Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/kWShXR5BeHfZYjYFC5xn4x-Kjnk.roa
File: kWShXR5BeHfZYjYFC5xn4x-Kjnk.roa (raw, json)
Hash identifier: V6Uopsekqig9gBI673tgCTNV7ntaqF8upviOfk8IUus=
Subject key identifier: 91:64:A1:5D:1E:41:78:77:D9:62:36:05:0B:9C:67:E3:1F:8A:8E:79
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 01877CCCADA5D88E2821498B5FB9DBBFD901
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/kWShXR5BeHfZYjYFC5xn4x-Kjnk.roa
Signing time: Thu 13 Apr 2023 22:46:41 +0000
ROA not before: Thu 13 Apr 2023 22:46:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.96.0/19 maxlen: 19
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.102.0/24 maxlen: 24
79.106.103.0/24 maxlen: 24
79.106.101.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.32.0/19 maxlen: 19
79.106.37.0/24 maxlen: 24
79.106.56.0/22 maxlen: 22
79.106.64.0/19 maxlen: 19
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.224.0/19 maxlen: 19
79.106.229.0/24 maxlen: 24
79.106.230.0/24 maxlen: 24
79.106.228.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.176.0/21 maxlen: 21
79.106.0.0/19 maxlen: 19
79.106.0.0/17 maxlen: 17
79.106.0.0/16 maxlen: 16
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7c:cc:ad:a5:d8:8e:28:21:49:8b:5f:b9:db:bf:d9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Apr 13 22:46:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9164a15d1e417877d96236050b9c67e31f8a8e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1c:f7:c5:d5:4e:60:b5:8e:7b:24:9c:35:00:
0a:55:f4:6c:ca:8c:54:bb:b2:32:22:4b:08:08:da:
3f:f2:b9:7b:8a:22:ea:6c:46:8d:4b:4a:e7:5a:c3:
e6:41:e3:63:f3:58:eb:70:35:d7:60:f1:b5:14:60:
19:8e:84:7c:4c:13:c5:05:76:75:ec:6f:65:ca:d3:
bc:53:cf:76:12:ff:c9:ed:2c:0f:b7:d6:aa:12:17:
09:83:e3:95:bb:d3:c6:b0:49:f8:8b:c3:8b:79:da:
6c:9a:04:3a:e4:4a:cd:e4:2f:c6:c3:8c:bf:df:71:
0c:e3:5d:73:90:9b:59:ec:1e:f7:51:e3:2b:59:77:
52:2f:e3:fc:0d:13:0d:5a:f9:e0:7d:61:10:48:e3:
17:42:9f:09:22:fb:73:8f:62:f2:b7:fb:59:74:bd:
97:8f:88:e0:9a:b6:32:4a:1c:7c:5c:1f:73:9a:be:
ae:7b:66:81:ac:f2:99:45:49:00:4b:cf:20:59:e9:
72:c3:9e:a8:5f:aa:b9:83:25:12:84:cc:ec:89:fd:
e1:39:b8:ef:24:88:fd:ce:52:39:f1:9a:7a:df:4e:
5c:ea:99:a5:75:14:81:db:ec:ed:90:6a:a0:37:03:
a4:8b:b6:45:96:91:8e:c2:cb:ea:cd:be:2a:b6:29:
01:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:64:A1:5D:1E:41:78:77:D9:62:36:05:0B:9C:67:E3:1F:8A:8E:79
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/kWShXR5BeHfZYjYFC5xn4x-Kjnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.0.0/16
185.171.144.0-185.171.146.255
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
85:be:8e:0d:a4:ee:75:46:56:47:90:36:66:b6:b9:00:ad:30:
82:61:a2:19:8d:c1:78:db:ea:d0:3f:41:9a:69:87:7c:98:07:
a4:bd:e0:2f:12:28:a4:24:cf:20:b4:2a:dc:0a:ed:2f:1c:de:
a1:1d:7b:48:b8:63:71:3f:34:57:e9:61:c6:b1:a6:a7:ba:3a:
9b:50:3a:e8:42:2d:36:03:70:17:1f:ef:b7:91:e2:42:62:9d:
b1:73:7a:10:3c:3a:25:ec:fc:03:ef:94:a2:90:2a:f8:ec:9b:
0e:63:6d:b6:d1:72:17:8c:7d:33:93:bc:fc:7f:59:99:ea:a5:
cb:3d:1d:d3:79:78:54:7d:64:75:8d:ad:21:3f:22:c0:05:a1:
77:b4:e2:de:60:94:8f:52:46:79:c3:45:da:de:d6:e4:d7:10:
36:f4:70:6d:66:80:a2:08:72:04:bd:48:e6:36:9d:73:66:11:
75:17:19:22:d7:85:2b:1a:61:b5:bc:a8:54:0f:13:6c:55:87:
8c:69:72:49:70:9b:ab:30:10:5e:d7:11:c0:bd:83:63:b3:17:
71:a3:b3:31:01:e6:c7:e6:58:56:02:ee:2d:fb:60:fe:21:75:
68:2e:9f:d5:7b:64:e0:f2:1c:44:f9:2c:eb:28:dd:77:88:b1:
cc:fe:d4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:01 2023 by rpki-client on console.sobornost.net