Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/w-IZFpTe9V5LEPEzryaT3NpdimE.roa
File: w-IZFpTe9V5LEPEzryaT3NpdimE.roa (raw, json)
Hash identifier: 5sz2S/zTx+Gac03wy4AJRR335Rx+8Mnb1XNu4HAaKRY=
Subject key identifier: C3:E2:19:16:94:DE:F5:5E:4B:10:F1:33:AF:26:93:DC:DA:5D:8A:61
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 019731108DC03732C89CF5B8239510C372E9
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/w-IZFpTe9V5LEPEzryaT3NpdimE.roa
Signing time: Mon 02 Jun 2025 14:34:17 +0000
ROA not before: Mon 02 Jun 2025 14:34:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204383
IP address blocks: 77.78.77.0/24 maxlen: 24
77.78.78.0/23 maxlen: 23
77.78.94.0/24 maxlen: 24
77.78.112.0/22 maxlen: 22
77.78.116.0/23 maxlen: 23
81.0.230.0/24 maxlen: 24
81.0.242.0/23 maxlen: 23
82.208.4.0/23 maxlen: 23
82.208.26.0/24 maxlen: 24
82.208.32.0/23 maxlen: 23
82.208.60.0/22 maxlen: 22
85.239.253.0/24 maxlen: 24
109.123.206.0/23 maxlen: 23
109.123.208.0/24 maxlen: 24
217.11.232.0/23 maxlen: 23
217.11.243.0/24 maxlen: 24
217.11.246.0/23 maxlen: 23
217.11.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jun 2025 12:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:31:10:8d:c0:37:32:c8:9c:f5:b8:23:95:10:c3:72:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Jun 2 14:34:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c3e2191694def55e4b10f133af2693dcda5d8a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:fa:dd:b2:eb:46:aa:d8:cc:7c:3b:57:9d:
cf:e8:08:70:88:e8:d3:3c:66:4a:4c:fe:3f:94:52:
7c:81:31:15:33:ff:47:d0:5b:82:30:c2:92:6a:c0:
56:4e:68:64:03:b3:bb:86:de:d0:ea:11:76:f6:10:
4c:a7:ba:cf:a1:8e:21:39:0c:4d:62:c1:00:cb:9c:
19:7a:d0:8f:7b:db:5f:1c:9b:3d:8a:c9:6d:fd:76:
6b:fa:17:c0:02:70:81:0a:8d:11:a1:dd:b3:98:f9:
d1:eb:9d:e4:02:f5:4b:b8:7f:ce:16:6c:7e:c8:16:
d7:2c:cd:d0:aa:80:a1:7d:68:04:22:93:a3:a5:68:
5f:67:b2:6e:fe:06:9a:a7:52:70:1a:ba:7b:ad:ce:
d3:65:9e:e4:3a:d5:10:66:34:33:1c:52:1c:4f:bb:
3e:be:ae:28:c5:3b:51:dd:26:69:e0:ae:88:90:fa:
34:0c:71:6f:ec:1c:e0:10:0f:f6:15:0f:34:fd:09:
7f:82:1a:48:16:bd:f0:de:2f:7d:cd:74:cd:b9:15:
2f:3b:2a:25:2e:ec:f0:51:6f:59:4d:c0:85:f6:59:
f1:4e:28:f7:ce:dd:ca:03:d6:d9:25:1a:2c:82:b4:
9f:ea:58:8c:03:3c:d5:c1:fd:00:90:79:a4:90:ee:
af:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E2:19:16:94:DE:F5:5E:4B:10:F1:33:AF:26:93:DC:DA:5D:8A:61
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/w-IZFpTe9V5LEPEzryaT3NpdimE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.77.0-77.78.79.255
77.78.94.0/24
77.78.112.0-77.78.117.255
81.0.230.0/24
81.0.242.0/23
82.208.4.0/23
82.208.26.0/24
82.208.32.0/23
82.208.60.0/22
85.239.253.0/24
109.123.206.0-109.123.208.255
217.11.232.0/23
217.11.243.0/24
217.11.246.0-217.11.248.255
Signature Algorithm: sha256WithRSAEncryption
75:8f:0d:d5:11:14:f7:a0:e0:fc:98:83:0d:a2:53:d3:88:3a:
6d:c2:1e:8b:75:ce:c1:f9:b4:ba:2f:36:db:da:05:a8:40:12:
6f:11:bd:0d:a8:eb:d7:b6:1a:59:dd:8c:55:e9:f4:8f:58:6f:
61:85:4c:f4:ab:76:d2:89:27:b1:74:f0:d6:fe:25:70:3f:2c:
1a:d2:00:55:9d:a3:56:15:53:05:d4:c1:1d:52:e2:18:c9:4e:
00:b5:8f:3c:6f:96:24:75:12:ca:92:03:c6:f0:9e:fe:02:f6:
1e:3c:e4:53:0a:d5:a7:c6:49:16:bb:b7:e7:90:b7:53:8e:88:
ba:fd:26:12:b9:48:06:66:fa:d1:d1:31:a8:33:b1:60:f3:e0:
a3:87:fa:b8:e7:65:12:18:a6:89:1f:85:90:fa:9a:a2:03:6a:
89:2c:45:e6:25:2e:02:f7:ad:b5:6a:5f:37:35:a6:e3:f0:13:
ea:65:38:19:18:81:dc:da:f7:d6:fe:ec:cf:42:96:c7:71:26:
fc:8b:cb:c8:1a:51:34:45:3b:51:d0:ae:ee:e7:82:f2:3f:a4:
a9:5d:31:8d:76:dc:e9:81:b0:8a:66:9e:98:91:97:78:66:f4:
ae:85:1b:95:4e:a6:d5:df:c0:86:2e:7d:df:a0:73:79:0d:35:
bd:88:38:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 19:06:28 2025 by rpki-client