Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/5Xw1WH_6Yv3jt6Bkm1UShKD3zd8.roa
File: 5Xw1WH_6Yv3jt6Bkm1UShKD3zd8.roa (raw, json)
Hash identifier: 25doyJsM7k6XMOgLoi2xArEVfK6D/1Cpcu6pP/W3i68=
Subject key identifier: E5:7C:35:58:7F:FA:62:FD:E3:B7:A0:64:9B:55:12:84:A0:F7:CD:DF
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 0188DD057BC93C13719D5F11D68B22726492
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/5Xw1WH_6Yv3jt6Bkm1UShKD3zd8.roa
Signing time: Wed 21 Jun 2023 08:15:04 +0000
ROA not before: Wed 21 Jun 2023 08:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.96.0/19 maxlen: 19
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.102.0/24 maxlen: 24
79.106.103.0/24 maxlen: 24
79.106.101.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.32.0/19 maxlen: 19
79.106.37.0/24 maxlen: 24
79.106.42.0/24 maxlen: 24
79.106.48.0/24 maxlen: 24
79.106.50.0/24 maxlen: 24
79.106.56.0/22 maxlen: 22
79.106.64.0/19 maxlen: 19
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.224.0/19 maxlen: 19
79.106.229.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.230.0/24 maxlen: 24
79.106.228.0/24 maxlen: 24
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.176.0/21 maxlen: 21
79.106.0.0/24 maxlen: 24
79.106.0.0/19 maxlen: 19
79.106.0.0/17 maxlen: 17
79.106.0.0/16 maxlen: 16
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0:2100::/40 maxlen: 40
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc0:2300::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:5000::/36 maxlen: 36
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 01 Aug 2023 23:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:05:7b:c9:3c:13:71:9d:5f:11:d6:8b:22:72:64:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Jun 21 08:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e57c35587ffa62fde3b7a0649b551284a0f7cddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:79:b8:b8:83:50:7e:2e:7a:fd:0b:7a:6f:3c:
07:bb:bd:a3:93:18:df:90:b4:02:78:35:61:94:af:
d1:5d:76:e9:a6:b5:09:98:dc:cc:c2:4e:de:43:b1:
8b:21:59:76:fb:28:0c:62:e4:b0:ec:fb:05:5a:ab:
9a:9b:1f:10:20:fa:31:33:6f:2f:77:74:26:04:50:
b4:7a:a4:b7:c7:8c:ad:47:39:19:a1:83:86:87:64:
4f:2c:c6:03:f1:85:ee:53:c8:86:93:dc:0d:08:7c:
19:ed:e1:11:45:d8:77:29:fc:e0:b7:92:0d:88:fe:
98:98:3c:3b:30:1d:9d:19:b5:4e:fe:20:49:06:24:
a8:b8:71:dd:07:04:f9:ed:b9:3b:19:20:9e:57:94:
08:64:7f:d5:e1:8a:8a:1a:4d:e0:91:db:ca:2f:34:
97:0b:68:4d:9c:19:f3:89:60:16:3a:18:8d:95:01:
d0:84:0f:12:81:cc:d7:72:f5:e4:8c:81:43:34:9e:
11:45:d5:65:42:90:59:c9:5d:d2:04:a5:18:cc:7d:
1a:fc:ed:61:d1:d1:4c:7b:ba:8b:31:99:dc:c1:bf:
91:26:e5:6d:ff:77:07:49:46:f0:f9:2c:3d:10:1b:
33:eb:67:73:84:66:60:3d:04:55:31:2e:78:73:e4:
6c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7C:35:58:7F:FA:62:FD:E3:B7:A0:64:9B:55:12:84:A0:F7:CD:DF
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/5Xw1WH_6Yv3jt6Bkm1UShKD3zd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.0.0/16
185.171.144.0-185.171.146.255
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
5c:9c:73:7b:72:4a:83:ee:56:9d:71:9e:00:f7:7c:04:44:df:
25:6b:8c:60:8b:7e:6f:eb:ee:0a:de:b8:cf:fb:13:6f:97:ce:
ce:bf:aa:ec:4c:12:d1:4b:8e:47:c0:9b:bc:7f:47:5e:d1:51:
aa:01:58:c6:e7:53:c1:4b:20:c1:3f:62:0d:9e:49:29:2a:02:
24:df:b7:c4:af:ec:e8:df:27:ff:30:0e:b3:e4:3b:e9:1c:dd:
a3:4c:aa:5a:68:42:46:50:8b:43:c8:b3:31:6c:b8:8d:05:46:
58:9a:42:2c:1d:8b:46:a9:fc:6a:18:33:db:5f:9e:db:fd:da:
da:a7:ec:73:2b:65:9e:d3:83:cf:55:cb:28:f0:52:a1:05:4a:
f1:e2:bd:23:54:2d:de:b4:1a:e3:a9:03:5e:c5:6b:34:68:96:
9f:71:c7:9b:c3:52:87:ca:fe:29:b5:98:68:e0:f2:10:69:4b:
20:03:4c:56:15:81:3c:99:15:7f:d7:7d:01:8f:6f:68:4b:10:
6d:c1:33:13:78:fa:64:56:c9:63:fe:d4:2e:91:bb:6c:2a:4f:
7a:46:a3:e1:63:a6:99:d2:df:f7:94:c2:a6:a4:af:e8:57:80:
0d:9a:0a:27:bc:8b:e9:1b:92:66:22:72:aa:6a:0b:44:df:6b:
57:e6:2c:7b
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgISAYjdBXvJPBNxnV8R1osicmSSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3OTRlODFkNzJmNTljNjVhMGQxODE0NGExYjI2MDc5ODM1
MzZiNGEwHhcNMjMwNjIxMDgxNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTdjMzU1ODdmZmE2MmZkZTNiN2EwNjQ5YjU1MTI4NGEwZjdjZGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXm4uINQfi56/Qt6bzwHu72jkxjf
kLQCeDVhlK/RXXbpprUJmNzMwk7eQ7GLIVl2+ygMYuSw7PsFWquamx8QIPoxM28v
d3QmBFC0eqS3x4ytRzkZoYOGh2RPLMYD8YXuU8iGk9wNCHwZ7eERRdh3Kfzgt5IN
iP6YmDw7MB2dGbVO/iBJBiSouHHdBwT57bk7GSCeV5QIZH/V4YqKGk3gkdvKLzSX
C2hNnBnziWAWOhiNlQHQhA8SgczXcvXkjIFDNJ4RRdVlQpBZyV3SBKUYzH0a/O1h
0dFMe7qLMZncwb+RJuVt/3cHSUbw+Sw9EBsz62dzhGZgPQRVMS54c+RszQIDAQAB
o4ICKzCCAicwHQYDVR0OBBYEFOV8NVh/+mL947egZJtVEoSg983fMB8GA1UdIwQY
MBaAFNeU6B1y9ZxloNGBRKGyYHmDU2tKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTVUb0hYTDFuR1dnMFlGRW9iSmdlWU5UYTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mNmExMjQtN2YwMS00ZTQwLWI3OTYt
Y2NhNTJiNjI2ZmNhLzEvNVh3MVdIXzZZdjNqdDZCa20xVVNoS0QzemQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mNmExMjQtN2YwMS00ZTQwLWI3OTYtY2NhNTJiNjI2ZmNh
LzEvMTVUb0hYTDFuR1dnMFlGRW9iSmdlWU5UYTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAfBAIAATAZAwMAT2owDAME
BLmrkAMEALmrkgMEBNkY8DANBAIAAjAHAwUDKgX9wDANBgkqhkiG9w0BAQsFAAOC
AQEAXJxze3JKg+5WnXGeAPd8BETfJWuMYIt+b+vuCt64z/sTb5fOzr+q7EwS0UuO
R8CbvH9HXtFRqgFYxudTwUsgwT9iDZ5JKSoCJN+3xK/s6N8n/zAOs+Q76Rzdo0yq
WmhCRlCLQ8izMWy4jQVGWJpCLB2LRqn8ahgz21+e2/3a2qfscytlntODz1XLKPBS
oQVK8eK9I1Qt3rQa46kDXsVrNGiWn3HHm8NSh8r+KbWYaODyEGlLIANMVhWBPJkV
f9d9AY9vaEsQbcEzE3j6ZFbJY/7ULpG7bCpPekaj4WOmmdLf95TCpqSv6FeADZoK
J7yL6RuSZiJyqmoLRN9rV+Ysew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org