Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/pc4zKLS7KP-RYnjpzzis4EOkUsM.roa
File: pc4zKLS7KP-RYnjpzzis4EOkUsM.roa (raw, json)
Hash identifier: BQhXxArNwJkiwRRvRjp+vbTA0aXQrAprJjjc9T8r7J4=
Subject key identifier: A5:CE:33:28:B4:BB:28:FF:91:62:78:E9:CF:38:AC:E0:43:A4:52:C3
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 01856F799C628BE75234A75D26ED332D2E97
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/pc4zKLS7KP-RYnjpzzis4EOkUsM.roa
Signing time: Sun 01 Jan 2023 22:35:18 +0000
ROA not before: Sun 01 Jan 2023 22:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44702
IP address blocks: 79.134.137.0/24 maxlen: 24
79.134.136.0/22 maxlen: 22
79.134.136.0/24 maxlen: 24
79.134.135.0/24 maxlen: 24
79.134.139.0/24 maxlen: 24
79.134.138.0/24 maxlen: 24
79.134.134.0/24 maxlen: 24
79.134.133.0/24 maxlen: 24
79.134.140.0/22 maxlen: 22
79.134.141.0/24 maxlen: 24
79.134.140.0/24 maxlen: 24
79.134.144.0/24 maxlen: 24
79.134.143.0/24 maxlen: 24
79.134.144.0/22 maxlen: 22
79.134.142.0/24 maxlen: 24
79.134.145.0/24 maxlen: 24
79.134.150.0/24 maxlen: 24
79.134.151.0/24 maxlen: 24
79.134.149.0/24 maxlen: 24
79.134.148.0/22 maxlen: 22
79.134.148.0/24 maxlen: 24
79.134.152.0/22 maxlen: 22
79.134.152.0/24 maxlen: 24
79.134.147.0/24 maxlen: 24
79.134.146.0/24 maxlen: 24
79.134.158.0/24 maxlen: 24
79.134.157.0/24 maxlen: 24
79.134.156.0/24 maxlen: 24
79.134.155.0/24 maxlen: 24
79.134.156.0/22 maxlen: 22
79.134.159.0/24 maxlen: 24
79.134.154.0/24 maxlen: 24
79.134.153.0/24 maxlen: 24
79.134.130.0/24 maxlen: 24
79.134.129.0/24 maxlen: 24
79.134.128.0/24 maxlen: 24
79.134.128.0/22 maxlen: 22
79.134.132.0/24 maxlen: 24
79.134.131.0/24 maxlen: 24
79.134.132.0/22 maxlen: 22
185.139.220.0/24 maxlen: 24
185.139.220.0/22 maxlen: 22
185.139.223.0/24 maxlen: 24
185.139.222.0/24 maxlen: 24
185.139.221.0/24 maxlen: 24
5.199.186.0/24 maxlen: 24
5.199.185.0/24 maxlen: 24
5.199.184.0/22 maxlen: 22
5.199.184.0/24 maxlen: 24
5.199.187.0/24 maxlen: 24
2a07:146::/32 maxlen: 32
2a07:145::/32 maxlen: 32
2a07:140::/32 maxlen: 32
2a07:142::/32 maxlen: 32
2a07:143::/32 maxlen: 32
2a07:144::/32 maxlen: 32
2a07:140::/29 maxlen: 29
2a07:147::/32 maxlen: 32
2a07:141::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 19 Nov 2023 07:34:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9c:62:8b:e7:52:34:a7:5d:26:ed:33:2d:2e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: Jan 1 22:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5ce3328b4bb28ff916278e9cf38ace043a452c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f3:b2:58:35:31:e2:c9:17:3d:e3:05:c1:50:
b8:09:da:d7:71:20:66:41:36:dc:86:12:e8:52:ac:
d8:d3:3e:29:9f:e6:d4:a4:c1:b7:9f:c6:bf:52:5d:
76:a8:99:6a:f7:ba:98:9e:27:d5:9f:6f:bc:f6:4d:
59:a9:54:a2:ee:33:05:7b:d7:13:e9:62:44:cb:52:
75:fe:d3:e8:50:4d:59:82:05:56:ad:33:cd:3d:06:
c5:c0:6f:59:1d:1c:0e:e4:77:85:18:14:a3:e6:e0:
ce:a9:59:39:b6:4a:2e:37:43:f0:cd:2d:18:fa:19:
ae:a1:1a:7c:20:11:df:fa:63:22:cf:08:cb:2f:24:
34:35:2a:08:83:07:7b:30:98:1a:cf:b3:22:de:e6:
0d:89:4a:a7:be:1b:a8:66:82:f1:6f:be:35:bb:c4:
da:47:70:23:09:e3:f3:50:17:f9:3c:bd:5e:07:5e:
45:f1:e6:71:69:1a:2b:6c:6c:f0:b0:29:ed:65:85:
23:94:2c:1e:b5:29:b9:28:16:69:ad:dd:2e:ea:5d:
bf:f1:d2:b2:6d:dd:b3:ba:78:ea:06:4e:57:e3:1f:
c6:5c:94:92:c7:a1:c0:c4:48:77:2f:4f:32:b2:5e:
d6:55:0e:df:93:7f:34:46:b3:59:08:3f:ef:00:1b:
c8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CE:33:28:B4:BB:28:FF:91:62:78:E9:CF:38:AC:E0:43:A4:52:C3
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/pc4zKLS7KP-RYnjpzzis4EOkUsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.199.184.0/22
79.134.128.0/19
185.139.220.0/22
IPv6:
2a07:140::/29
Signature Algorithm: sha256WithRSAEncryption
1e:34:e5:2c:e8:82:fe:b2:96:b7:33:a4:4c:be:1d:90:bc:2e:
93:cb:14:8e:31:75:99:75:93:6a:e7:23:05:87:e6:62:dd:75:
d5:ba:d9:13:f8:ff:98:99:09:c1:87:93:c4:cc:07:d3:b4:1d:
43:9c:b1:a2:d0:d2:d3:67:93:62:e1:1c:c9:b5:c9:69:f4:54:
be:27:6a:fe:b4:b2:ae:52:7e:01:03:06:11:fe:78:a3:6a:10:
61:62:65:d5:b5:dd:43:45:78:d3:1d:59:53:42:45:27:25:a6:
59:35:09:6c:55:fa:81:47:1a:76:78:01:2d:2e:f8:e8:8c:46:
1c:56:e7:24:86:37:9a:3f:d0:37:98:b0:0c:81:6d:b2:ae:15:
fd:1e:e1:32:fc:07:29:b3:95:df:1d:f0:f5:ab:1f:e7:1c:4a:
d5:35:fa:03:9e:1d:9f:fc:32:58:b4:10:15:48:25:bb:54:e6:
b2:5f:7f:b1:c8:64:87:03:91:1d:ab:dc:b3:8b:06:89:aa:ae:
c7:31:21:e3:b2:d1:20:b3:07:be:dc:90:7d:96:fa:5b:b2:98:
ee:4b:66:5e:2f:15:29:36:e5:97:91:a6:3e:5b:25:a2:75:69:
79:73:83:d4:24:b1:a5:f5:13:a9:77:78:9a:cb:be:75:b2:2d:
b1:d0:c7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:47 2024 by rpki-client on console-fra.rpki-client.org