Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/7yaZ-D5yoi6Y_b0HtxLht3DdgyY.roa
File: 7yaZ-D5yoi6Y_b0HtxLht3DdgyY.roa (raw, json)
Hash identifier: hdl7c9gCC1wkVoAkRdRC/oMnR8fVgb9tiVswBFX1sKc=
Subject key identifier: EF:26:99:F8:3E:72:A2:2E:98:FD:BD:07:B7:12:E1:B7:70:DD:83:26
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018C0148DCCA48624657889C0C5494CC4E20
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/7yaZ-D5yoi6Y_b0HtxLht3DdgyY.roa
Signing time: Fri 24 Nov 2023 12:23:21 +0000
ROA not before: Fri 24 Nov 2023 12:23:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 79.124.0.0/24 maxlen: 24
217.174.150.0/24 maxlen: 24
79.124.15.0/24 maxlen: 24
217.174.154.0/24 maxlen: 24
217.174.159.0/24 maxlen: 24
79.124.20.0/23 maxlen: 23
79.124.24.0/22 maxlen: 24
79.124.23.0/24 maxlen: 24
79.124.28.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
79.124.50.0/24 maxlen: 24
79.124.73.0/24 maxlen: 24
79.124.74.0/24 maxlen: 24
79.124.79.0/24 maxlen: 24
79.124.82.0/24 maxlen: 24
77.76.0.0/21 maxlen: 24
77.76.8.0/23 maxlen: 24
94.72.145.0/24 maxlen: 24
94.72.148.0/22 maxlen: 24
94.72.159.0/24 maxlen: 24
94.72.158.0/24 maxlen: 24
82.118.246.0/23 maxlen: 23
82.118.244.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.84.0/23 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.81.0/24 maxlen: 24
82.118.224.0/24 maxlen: 24
82.118.236.0/24 maxlen: 24
82.118.238.0/24 maxlen: 24
5.104.168.0/23 maxlen: 23
78.128.67.0/24 maxlen: 24
5.104.174.0/24 maxlen: 24
78.128.72.0/24 maxlen: 24
91.148.131.0/24 maxlen: 24
78.128.79.0/24 maxlen: 24
91.148.140.0/24 maxlen: 24
78.128.92.0/24 maxlen: 24
78.128.94.0/24 maxlen: 24
78.128.98.0/24 maxlen: 24
130.185.229.0/24 maxlen: 24
130.185.236.0/24 maxlen: 24
130.185.235.0/24 maxlen: 24
130.185.237.0/24 maxlen: 24
78.142.34.0/24 maxlen: 24
78.142.33.0/24 maxlen: 24
130.185.250.0/24 maxlen: 24
130.185.248.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
185.148.160.0/22 maxlen: 22
91.148.160.0/24 maxlen: 24
78.128.108.0/23 maxlen: 23
78.142.1.0/24 maxlen: 24
78.142.4.0/23 maxlen: 23
78.142.17.0/24 maxlen: 24
130.185.224.0/24 maxlen: 24
78.142.20.0/24 maxlen: 24
78.142.24.0/24 maxlen: 24
2a01:8740::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 08 Dec 2023 08:09:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:48:dc:ca:48:62:46:57:88:9c:0c:54:94:cc:4e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Nov 24 12:23:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef2699f83e72a22e98fdbd07b712e1b770dd8326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:47:13:f2:58:f1:2c:05:ca:a3:19:f7:03:8e:
bf:54:7c:51:c3:e3:d1:66:b3:18:fb:14:0b:50:d7:
d4:a9:c3:ea:c1:c1:cd:ca:1f:0d:2e:49:09:c6:bd:
d1:23:91:08:ed:e5:00:b3:b7:c0:41:82:fd:3f:5b:
cb:c8:44:3f:70:56:dc:14:11:9a:1b:7a:21:7d:9f:
88:53:f3:fc:cb:2d:ab:c7:f4:35:99:ce:64:8a:8a:
0e:2c:f7:76:47:3c:b9:d5:e6:c2:fe:79:77:98:11:
07:5c:69:95:e7:fc:e4:cf:54:43:6a:3b:9f:a5:1c:
20:b8:dd:7c:d4:8b:46:96:62:38:b8:fc:f0:61:3f:
ec:58:a6:f1:1d:33:78:7d:d9:4a:c9:9a:a2:5b:5c:
c3:8d:58:19:63:dd:d3:ee:8d:e3:ab:ab:c6:68:08:
eb:ef:ed:ff:32:7b:4a:85:a1:7c:f2:52:2b:30:58:
24:81:cf:4d:75:a4:4a:4d:e0:3a:98:1c:23:45:25:
01:0e:ee:14:8b:df:2f:cc:c6:df:75:23:7c:34:2a:
d7:6b:5a:60:d9:fe:08:67:60:78:77:33:e1:c8:d0:
04:d7:12:06:d5:cd:64:fd:5c:94:d8:15:45:8d:f1:
6a:0f:18:78:6c:60:78:ff:39:2f:5d:e3:93:a9:12:
ad:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:26:99:F8:3E:72:A2:2E:98:FD:BD:07:B7:12:E1:B7:70:DD:83:26
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/7yaZ-D5yoi6Y_b0HtxLht3DdgyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.168.0/23
5.104.174.0/24
77.76.0.0-77.76.9.255
78.128.67.0/24
78.128.72.0/24
78.128.79.0/24
78.128.92.0/24
78.128.94.0/24
78.128.98.0/24
78.128.108.0/23
78.142.1.0/24
78.142.4.0/23
78.142.17.0/24
78.142.20.0/24
78.142.24.0/24
78.142.33.0-78.142.34.255
78.142.60.0/24
79.124.0.0/24
79.124.15.0/24
79.124.20.0/23
79.124.23.0-79.124.28.255
79.124.50.0/23
79.124.73.0-79.124.74.255
79.124.79.0/24
79.124.82.0/24
82.118.224.0/24
82.118.236.0/24
82.118.238.0/24
82.118.244.0/24
82.118.246.0/23
91.148.131.0/24
91.148.140.0/24
91.148.160.0/24
94.72.145.0/24
94.72.148.0/22
94.72.158.0/23
130.185.224.0/24
130.185.229.0/24
130.185.235.0-130.185.237.255
130.185.248.0/24
130.185.250.0/24
178.132.80.0-178.132.85.255
185.148.160.0/22
217.174.150.0/24
217.174.154.0/24
217.174.159.0/24
IPv6:
2a01:8740::/32
Signature Algorithm: sha256WithRSAEncryption
79:71:f9:71:e8:1e:7a:f1:b1:ff:9a:ec:a5:07:42:a0:e7:23:
9e:60:59:31:b9:90:b8:31:ee:02:36:b7:21:ca:8e:a1:38:0e:
ee:ed:29:d7:64:c2:66:fd:c4:0d:0a:74:71:9c:3d:39:45:75:
08:f1:0e:54:19:5e:33:85:2f:84:ab:ce:36:8f:71:26:c5:f5:
41:19:70:2e:b7:87:5f:8e:51:ad:b1:b9:45:9d:05:87:01:44:
34:5f:ad:16:dd:85:e7:4f:3f:69:3e:a3:e6:1f:81:fd:b0:a4:
23:ec:d5:8a:d8:a4:2a:e1:9c:16:7f:72:3c:18:91:64:6a:e6:
bc:6f:25:b6:ff:e9:c5:a8:41:08:24:4b:88:0b:54:d8:37:fa:
94:2d:fd:a1:54:c9:5c:cd:a3:83:7a:8a:f6:f3:a7:df:96:74:
e8:a3:46:aa:63:80:99:e4:35:bb:7b:09:0b:47:11:3a:38:e1:
6d:fd:9a:bd:f0:70:b8:33:9d:34:ff:7a:6b:c8:83:4c:91:43:
ba:78:81:6d:a9:b3:fa:0a:ff:38:0d:79:f0:ed:26:a0:62:20:
ed:6c:01:0c:a5:77:c7:8d:a6:44:22:4d:70:c1:7e:36:bd:69:
3b:c8:83:9c:9e:9d:92:91:77:a3:dd:34:2e:b7:93:e5:80:df:
f2:8b:38:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org