Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/p6p6JOth1uKFUF73Whb0mdpq44s.roa
File: p6p6JOth1uKFUF73Whb0mdpq44s.roa (raw, json)
Hash identifier: yw8P0NJmBzcM9HF/rkEuXo10IvatGBrOteIJ2/g4fWo=
Subject key identifier: A7:AA:7A:24:EB:61:D6:E2:85:50:5E:F7:5A:16:F4:99:DA:6A:E3:8B
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 018780134DA4271FDB1F2F1DFF51DAF3A06E
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/p6p6JOth1uKFUF73Whb0mdpq44s.roa
Signing time: Fri 14 Apr 2023 14:02:41 +0000
ROA not before: Fri 14 Apr 2023 14:02:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.96.0/19 maxlen: 19
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.102.0/24 maxlen: 24
79.106.103.0/24 maxlen: 24
79.106.101.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.32.0/19 maxlen: 19
79.106.37.0/24 maxlen: 24
79.106.56.0/22 maxlen: 22
79.106.64.0/19 maxlen: 19
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.224.0/19 maxlen: 19
79.106.230.0/24 maxlen: 24
79.106.229.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.228.0/24 maxlen: 24
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.176.0/21 maxlen: 21
79.106.0.0/24 maxlen: 24
79.106.0.0/19 maxlen: 19
79.106.0.0/17 maxlen: 17
79.106.0.0/16 maxlen: 16
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0:2100::/40 maxlen: 40
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:2300::/40 maxlen: 40
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2:5000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Apr 2023 09:48:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:13:4d:a4:27:1f:db:1f:2f:1d:ff:51:da:f3:a0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Apr 14 14:02:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7aa7a24eb61d6e285505ef75a16f499da6ae38b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b9:2f:5e:7c:2e:6f:23:0d:72:c0:3a:f7:23:
9f:1c:fe:de:a4:1c:49:9f:94:12:48:3b:b6:28:a5:
3a:2c:b2:a0:99:47:f4:d1:0c:80:33:3f:99:ef:ea:
a5:4e:36:5a:db:ec:63:5c:46:e6:b6:42:45:bd:98:
33:44:53:3c:4f:bc:e4:02:82:fd:bc:b4:2c:ea:b1:
a5:39:14:7a:30:b6:45:0b:11:3f:92:65:f5:7b:83:
ec:2a:97:3b:31:01:3e:8a:ab:49:fb:4d:e0:0a:28:
eb:b0:06:92:5b:77:f0:ed:07:73:d4:00:c9:0e:ec:
25:d4:12:11:59:a3:bc:7e:b8:21:03:48:ab:a6:0d:
7f:7a:f1:69:23:ae:4d:6c:a4:3b:2d:c1:08:25:80:
c4:38:f3:31:2e:b0:d6:cc:27:bc:66:e2:c2:cf:27:
e6:ba:28:23:82:10:34:c6:13:f2:eb:98:c9:01:49:
56:01:0a:c1:b3:4f:44:84:3c:44:4b:44:58:a9:8f:
63:d8:68:aa:6e:82:85:81:6a:46:34:b0:bb:e3:72:
3d:ad:9b:d6:cf:d1:16:d0:ca:1c:b9:42:0b:f1:9d:
c1:86:3c:65:2c:1b:b1:37:11:71:af:0f:79:b8:0e:
1d:33:67:da:91:24:36:36:00:d7:e1:90:6b:1d:aa:
69:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AA:7A:24:EB:61:D6:E2:85:50:5E:F7:5A:16:F4:99:DA:6A:E3:8B
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/p6p6JOth1uKFUF73Whb0mdpq44s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.0.0/16
185.171.144.0-185.171.146.255
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
40:5c:3d:fa:1b:e4:de:79:80:c0:6a:fa:d9:b2:7c:50:7d:29:
54:30:0e:2e:88:89:2d:b5:bd:20:da:e1:bc:00:ca:b4:8e:33:
c7:ae:f2:2a:26:51:06:7e:45:c7:45:98:f2:8d:e3:7c:48:79:
d8:45:9a:06:d4:e5:68:f0:09:86:d4:d4:bb:27:1d:31:16:d1:
77:2c:9f:0b:11:4b:a6:ed:72:ad:34:4f:02:cf:78:84:34:ef:
f4:79:f7:49:aa:23:32:ac:20:a4:29:f3:fa:2c:80:57:ba:4a:
a9:45:18:50:1d:38:f0:0e:eb:f0:6f:a3:4c:98:92:74:1c:36:
98:3c:b0:be:f1:9c:f2:4d:20:bd:76:48:e2:be:c2:d5:cd:f4:
02:de:eb:d6:a1:3d:b4:85:cd:29:0b:4e:d8:4a:6c:e5:88:1a:
88:d8:d7:a3:c1:ea:74:0f:4b:c4:45:51:53:01:06:e7:d7:7b:
ba:19:8d:ce:e8:8c:e9:17:c7:9f:9d:a4:93:1b:79:d9:35:13:
b8:fb:b5:da:62:0f:c9:f5:4b:e3:f3:49:cf:62:51:a0:bf:1b:
54:13:49:e6:13:8a:33:2a:9a:2f:e3:06:59:6f:cc:51:66:1a:
e3:9c:b2:65:9b:58:87:ce:43:9f:07:c1:c7:b9:61:31:08:a2:
ea:01:55:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org