Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/8Ju8TKoMzvGCPtA7XRx5ptDhwh0.roa
File: 8Ju8TKoMzvGCPtA7XRx5ptDhwh0.roa (raw, json)
Hash identifier: 2GP+h4GJ2x0iDR0gCMlYimb7YC/xXPaWE/dcfGlka8E=
Subject key identifier: F0:9B:BC:4C:AA:0C:CE:F1:82:3E:D0:3B:5D:1C:79:A6:D0:E1:C2:1D
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 018C6D5DB216AB37B0B427FD9C1E83C19F1E
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/8Ju8TKoMzvGCPtA7XRx5ptDhwh0.roa
Signing time: Fri 15 Dec 2023 12:05:06 +0000
ROA not before: Fri 15 Dec 2023 12:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.147.0/24 maxlen: 24
185.171.146.0/23 maxlen: 23
185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
185.171.144.0/22 maxlen: 22
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.96.0/19 maxlen: 19
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.102.0/24 maxlen: 24
79.106.103.0/24 maxlen: 24
79.106.101.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.32.0/19 maxlen: 19
79.106.37.0/24 maxlen: 24
79.106.42.0/24 maxlen: 24
79.106.48.0/24 maxlen: 24
79.106.50.0/24 maxlen: 24
79.106.56.0/22 maxlen: 22
79.106.64.0/19 maxlen: 19
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.224.0/19 maxlen: 19
79.106.229.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.230.0/24 maxlen: 24
79.106.228.0/24 maxlen: 24
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.162.0/24 maxlen: 24
79.106.176.0/21 maxlen: 21
79.106.0.0/24 maxlen: 24
79.106.0.0/19 maxlen: 19
79.106.0.0/17 maxlen: 17
79.106.0.0/16 maxlen: 16
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0:2100::/40 maxlen: 40
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc0:2300::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2:5000::/36 maxlen: 36
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:5d:b2:16:ab:37:b0:b4:27:fd:9c:1e:83:c1:9f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Dec 15 12:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f09bbc4caa0ccef1823ed03b5d1c79a6d0e1c21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5c:12:c3:8a:ef:c7:0c:3d:82:ca:22:b2:2a:
c0:29:5c:bd:c2:83:af:1b:a4:19:7e:bc:b7:63:f2:
8e:5b:94:f0:c4:9f:bf:75:08:9e:60:7d:fb:11:27:
b5:26:27:31:41:bd:3b:df:ec:6e:a9:47:c1:a4:fe:
10:96:8b:39:1e:a4:f9:36:65:67:ca:c1:83:37:99:
32:48:13:61:b0:f1:da:dd:46:ff:92:cb:03:5c:82:
36:40:1c:f3:34:72:ec:92:57:95:9c:56:5a:88:17:
62:09:07:33:d8:74:b4:fe:15:da:ed:73:84:55:ab:
45:d1:41:6d:48:d8:cc:55:38:54:3a:81:30:d8:55:
c7:26:43:18:55:cf:1c:78:ab:cc:05:a2:dd:40:5a:
3a:44:60:36:17:c2:d2:e0:02:14:eb:39:26:fd:34:
99:47:af:38:f0:60:65:08:17:b7:d5:10:88:f5:3e:
54:65:c8:98:56:aa:a4:3d:14:a3:9d:d1:ab:af:06:
a4:06:8e:b1:7d:a0:76:a4:b9:95:b2:64:22:88:a6:
1d:02:89:41:2d:a7:d3:5b:8a:3d:b4:4a:38:de:18:
0c:ba:f0:7b:b0:8d:66:a6:53:af:f5:78:f6:2c:a2:
6c:ad:35:e0:a7:5d:49:ff:7c:4f:df:e8:29:85:8c:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9B:BC:4C:AA:0C:CE:F1:82:3E:D0:3B:5D:1C:79:A6:D0:E1:C2:1D
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/8Ju8TKoMzvGCPtA7XRx5ptDhwh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.0.0/16
185.171.144.0/22
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
78:62:94:11:8b:29:c8:98:8a:e7:08:88:46:94:d2:e7:be:8c:
d3:81:98:55:23:b3:94:9e:d7:c0:f4:bc:f3:76:3b:51:21:ac:
1d:96:42:fc:4c:58:41:fb:03:d5:89:3a:93:e0:1c:2b:a7:a6:
70:3e:21:13:ef:42:0c:a5:1a:0d:f4:85:75:ef:e0:db:fc:91:
f7:c5:3a:59:34:4e:27:8c:4a:8a:22:45:65:4e:e9:b5:72:cf:
75:95:4a:79:9d:53:7f:68:6d:92:ba:b0:cc:fc:c0:04:48:de:
40:96:55:9c:82:66:9e:b6:9e:f5:6d:b9:8e:36:eb:8c:03:70:
e5:dd:7d:15:b3:72:f5:f4:92:df:c9:b7:23:d9:81:ce:ca:47:
60:b9:41:dc:b2:a3:96:44:7f:b3:79:cf:fc:c2:b5:bb:a2:8e:
cb:28:15:79:63:15:c9:a8:f6:b5:19:73:6f:cb:8f:2f:11:d8:
54:86:04:54:00:42:f8:41:8f:62:58:88:c9:4b:82:0c:c6:69:
ed:c9:cc:b4:ef:60:2f:4c:04:90:fd:37:6e:a1:19:36:c7:34:
2b:90:7c:7a:30:c0:28:20:38:94:e0:2b:d0:a4:cc:80:4b:44:
84:ed:b0:fb:cf:4c:22:cc:b7:f3:1c:02:02:c2:fc:30:c6:99:
a5:05:f4:d7
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYxtXbIWqzewtCf9nB6DwZ8eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3OTRlODFkNzJmNTljNjVhMGQxODE0NGExYjI2MDc5ODM1
MzZiNGEwHhcNMjMxMjE1MTIwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDliYmM0Y2FhMGNjZWYxODIzZWQwM2I1ZDFjNzlhNmQwZTFjMjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklwSw4rvxww9gsoisirAKVy9woOv
G6QZfry3Y/KOW5TwxJ+/dQieYH37ESe1JicxQb073+xuqUfBpP4Qlos5HqT5NmVn
ysGDN5kySBNhsPHa3Ub/kssDXII2QBzzNHLskleVnFZaiBdiCQcz2HS0/hXa7XOE
VatF0UFtSNjMVThUOoEw2FXHJkMYVc8ceKvMBaLdQFo6RGA2F8LS4AIU6zkm/TSZ
R6848GBlCBe31RCI9T5UZciYVqqkPRSjndGrrwakBo6xfaB2pLmVsmQiiKYdAolB
LafTW4o9tEo43hgMuvB7sI1mplOv9Xj2LKJsrTXgp11J/3xP3+gphYzk7wIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFPCbvEyqDM7xgj7QO10ceabQ4cIdMB8GA1UdIwQY
MBaAFNeU6B1y9ZxloNGBRKGyYHmDU2tKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTVUb0hYTDFuR1dnMFlGRW9iSmdlWU5UYTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mNmExMjQtN2YwMS00ZTQwLWI3OTYt
Y2NhNTJiNjI2ZmNhLzEvOEp1OFRLb016dkdDUHRBN1hSeDVwdERod2gwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mNmExMjQtN2YwMS00ZTQwLWI3OTYtY2NhNTJiNjI2ZmNh
LzEvMTVUb0hYTDFuR1dnMFlGRW9iSmdlWU5UYTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwMAT2oDBAK5
q5ADBATZGPAwDQQCAAIwBwMFAyoF/cAwDQYJKoZIhvcNAQELBQADggEBAHhilBGL
KciYiucIiEaU0ue+jNOBmFUjs5Se18D0vPN2O1EhrB2WQvxMWEH7A9WJOpPgHCun
pnA+IRPvQgylGg30hXXv4Nv8kffFOlk0TieMSooiRWVO6bVyz3WVSnmdU39obZK6
sMz8wARI3kCWVZyCZp62nvVtuY4264wDcOXdfRWzcvX0kt/JtyPZgc7KR2C5Qdyy
o5ZEf7N5z/zCtbuijssoFXljFcmo9rUZc2/Ljy8R2FSGBFQAQvhBj2JYiMlLggzG
ae3JzLTvYC9MBJD9N26hGTbHNCuQfHowwCggOJTgK9CkzIBLRITtsPvPTCLMt/Mc
AgLC/DDGmaUF9Nc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org