Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/6zSHO6Dzba8XUELrOFl4O3sYSHg.roa
File: 6zSHO6Dzba8XUELrOFl4O3sYSHg.roa (raw, json)
Hash identifier: AE5G61o31acCQPEeNz+vf7CBMqO1Pah/Gus1zcf4rN4=
Subject key identifier: EB:34:87:3B:A0:F3:6D:AF:17:50:42:EB:38:59:78:3B:7B:18:48:78
Certificate issuer: /CN=ca1c7571596e444aa32371cbab724d46d3c3c52c
Certificate serial: 0192B9FD48315F6C1BD40CD003265BA53C95
Authority key identifier: CA:1C:75:71:59:6E:44:4A:A3:23:71:CB:AB:72:4D:46:D3:C3:C5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhx1cVluREqjI3HLq3JNRtPDxSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/6zSHO6Dzba8XUELrOFl4O3sYSHg.roa
Signing time: Wed 23 Oct 2024 15:27:16 +0000
ROA not before: Wed 23 Oct 2024 15:27:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 79.137.194.0/23 maxlen: 23
79.137.196.0/22 maxlen: 22
79.137.202.0/23 maxlen: 23
79.137.204.0/23 maxlen: 23
79.137.206.0/24 maxlen: 24
79.137.207.0/24 maxlen: 24
79.137.248.0/24 maxlen: 24
85.192.24.0/24 maxlen: 24
85.192.25.0/24 maxlen: 24
85.192.26.0/24 maxlen: 24
85.192.27.0/24 maxlen: 24
85.192.28.0/24 maxlen: 24
85.192.29.0/24 maxlen: 24
85.192.30.0/24 maxlen: 24
85.192.31.0/24 maxlen: 24
85.192.40.0/23 maxlen: 23
85.192.42.0/24 maxlen: 24
85.192.56.0/24 maxlen: 24
85.192.60.0/24 maxlen: 24
85.192.61.0/24 maxlen: 24
85.192.63.0/24 maxlen: 24
89.208.96.0/24 maxlen: 24
89.208.97.0/24 maxlen: 24
89.208.103.0/24 maxlen: 24
89.208.104.0/22 maxlen: 22
185.125.100.0/24 maxlen: 24
185.125.101.0/24 maxlen: 24
185.125.102.0/24 maxlen: 24
185.125.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 07:41:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b9:fd:48:31:5f:6c:1b:d4:0c:d0:03:26:5b:a5:3c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1c7571596e444aa32371cbab724d46d3c3c52c
Validity
Not Before: Oct 23 15:27:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb34873ba0f36daf175042eb3859783b7b184878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0a:8d:f5:4d:8c:0c:39:5f:1d:35:ed:4c:fa:
3e:42:13:a1:cb:a1:30:77:87:de:57:db:1d:4a:09:
0f:b1:b4:00:aa:a7:70:94:6a:5f:84:4e:64:d8:3b:
d1:65:64:6e:73:a1:5f:c8:82:80:a5:2c:f2:93:ba:
e3:20:ce:aa:2a:b7:e2:b5:fa:8f:a5:67:ee:96:77:
c3:0a:a0:c5:42:51:03:d2:1a:fe:74:0f:35:5b:15:
bc:52:e7:0b:7b:26:ec:24:55:c8:3e:be:4c:90:27:
0a:9a:e9:50:4b:d4:04:f9:c7:33:4b:3c:6a:a1:53:
e5:cd:a3:31:49:73:23:e1:4d:19:19:c6:37:58:4e:
cf:43:df:3d:ba:93:61:24:93:a5:48:06:62:32:41:
23:6b:72:8c:69:d8:ad:4b:d2:d3:e8:f3:8c:34:c9:
58:ac:b7:08:0a:84:cf:68:6d:09:b6:a5:e9:fe:f4:
44:da:54:43:51:3f:db:27:12:19:99:a5:39:77:d3:
f7:b9:e4:07:df:ab:97:80:dc:b0:dd:6d:e4:b3:9c:
ea:6e:c5:99:e8:dc:40:07:7c:e8:93:1b:83:f4:b5:
9f:6c:5a:13:1f:b9:c1:d2:e8:dc:d2:f1:fe:2c:d7:
1e:10:ac:9c:d5:ff:e8:3f:6b:00:14:49:90:1b:ed:
4e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:34:87:3B:A0:F3:6D:AF:17:50:42:EB:38:59:78:3B:7B:18:48:78
X509v3 Authority Key Identifier:
keyid:CA:1C:75:71:59:6E:44:4A:A3:23:71:CB:AB:72:4D:46:D3:C3:C5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhx1cVluREqjI3HLq3JNRtPDxSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/6zSHO6Dzba8XUELrOFl4O3sYSHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3362c6-a03a-4f9f-a091-b762c0175f27/1/yhx1cVluREqjI3HLq3JNRtPDxSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.137.194.0-79.137.199.255
79.137.202.0-79.137.207.255
79.137.248.0/24
85.192.24.0/21
85.192.40.0-85.192.42.255
85.192.56.0/24
85.192.60.0/23
85.192.63.0/24
89.208.96.0/23
89.208.103.0-89.208.107.255
185.125.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:76:91:11:28:45:fe:34:31:54:8b:67:50:f2:ea:68:8b:9b:
23:2d:73:45:00:6a:05:64:7a:88:81:83:4e:4e:63:82:f6:4b:
f7:b3:8e:92:8a:cd:77:3d:7b:6a:93:b8:ab:fa:0d:ef:ea:b2:
37:6e:16:3e:ce:c5:9d:b0:a5:b0:ab:d5:e4:af:8a:02:8c:57:
16:12:7e:ef:06:0e:39:e9:8e:08:47:72:2f:80:aa:b6:b0:f1:
e0:ac:22:ec:11:4c:67:72:74:e6:39:66:82:9a:1f:32:c8:9c:
2e:29:06:44:60:d6:fb:05:0e:f9:de:f5:a0:42:15:d2:aa:c4:
3a:65:c4:25:57:ea:05:27:aa:b7:c4:ae:56:b5:47:8e:af:53:
0c:cc:2a:3b:00:42:01:d8:ea:8a:69:e0:41:2b:32:78:12:85:
a2:c1:6f:f4:de:7a:27:77:a2:46:b4:76:ca:db:8b:05:68:6c:
83:a5:9c:ef:43:7d:29:0a:88:ad:76:29:4b:ea:a1:f8:08:c7:
84:4d:80:e4:96:1e:d7:6a:8a:9f:33:43:79:4d:9d:57:e2:6c:
46:b2:2a:57:7a:08:a9:35:68:7d:25:28:6c:26:36:c5:0d:7b:
9a:23:33:52:0a:ee:d9:d6:e7:c6:90:d4:61:a5:ca:c6:ee:fa:
77:2d:3b:0e
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAZK5/UgxX2wb1AzQAyZbpTyVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMWM3NTcxNTk2ZTQ0NGFhMzIzNzFjYmFiNzI0ZDQ2ZDNj
M2M1MmMwHhcNMjQxMDIzMTUyNzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjM0ODczYmEwZjM2ZGFmMTc1MDQyZWIzODU5NzgzYjdiMTg0ODc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwqN9U2MDDlfHTXtTPo+QhOhy6Ew
d4feV9sdSgkPsbQAqqdwlGpfhE5k2DvRZWRuc6FfyIKApSzyk7rjIM6qKrfitfqP
pWfulnfDCqDFQlED0hr+dA81WxW8UucLeybsJFXIPr5MkCcKmulQS9QE+cczSzxq
oVPlzaMxSXMj4U0ZGcY3WE7PQ989upNhJJOlSAZiMkEja3KMaditS9LT6POMNMlY
rLcICoTPaG0JtqXp/vRE2lRDUT/bJxIZmaU5d9P3ueQH36uXgNyw3W3ks5zqbsWZ
6NxAB3zokxuD9LWfbFoTH7nB0ujc0vH+LNceEKyc1f/oP2sAFEmQG+1OEQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFOs0hzug822vF1BC6zhZeDt7GEh4MB8GA1UdIwQY
MBaAFMocdXFZbkRKoyNxy6tyTUbTw8UsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWh4MWNWbHVSRXFqSTNITHEzSk5SdFBEeFN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zMzYyYzYtYTAzYS00ZjlmLWEwOTEt
Yjc2MmMwMTc1ZjI3LzEvNnpTSE82RHpiYThYVUVMck9GbDRPM3NZU0hnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8zMzYyYzYtYTAzYS00ZjlmLWEwOTEtYjc2MmMwMTc1ZjI3
LzEveWh4MWNWbHVSRXFqSTNITHEzSk5SdFBEeFN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiMAwDBAFPicID
BANPicAwDAMEAU+JygMEBE+JwAMEAE+J+AMEA1XAGDAMAwQDVcAoAwQAVcAqAwQA
VcA4AwQBVcA8AwQAVcA/AwQBWdBgMAwDBABZ0GcDBAJZ0GgDBAK5fWQwDQYJKoZI
hvcNAQELBQADggEBAC12kREoRf40MVSLZ1Dy6miLmyMtc0UAagVkeoiBg05OY4L2
S/ezjpKKzXc9e2qTuKv6De/qsjduFj7OxZ2wpbCr1eSvigKMVxYSfu8GDjnpjghH
ci+Aqraw8eCsIuwRTGdydOY5ZoKaHzLInC4pBkRg1vsFDvne9aBCFdKqxDplxCVX
6gUnqrfErla1R46vUwzMKjsAQgHY6opp4EErMngShaLBb/Teeid3oka0dsrbiwVo
bIOlnO9DfSkKiK12KUvqofgIx4RNgOSWHtdqip8zQ3lNnVfibEayKld6CKk1aH0l
KGwmNsUNe5ojM1IK7tnW58aQ1GGlysbu+nctOw4=
-----END CERTIFICATE-----
Generated at Wed Nov 6 10:12:03 2024 by rpki-client on console-fra.rpki-client.org