Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/D0BlHuMyrvWEwZgs0pVkAdppJEU.roa
File: D0BlHuMyrvWEwZgs0pVkAdppJEU.roa (raw, json)
Hash identifier: Fkuri0Rkd6kkgxvzmX3sNHcUpp5ykBTwKKdQe/H1SU8=
Subject key identifier: 0F:40:65:1E:E3:32:AE:F5:84:C1:98:2C:D2:95:64:01:DA:69:24:45
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 0195651BDD36DE80104C9103707D2132171B
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/D0BlHuMyrvWEwZgs0pVkAdppJEU.roa
Signing time: Wed 05 Mar 2025 07:01:19 +0000
ROA not before: Wed 05 Mar 2025 07:01:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43391
IP address blocks: 77.223.128.0/19 maxlen: 24
77.223.128.0/20 maxlen: 20
77.223.128.0/24 maxlen: 24
77.223.129.0/24 maxlen: 24
77.223.130.0/24 maxlen: 24
77.223.131.0/24 maxlen: 24
77.223.132.0/24 maxlen: 24
77.223.133.0/24 maxlen: 24
77.223.134.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.137.0/24 maxlen: 24
77.223.138.0/24 maxlen: 24
77.223.139.0/24 maxlen: 24
77.223.140.0/24 maxlen: 24
77.223.141.0/24 maxlen: 24
77.223.142.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
77.223.146.0/23 maxlen: 23
77.223.147.0/24 maxlen: 24
77.223.148.0/24 maxlen: 24
77.223.149.0/24 maxlen: 24
77.223.150.0/24 maxlen: 24
77.223.151.0/24 maxlen: 24
77.223.152.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
77.223.155.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.157.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
77.223.159.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
78.40.228.0/24 maxlen: 24
78.40.230.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.160.0/21 maxlen: 21
91.191.168.0/21 maxlen: 21
91.191.170.0/24 maxlen: 24
91.191.171.0/24 maxlen: 24
91.191.175.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.204.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.206.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
185.80.72.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.32.0/24 maxlen: 24
195.244.33.0/24 maxlen: 24
195.244.34.0/24 maxlen: 24
195.244.35.0/24 maxlen: 24
195.244.36.0/24 maxlen: 24
195.244.37.0/24 maxlen: 24
195.244.38.0/24 maxlen: 24
195.244.39.0/24 maxlen: 24
195.244.40.0/24 maxlen: 24
195.244.41.0/24 maxlen: 24
195.244.42.0/24 maxlen: 24
195.244.43.0/24 maxlen: 24
195.244.44.0/24 maxlen: 24
195.244.46.0/24 maxlen: 24
195.244.54.0/24 maxlen: 24
195.244.55.0/24 maxlen: 24
195.244.57.0/24 maxlen: 24
195.244.58.0/24 maxlen: 24
195.244.59.0/24 maxlen: 24
195.244.60.0/24 maxlen: 24
195.244.61.0/24 maxlen: 24
195.244.63.0/24 maxlen: 24
2a01:aac0::/32 maxlen: 32
2a0a:be80::/29 maxlen: 29
2a0a:be80::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Mar 2025 07:10:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:65:1b:dd:36:de:80:10:4c:91:03:70:7d:21:32:17:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Mar 5 07:01:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f40651ee332aef584c1982cd2956401da692445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e0:84:f9:ce:29:72:3f:87:3e:56:39:8a:a3:
89:68:97:51:f8:51:52:5e:13:d8:af:35:c3:7b:16:
c9:60:c9:79:2d:66:1e:ee:a1:f5:42:4a:50:29:67:
57:7f:3b:5e:00:5b:39:9d:f7:c8:33:2f:a7:ad:0e:
9a:20:a7:12:d4:df:2b:ad:cc:87:4f:45:70:9e:3e:
91:bf:42:a8:3f:37:8e:8b:47:51:9d:9b:61:97:36:
c2:93:72:16:3a:e5:b1:c9:7c:c4:5e:5c:17:da:5c:
4a:ff:f8:aa:8e:b4:1c:69:a0:5e:33:6a:04:0a:d5:
d8:2e:01:2f:28:12:88:81:55:3f:ed:f7:39:e3:02:
bc:7c:3e:be:fa:14:2a:69:50:17:75:73:df:e4:4b:
b6:39:9c:2d:af:75:6d:91:2d:8e:2c:8e:c1:25:df:
de:41:d5:bd:2b:ca:7e:75:ec:a0:f3:30:de:f8:35:
71:f1:40:2e:f5:b8:d5:dc:c6:b2:76:e9:92:08:09:
9e:63:a2:cd:8b:fd:e4:bd:85:96:07:00:d7:fe:54:
f7:35:46:b7:84:19:a9:2a:ce:d5:95:d0:5a:0a:55:
85:10:8e:81:39:77:e9:6f:f7:e7:4b:7f:2f:79:cf:
9f:86:c1:5f:06:a5:19:50:f5:6f:70:a9:25:23:f2:
69:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:40:65:1E:E3:32:AE:F5:84:C1:98:2C:D2:95:64:01:DA:69:24:45
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/D0BlHuMyrvWEwZgs0pVkAdppJEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
19:28:b2:bf:d6:7f:17:ed:27:70:23:5f:4e:84:bf:fa:e8:e3:
c5:94:c4:ae:cf:9b:1d:15:77:74:2a:35:e1:77:39:ec:44:65:
a9:4d:89:d1:8f:0d:e3:c2:14:90:e9:27:ab:f2:37:e7:eb:b2:
bc:85:5a:73:ef:83:33:47:79:33:89:16:4d:e2:61:62:e6:1f:
91:0f:4e:2c:9d:4a:27:3f:bf:13:45:e1:29:ed:55:f3:24:c5:
3c:ac:da:a3:c5:16:79:d0:c2:97:30:70:0a:9a:9c:5e:11:b7:
0a:b8:c5:44:dc:af:5c:a9:86:cb:90:06:60:82:9f:40:1e:cd:
54:e2:fb:a5:2f:8c:c1:1d:db:b7:ab:76:f7:ed:80:fa:6e:fd:
54:fe:0b:2d:e9:ae:47:2b:da:46:5f:97:f8:6f:b2:76:1a:22:
51:cd:d3:5c:fb:0c:dc:ca:b8:bc:cf:03:42:d2:85:1f:0a:07:
a6:8a:a9:60:b7:51:d0:9d:de:17:c7:69:73:a3:07:93:f9:c5:
0e:77:23:45:c5:6d:d9:4f:47:52:2c:66:2b:51:b9:1f:48:93:
22:85:b0:27:db:e2:81:b2:30:28:b1:db:5c:ff:f7:b7:60:e0:
88:dd:cf:94:d8:3f:8f:f8:5f:6e:ea:08:38:8e:22:0f:a6:14:
89:e5:ce:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:25:46 2025 by rpki-client