Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/JsDF07gkBMSPn-L92fmfNtxwGOM.roa
File: JsDF07gkBMSPn-L92fmfNtxwGOM.roa (raw, json)
Hash identifier: Xa0E1ULEeAzodQc+T//HUumilWwq7Lv7XW2fHwMg0z0=
Subject key identifier: 26:C0:C5:D3:B8:24:04:C4:8F:9F:E2:FD:D9:F9:9F:36:DC:70:18:E3
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 018CC56DE86CD2824E1471CD50C317D4D911
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/JsDF07gkBMSPn-L92fmfNtxwGOM.roa
Signing time: Mon 01 Jan 2024 14:29:23 +0000
ROA not before: Mon 01 Jan 2024 14:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44702
IP address blocks: 79.134.137.0/24 maxlen: 24
79.134.136.0/22 maxlen: 22
79.134.136.0/24 maxlen: 24
79.134.135.0/24 maxlen: 24
79.134.139.0/24 maxlen: 24
79.134.138.0/24 maxlen: 24
79.134.134.0/24 maxlen: 24
79.134.133.0/24 maxlen: 24
79.134.140.0/22 maxlen: 22
79.134.141.0/24 maxlen: 24
79.134.140.0/24 maxlen: 24
79.134.144.0/24 maxlen: 24
79.134.143.0/24 maxlen: 24
79.134.144.0/22 maxlen: 22
79.134.142.0/24 maxlen: 24
79.134.145.0/24 maxlen: 24
79.134.150.0/24 maxlen: 24
79.134.151.0/24 maxlen: 24
79.134.149.0/24 maxlen: 24
79.134.148.0/22 maxlen: 22
79.134.148.0/24 maxlen: 24
79.134.152.0/22 maxlen: 22
79.134.152.0/24 maxlen: 24
79.134.147.0/24 maxlen: 24
79.134.146.0/24 maxlen: 24
79.134.158.0/24 maxlen: 24
79.134.157.0/24 maxlen: 24
79.134.156.0/24 maxlen: 24
79.134.155.0/24 maxlen: 24
79.134.156.0/22 maxlen: 22
79.134.159.0/24 maxlen: 24
79.134.154.0/24 maxlen: 24
79.134.153.0/24 maxlen: 24
79.134.130.0/24 maxlen: 24
79.134.129.0/24 maxlen: 24
79.134.128.0/24 maxlen: 24
79.134.128.0/22 maxlen: 22
79.134.132.0/24 maxlen: 24
79.134.131.0/24 maxlen: 24
79.134.132.0/22 maxlen: 22
185.139.220.0/24 maxlen: 24
185.139.220.0/22 maxlen: 22
185.139.223.0/24 maxlen: 24
185.139.222.0/24 maxlen: 24
185.139.221.0/24 maxlen: 24
5.199.186.0/24 maxlen: 24
5.199.185.0/24 maxlen: 24
5.199.184.0/22 maxlen: 22
5.199.184.0/24 maxlen: 24
5.199.187.0/24 maxlen: 24
45.142.196.0/24 maxlen: 24
2a07:146::/32 maxlen: 32
2a07:145::/32 maxlen: 32
2a07:140::/32 maxlen: 32
2a07:142::/32 maxlen: 32
2a07:143::/32 maxlen: 32
2a07:144::/32 maxlen: 32
2a07:140::/29 maxlen: 29
2a07:147::/32 maxlen: 32
2a07:141::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Feb 2024 08:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:e8:6c:d2:82:4e:14:71:cd:50:c3:17:d4:d9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Jan 1 14:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26c0c5d3b82404c48f9fe2fdd9f99f36dc7018e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:27:93:85:e9:5e:63:ee:29:b4:25:68:73:4b:
5c:68:75:db:3d:0f:c5:54:35:8a:3c:90:53:02:c5:
1c:be:db:62:14:5c:77:ed:e3:8c:dc:9b:6b:fd:fb:
98:a0:a1:08:fb:f5:16:99:89:97:b2:3a:ff:5a:4b:
c1:f7:16:fe:61:b0:ee:51:a0:cc:3b:04:42:a9:ae:
d4:f6:65:18:1c:cd:84:c9:cf:7f:cc:99:18:c8:3e:
e7:ea:b7:33:ef:5d:28:a6:6e:d4:78:c2:78:2b:33:
89:57:97:d8:dc:0c:22:5f:be:e7:44:44:2c:c3:97:
45:06:98:84:77:e9:2e:e2:26:56:a3:dd:4c:8a:18:
46:4d:c1:a3:ff:04:dd:c6:37:bf:8c:66:4f:5c:fe:
f8:1d:9b:d9:df:95:8f:85:b3:3f:33:12:1c:bf:7f:
b7:d2:d7:6e:bf:65:81:0d:3d:d2:4d:5d:8b:0e:20:
55:40:7c:dd:a9:c8:cd:01:d4:50:82:74:99:39:2d:
73:f0:a7:85:ab:81:19:18:ba:f7:08:18:d9:60:99:
76:fa:be:eb:90:c6:5d:7b:d6:bb:1f:50:57:a6:f1:
05:cb:0b:81:20:ab:5b:b0:eb:5f:12:23:e6:36:af:
19:a5:63:62:aa:f3:bf:00:6d:2e:73:5d:02:3f:c0:
b5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C0:C5:D3:B8:24:04:C4:8F:9F:E2:FD:D9:F9:9F:36:DC:70:18:E3
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/JsDF07gkBMSPn-L92fmfNtxwGOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.199.184.0/22
45.142.196.0/24
79.134.128.0/19
185.139.220.0/22
IPv6:
2a07:140::/29
Signature Algorithm: sha256WithRSAEncryption
93:16:94:25:c5:70:23:63:21:75:93:d4:ad:d2:d9:97:5f:4c:
89:a5:2d:bd:c7:03:1c:58:98:d7:d5:61:64:3d:d1:c3:cb:48:
0d:82:4c:b4:f4:0c:f9:f7:53:5c:ab:d1:91:28:42:68:da:77:
be:40:90:5b:1e:f3:2f:0c:a7:ef:98:e1:ba:64:ca:de:f7:6a:
a2:c2:9a:fc:37:53:6b:fc:9f:05:3d:fc:2c:6d:b1:9d:e8:49:
86:f5:0b:cf:9d:cf:29:64:96:45:85:2a:32:3a:b4:8a:52:91:
53:d2:00:cf:ca:64:b3:40:81:62:00:13:72:4c:41:fc:3c:d1:
26:e2:ee:b8:1d:5d:9b:79:c5:4a:58:73:0e:1c:79:35:33:d3:
18:2d:cf:19:b1:cd:07:3c:1b:20:85:8f:b4:3e:ed:3e:f9:b8:
80:d7:1a:fc:07:d5:ac:31:94:50:26:b7:2b:67:d7:4a:ec:5f:
62:4e:bb:a1:75:0c:e2:04:61:ad:f2:2e:79:0a:7c:9d:5b:c9:
d2:ce:2e:77:57:25:41:f4:b1:da:31:b2:94:40:c7:bd:a6:31:
6d:83:b1:22:a0:e6:7c:e8:19:e1:c8:fd:00:54:64:51:fb:cc:
84:58:6d:37:42:83:91:f8:5f:97:0a:ea:c4:74:ed:f4:77:d2:
38:18:ce:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 2 12:00:01 2024 by rpki-client on console-fra.rpki-client.org