 maxlen: 23
82.208.60.0/22 maxlen: 22
85.239.253.0/24 maxlen: 24
109.123.206.0/23 maxlen: 23
217.11.232.0/23 maxlen: 23
217.11.243.0/24 maxlen: 24
217.11.246.0/23 maxlen: 23
217.11.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 14:34:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:30:96:ca:80:ec:29:c8:12:26:31:04:ed:9a:2a:65:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Jun 2 12:21:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=965fab6550e5691573da64b2e3cf0994d17835ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:75:fb:85:b9:5c:66:da:d8:02:56:a5:ff:7a:
9b:37:a7:d4:8c:c6:77:94:c3:40:5b:85:f6:0a:79:
4f:9d:10:bf:19:7e:9c:4d:b4:e0:2b:68:a2:97:e5:
88:60:00:e5:0f:53:f7:3f:e0:d6:e1:e6:29:b1:f6:
68:cb:90:df:a4:02:17:30:1b:b6:02:bc:6d:0f:e7:
7c:d5:91:f1:70:fa:95:f6:09:12:c2:03:47:d6:f0:
21:c1:2a:d6:3b:0a:ea:4c:fd:a8:c8:c7:af:ea:df:
19:3e:cf:cb:04:7e:3f:20:f8:f2:6f:5b:02:98:0d:
a3:75:74:87:e1:84:8c:75:1f:19:d3:bb:94:ec:9c:
ac:38:58:39:3f:a9:2d:db:1f:e8:0d:d0:c9:0d:a9:
0f:6b:4a:38:f8:b1:1f:0a:7f:ec:83:ab:11:6d:b7:
0e:c7:5f:ac:7e:9f:b2:eb:03:d0:56:4d:16:01:93:
71:b8:ce:ef:d4:e3:09:09:fa:c8:2b:00:c1:a5:e8:
e7:ce:a1:3a:c1:91:ca:eb:68:0f:df:fc:99:25:35:
59:1f:63:92:87:ca:d9:69:4f:69:b7:e3:b0:34:42:
0b:33:f5:16:3f:72:0f:ab:f3:1c:cf:3b:c1:56:23:
0f:8c:f0:bc:01:2a:d0:a7:40:7c:c2:6f:de:1e:cb:
51:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5F:AB:65:50:E5:69:15:73:DA:64:B2:E3:CF:09:94:D1:78:35:EF
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/ll-rZVDlaRVz2mSy488JlNF4Ne8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.77.0-77.78.79.255
77.78.94.0/24
77.78.112.0-77.78.117.255
81.0.230.0/24
81.0.242.0/23
82.208.4.0/23
82.208.26.0/24
82.208.32.0/23
82.208.60.0/22
85.239.253.0/24
109.123.206.0/23
217.11.232.0/23
217.11.243.0/24
217.11.246.0-217.11.248.255
Signature Algorithm: sha256WithRSAEncryption
76:19:5e:a7:4e:9b:f8:53:02:07:4e:6d:c0:df:16:c8:0e:1a:
53:e4:e7:27:fb:f4:83:26:fb:7b:8d:de:67:b3:1c:e6:a5:dc:
75:0b:77:6c:2b:be:50:12:55:54:5e:0d:5a:8a:1d:c7:69:04:
f8:45:db:82:95:91:c4:72:7c:d8:88:92:28:81:d8:e9:cb:5b:
e8:09:6f:b6:fb:fd:ff:0e:f8:03:40:ad:71:0c:92:2d:8c:06:
96:93:f7:72:67:d0:62:b8:3d:43:7a:30:63:6b:3f:f3:4a:51:
ee:29:1b:2e:0f:74:c8:fd:2d:58:53:3d:81:8b:d5:42:53:46:
49:9b:87:c4:e3:78:a7:2d:9f:c2:d2:10:c0:f5:29:cf:29:3e:
ac:72:21:27:d2:a3:b3:dc:ac:a0:11:81:72:da:72:f1:55:47:
18:e5:43:16:8e:40:61:6b:95:2f:06:42:4d:ca:9b:6e:44:6a:
47:e6:84:89:ee:31:f2:c4:e3:37:22:09:c4:08:48:b4:42:d2:
cf:37:69:cf:9b:da:bf:41:da:7b:c8:2a:2b:53:fb:df:63:5f:
3d:4b:e4:17:33:8a:fc:1c:c6:50:90:0d:1e:e3:51:c8:11:ee:
db:51:c9:24:f6:b5:ef:8f:85:fa:7c:3e:19:ba:89:0d:13:f5:
06:d9:e5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 05:37:14 2025 by rpki-client