Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/dKTmWSJcXnPGpnZHDS-H4oWhOPo.roa
File: dKTmWSJcXnPGpnZHDS-H4oWhOPo.roa (raw, json)
Hash identifier: kXlZQ/nN4FcQWchR0NRaJ42nwrqIUReQybX2a6TxgTU=
Subject key identifier: 74:A4:E6:59:22:5C:5E:73:C6:A6:76:47:0D:2F:87:E2:85:A1:38:FA
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 0198776ED5EFAC596355B3A4C4C56141DCA9
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/dKTmWSJcXnPGpnZHDS-H4oWhOPo.roa
Signing time: Mon 04 Aug 2025 23:33:28 +0000
ROA not before: Mon 04 Aug 2025 23:33:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50889
IP address blocks: 77.111.248.0/24 maxlen: 24
77.111.249.0/24 maxlen: 24
77.111.250.0/24 maxlen: 24
77.111.251.0/24 maxlen: 24
80.84.160.0/24 maxlen: 24
80.84.161.0/24 maxlen: 24
80.84.162.0/24 maxlen: 24
80.84.163.0/24 maxlen: 24
80.84.164.0/24 maxlen: 24
80.84.165.0/24 maxlen: 24
80.84.166.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
80.84.168.0/24 maxlen: 24
80.84.169.0/24 maxlen: 24
80.84.170.0/24 maxlen: 24
80.84.171.0/24 maxlen: 24
80.84.172.0/24 maxlen: 24
80.84.173.0/24 maxlen: 24
80.84.174.0/24 maxlen: 24
80.84.175.0/24 maxlen: 24
80.250.96.0/24 maxlen: 24
80.250.97.0/24 maxlen: 24
80.250.98.0/24 maxlen: 24
80.250.99.0/24 maxlen: 24
80.250.100.0/24 maxlen: 24
80.250.101.0/24 maxlen: 24
80.250.102.0/24 maxlen: 24
80.250.111.0/24 maxlen: 24
185.136.69.0/24 maxlen: 24
185.136.70.0/24 maxlen: 24
185.136.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Aug 2025 15:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:6e:d5:ef:ac:59:63:55:b3:a4:c4:c5:61:41:dc:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Aug 4 23:33:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74a4e659225c5e73c6a676470d2f87e285a138fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:60:0e:b6:2f:6a:82:63:7e:f4:c4:04:5d:ba:
ad:42:09:f7:05:64:82:2e:11:35:e0:8e:8b:14:4a:
0e:aa:d4:3d:ec:90:38:18:cb:f5:2a:bb:ea:72:1d:
a0:45:1f:90:a0:ab:b2:0d:62:81:1f:b9:17:ff:75:
cf:be:13:07:a3:b8:e2:5c:fb:a5:b3:f3:6d:f3:e2:
9c:e3:19:64:ba:e4:4a:ed:dd:26:99:73:dc:31:72:
c8:0f:c5:5c:ed:83:79:c7:db:5a:dd:d9:62:70:d3:
94:36:b5:b1:84:f1:40:39:06:d1:da:f9:ad:f9:7f:
9c:2b:97:3a:cc:90:32:dd:8c:45:b1:20:45:87:8c:
39:6f:6a:54:9e:90:00:8a:b6:b2:5c:73:53:27:ae:
e6:32:ac:d8:ad:be:14:bd:e6:81:7c:95:ac:fc:41:
ba:85:b9:a6:80:08:24:2c:3e:a5:1d:62:f3:d5:48:
71:ee:0c:74:fa:0d:65:1a:44:8f:de:df:b5:eb:2d:
5c:6b:f1:cf:57:1f:45:c6:b5:0e:1f:8d:1c:5a:b1:
62:8a:8e:22:db:e7:78:24:13:bf:80:e6:57:1e:38:
de:50:d2:5b:9c:1a:4a:79:fe:fe:1b:48:77:4e:56:
ad:21:e2:eb:bd:ec:e1:67:d4:5b:8a:dd:03:af:a3:
6e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A4:E6:59:22:5C:5E:73:C6:A6:76:47:0D:2F:87:E2:85:A1:38:FA
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/dKTmWSJcXnPGpnZHDS-H4oWhOPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.248.0/22
80.84.160.0/20
80.250.96.0-80.250.102.255
80.250.111.0/24
185.136.69.0-185.136.71.255
Signature Algorithm: sha256WithRSAEncryption
31:e2:51:44:ca:9c:c8:d1:b4:4c:6a:dd:e9:24:5f:95:d4:f7:
ca:97:21:e0:2a:ee:af:d0:55:7c:94:99:a5:c4:50:bb:60:88:
ea:6f:65:42:83:6d:b8:8e:08:c9:65:31:a0:ce:73:78:4c:c1:
a4:03:3b:61:a4:c4:ce:e8:a5:d2:f6:67:ac:1a:60:94:4c:9e:
19:a6:1a:1a:e5:a1:1b:66:bd:a3:7d:ac:2e:18:82:9c:99:cb:
6e:18:b5:d4:22:58:87:a8:c8:5c:31:c0:a9:55:71:dd:b5:4e:
ad:ed:1f:14:5c:04:74:62:24:de:20:77:55:bd:f7:ea:ff:39:
40:2a:31:86:3e:75:b5:de:0b:bd:44:f1:17:a6:dc:b7:3f:41:
f9:e2:91:fc:26:08:de:0c:85:da:f1:5c:5d:78:ab:2a:df:a6:
d9:35:5c:f9:e6:5c:b0:fe:89:dc:15:f5:68:08:a0:fb:11:09:
11:21:87:ff:32:d7:bc:92:99:9d:25:a2:b2:33:ba:e0:b8:52:
7d:1d:ba:45:3f:c3:dc:89:67:cc:72:a7:a2:39:09:53:fb:2a:
91:7d:1e:c4:b0:5b:ef:89:66:bc:be:b2:2c:6a:84:c7:c0:cd:
77:41:c5:b1:17:e4:c1:71:32:bd:0b:d4:c2:78:3d:ef:f0:ac:
91:c6:a5:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:16:02 2025 by rpki-client