Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/HhN6OfEXB1g8vO14ACluY6mDTqE.roa
File: HhN6OfEXB1g8vO14ACluY6mDTqE.roa (raw, json)
Hash identifier: FU+VBojlAf6GoCdDabd0OaMx2AD2iA3vPRSMyn34F30=
Subject key identifier: 1E:13:7A:39:F1:17:07:58:3C:BC:ED:78:00:29:6E:63:A9:83:4E:A1
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 018CC9BCCC6120D300491248E321BF786F50
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/HhN6OfEXB1g8vO14ACluY6mDTqE.roa
Signing time: Tue 02 Jan 2024 10:34:02 +0000
ROA not before: Tue 02 Jan 2024 10:34:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.146.0/23 maxlen: 23
185.171.147.0/24 maxlen: 24
185.171.146.0/24 maxlen: 24
185.171.144.0/22 maxlen: 22
185.171.144.0/23 maxlen: 23
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.96.0/19 maxlen: 19
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.102.0/24 maxlen: 24
79.106.103.0/24 maxlen: 24
79.106.101.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.32.0/19 maxlen: 19
79.106.37.0/24 maxlen: 24
79.106.42.0/24 maxlen: 24
79.106.48.0/24 maxlen: 24
79.106.50.0/24 maxlen: 24
79.106.56.0/22 maxlen: 22
79.106.64.0/19 maxlen: 19
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.224.0/19 maxlen: 19
79.106.230.0/24 maxlen: 24
79.106.229.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.228.0/24 maxlen: 24
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.162.0/24 maxlen: 24
79.106.176.0/21 maxlen: 21
79.106.0.0/24 maxlen: 24
79.106.0.0/19 maxlen: 19
79.106.0.0/17 maxlen: 17
79.106.0.0/16 maxlen: 16
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:2300::/40 maxlen: 40
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc0:2100::/40 maxlen: 40
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:5000::/36 maxlen: 36
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 19 Feb 2024 08:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:cc:61:20:d3:00:49:12:48:e3:21:bf:78:6f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Jan 2 10:34:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e137a39f11707583cbced7800296e63a9834ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d9:34:8b:8a:33:00:44:f2:b3:5d:d3:dc:ed:
c4:f9:a0:23:94:42:3e:35:a7:60:e6:9d:39:c0:80:
41:43:25:0c:06:02:d7:d8:49:b9:cd:d2:7c:4d:fd:
e1:74:5a:1d:b4:f8:bc:1f:52:0a:76:3a:cf:be:f6:
e6:3a:ec:a0:d2:c1:4e:b8:c3:94:87:50:82:3d:35:
43:4e:6d:4d:c9:c8:6a:7b:ae:93:c7:be:ba:1f:a2:
48:91:30:a0:27:5e:52:8a:4c:58:d0:3b:a6:86:da:
4f:86:b0:9e:62:04:9d:7b:f8:d0:60:c4:9b:e2:6d:
f3:ea:d8:ae:da:21:8b:51:1e:9e:e9:12:0a:1e:26:
ed:fb:05:f2:b7:69:aa:7a:39:64:b8:25:c4:c7:78:
7a:40:94:22:98:c2:dd:d2:2b:27:33:bd:af:f5:19:
db:d2:0b:a6:74:83:e2:17:2e:35:b4:c3:58:09:6f:
5b:38:1f:df:3e:6d:22:ac:5b:aa:e2:bf:05:cb:e5:
44:93:35:6a:98:72:37:2b:94:76:b0:25:b7:dd:50:
83:40:38:0f:f1:69:1b:3a:9d:30:ed:91:6e:8a:cc:
36:02:32:cd:a7:c0:be:d7:52:34:7a:ae:a0:18:fd:
32:40:55:4b:89:df:f0:3a:f0:4c:be:79:a0:5b:cc:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:13:7A:39:F1:17:07:58:3C:BC:ED:78:00:29:6E:63:A9:83:4E:A1
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/HhN6OfEXB1g8vO14ACluY6mDTqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.0.0/16
185.171.144.0/22
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
50:65:5b:4e:a9:21:3a:a2:8f:56:9e:9e:20:fc:59:3c:55:e1:
86:37:a7:93:39:44:19:be:a1:f2:80:50:34:45:f0:c2:92:81:
8d:2e:80:2c:f9:f7:3b:f5:02:7b:e6:ce:ab:18:8e:8c:60:87:
30:fa:9a:5b:25:08:bf:0d:38:31:69:ec:ba:57:97:c7:96:70:
aa:b7:59:57:4d:0e:0c:3a:fd:74:cb:45:2b:b6:c9:e3:75:dd:
f9:f3:11:99:a2:c5:43:8e:41:7c:7f:37:03:e4:5d:bd:32:e2:
51:d3:32:f0:3c:85:b7:58:49:c6:45:38:61:3e:e6:74:0c:8d:
17:fb:e3:fc:6c:8e:50:32:8a:04:16:69:11:8f:61:6d:a6:90:
13:58:ef:93:5e:da:35:52:15:2d:ce:5b:ba:21:fb:5f:29:14:
87:ab:c7:fd:a7:e9:ea:e2:b4:05:f0:ef:82:1d:7c:8a:19:5e:
63:73:65:ef:c8:6e:69:65:ce:e6:cb:97:30:c7:d8:dc:16:db:
ee:6c:91:32:fc:63:02:42:59:94:c6:7d:5e:2c:bb:63:d7:be:
ba:95:46:a8:19:c8:82:0b:9c:fc:33:06:d3:07:34:f4:c7:f8:
67:43:50:cd:62:1d:b8:6f:83:ba:2d:21:6d:f3:4f:92:4c:61:
28:31:dc:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 12:41:47 2024 by rpki-client on console-fra.rpki-client.org