Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/fgt1YjDLfn9XSs6uU6l9YslCpCw.roa
File: fgt1YjDLfn9XSs6uU6l9YslCpCw.roa (raw, json)
Hash identifier: IRNG9+igpR89ji+4mUh0C61dCflUVDGn50pMXQox1DU=
Subject key identifier: 7E:0B:75:62:30:CB:7E:7F:57:4A:CE:AE:53:A9:7D:62:C9:42:A4:2C
Certificate issuer: /CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Certificate serial: 0185A21B1E9B4046311610F990504129F736
Authority key identifier: DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/fgt1YjDLfn9XSs6uU6l9YslCpCw.roa
Signing time: Wed 11 Jan 2023 18:32:44 +0000
ROA not before: Wed 11 Jan 2023 18:32:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43019
IP address blocks: 77.75.92.0/29 maxlen: 29
77.75.91.0/24 maxlen: 24
77.75.89.0/24 maxlen: 24
77.75.90.0/24 maxlen: 24
77.75.88.0/24 maxlen: 24
77.75.94.0/24 maxlen: 24
77.75.94.64/26 maxlen: 26
77.75.95.0/24 maxlen: 24
77.75.93.0/24 maxlen: 24
77.75.92.0/24 maxlen: 24
185.206.203.128/26 maxlen: 26
185.206.203.0/24 maxlen: 24
185.206.201.0/24 maxlen: 24
185.206.202.0/24 maxlen: 24
185.206.200.0/24 maxlen: 24
77.75.94.0/30 maxlen: 30
2a0b:3f80:0:204::/64 maxlen: 64
2a0b:3f87:fc1b::/48 maxlen: 48
2a0b:3f87::/32 maxlen: 32
2a0b:3f87:fc20::/48 maxlen: 48
2a0b:3f87:fc19::/48 maxlen: 48
2a0b:3f80:0:203::/64 maxlen: 64
2a0b:3f80:3::/126 maxlen: 126
2a0b:3f80:2::/126 maxlen: 126
2a0b:3f80::/29 maxlen: 29
2a0b:3f87:fc1a::/48 maxlen: 48
2a0b:3f80:0:201::/64 maxlen: 64
2a0b:3f80:0:202::/64 maxlen: 64
2a0b:3f87:fc18::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a2:1b:1e:9b:40:46:31:16:10:f9:90:50:41:29:f7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca46b1fcd92b47f4f55fad038c9581340a9d370
Validity
Not Before: Jan 11 18:32:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e0b756230cb7e7f574aceae53a97d62c942a42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e0:aa:29:03:b5:b1:1b:52:7e:30:6e:ec:29:
3e:37:9d:66:ef:40:6a:ed:25:dc:9d:02:c0:6b:25:
44:e3:cb:8e:33:4c:06:ac:0f:30:72:b2:0d:08:4e:
95:9c:ff:11:c2:82:52:70:29:13:06:f2:10:9d:20:
b5:7c:bd:2e:e4:16:b9:9f:93:65:f0:5a:cc:3e:0f:
85:60:a5:d8:e0:f5:95:a8:23:1b:e3:87:3a:69:c0:
2b:70:01:bf:ba:0a:5b:ab:bd:e3:56:d2:9b:1c:b9:
c3:0e:25:8e:56:d1:df:ce:f2:a5:43:11:3e:c5:15:
23:90:82:0a:70:4b:79:b5:48:a7:43:79:ac:6b:2a:
a9:c9:77:12:43:98:42:3b:20:bd:d7:9d:ab:fc:48:
e2:7d:9d:d8:80:f3:95:f2:f3:ca:db:a3:e9:6d:c8:
98:82:21:c6:86:da:76:2f:b9:09:9c:4a:f5:bc:a5:
b1:bf:ac:f1:39:3a:bf:e9:5e:92:ff:a7:9e:79:e7:
31:7a:6f:d4:79:5d:4c:fa:66:50:c4:6e:5c:68:15:
7c:7b:27:6a:88:a3:6f:15:64:15:43:d1:e9:8a:f8:
93:b6:be:41:da:14:37:c1:3a:17:0a:d4:f6:da:4e:
fb:f1:79:11:8d:72:b2:e5:ba:71:c2:ac:e3:4e:d2:
5e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0B:75:62:30:CB:7E:7F:57:4A:CE:AE:53:A9:7D:62:C9:42:A4:2C
X509v3 Authority Key Identifier:
keyid:DC:A4:6B:1F:CD:92:B4:7F:4F:55:FA:D0:38:C9:58:13:40:A9:D3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KRrH82StH9PVfrQOMlYE0Cp03A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/fgt1YjDLfn9XSs6uU6l9YslCpCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/90ab8e-e573-41c4-a1bb-c6d2b8d1f566/1/3KRrH82StH9PVfrQOMlYE0Cp03A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.88.0/21
185.206.200.0/22
IPv6:
2a0b:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
0e:46:f0:ec:d1:7b:a7:7a:84:e9:1d:cf:41:53:f0:ca:f4:55:
a0:68:88:22:ca:77:55:83:e0:08:1c:69:aa:57:64:cc:d2:b4:
3a:4c:b1:db:ec:9b:98:f5:d7:d7:91:3f:7e:e1:6f:06:0c:be:
e3:2b:e5:5c:1c:b0:7c:81:5b:bf:34:64:f3:8e:91:c6:c8:51:
b7:52:94:79:7d:12:91:ab:f6:ac:d9:16:c6:aa:f0:ee:23:9b:
3a:5b:9a:72:f7:8b:8a:56:53:f3:32:c0:ab:88:27:ad:fd:9e:
0d:26:6a:98:61:6d:10:67:8b:73:2a:6d:62:f9:62:d9:b9:83:
65:7c:3c:71:2a:ed:2c:c7:a9:b3:82:97:3e:e4:a9:4d:41:5c:
8b:76:67:32:65:8c:83:82:52:fe:fc:ea:20:09:5f:06:33:1a:
bb:a7:1f:e1:c0:9f:39:2d:2e:aa:74:24:58:10:2f:68:23:e2:
86:c0:8d:98:4d:31:2b:45:de:2f:35:22:3a:de:95:cc:7b:cd:
ac:34:e0:b1:05:88:78:93:8a:c3:18:43:34:5d:9f:10:35:7f:
24:bf:9c:27:af:99:89:f7:de:6c:84:64:a4:85:75:8d:e4:1e:
f8:35:7c:b8:d9:b6:de:83:d5:eb:3b:9f:b6:19:53:2d:b5:35:
ef:6b:0b:8a
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYWiGx6bQEYxFhD5kFBBKfc2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYTQ2YjFmY2Q5MmI0N2Y0ZjU1ZmFkMDM4Yzk1ODEzNDBh
OWQzNzAwHhcNMjMwMTExMTgzMjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTBiNzU2MjMwY2I3ZTdmNTc0YWNlYWU1M2E5N2Q2MmM5NDJhNDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAieCqKQO1sRtSfjBu7Ck+N51m70Bq
7SXcnQLAayVE48uOM0wGrA8wcrINCE6VnP8RwoJScCkTBvIQnSC1fL0u5Ba5n5Nl
8FrMPg+FYKXY4PWVqCMb44c6acArcAG/ugpbq73jVtKbHLnDDiWOVtHfzvKlQxE+
xRUjkIIKcEt5tUinQ3msayqpyXcSQ5hCOyC9152r/EjifZ3YgPOV8vPK26PpbciY
giHGhtp2L7kJnEr1vKWxv6zxOTq/6V6S/6eeeecxem/UeV1M+mZQxG5caBV8eydq
iKNvFWQVQ9HpiviTtr5B2hQ3wToXCtT22k778XkRjXKy5bpxwqzjTtJeKwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFH4LdWIwy35/V0rOrlOpfWLJQqQsMB8GA1UdIwQY
MBaAFNykax/NkrR/T1X60DjJWBNAqdNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0tSckg4MlN0SDlQVmZyUU9NbFlFMENwMDNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS85MGFiOGUtZTU3My00MWM0LWExYmIt
YzZkMmI4ZDFmNTY2LzEvZmd0MVlqRExmbjlYU3M2dVU2bDlZc2xDcEN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS85MGFiOGUtZTU3My00MWM0LWExYmItYzZkMmI4ZDFmNTY2
LzEvM0tSckg4MlN0SDlQVmZyUU9NbFlFMENwMDNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDTUtYAwQC
uc7IMA0EAgACMAcDBQMqCz+AMA0GCSqGSIb3DQEBCwUAA4IBAQAORvDs0XuneoTp
Hc9BU/DK9FWgaIgiyndVg+AIHGmqV2TM0rQ6TLHb7JuY9dfXkT9+4W8GDL7jK+Vc
HLB8gVu/NGTzjpHGyFG3UpR5fRKRq/as2RbGqvDuI5s6W5py94uKVlPzMsCriCet
/Z4NJmqYYW0QZ4tzKm1i+WLZuYNlfDxxKu0sx6mzgpc+5KlNQVyLdmcyZYyDglL+
/OogCV8GMxq7px/hwJ85LS6qdCRYEC9oI+KGwI2YTTErRd4vNSI63pXMe82sNOCx
BYh4k4rDGEM0XZ8QNX8kv5wnr5mJ995shGSkhXWN5B74NXy42bbeg9XrO5+2GVMt
tTXvawuK
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:07 2023 by rpki-client on console.sobornost.net