Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/NoXtWhWlriUYmZpboa0HTfMXmWc.roa
File: NoXtWhWlriUYmZpboa0HTfMXmWc.roa (raw, json)
Hash identifier: Vz+pUHrWIn/D9YLMb8o7KFtkn96pJGqrbNP9tvR8k1E=
Subject key identifier: 36:85:ED:5A:15:A5:AE:25:18:99:9A:5B:A1:AD:07:4D:F3:17:99:67
Certificate issuer: /CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Certificate serial: 018DB3D5AE0D18B065BDFEEC74AA87C6150D
Authority key identifier: 9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/NoXtWhWlriUYmZpboa0HTfMXmWc.roa
Signing time: Fri 16 Feb 2024 21:32:21 +0000
ROA not before: Fri 16 Feb 2024 21:32:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 46.229.243.0/24 maxlen: 24
46.229.251.0/24 maxlen: 24
46.229.253.0/24 maxlen: 24
77.74.123.0/24 maxlen: 24
83.229.61.0/24 maxlen: 24
85.204.107.0/24 maxlen: 24
92.42.100.0/24 maxlen: 24
103.112.171.0/24 maxlen: 24
103.244.144.0/24 maxlen: 24
103.244.145.0/24 maxlen: 24
103.246.248.0/24 maxlen: 24
103.246.249.0/24 maxlen: 24
185.104.63.0/24 maxlen: 24
195.74.93.0/24 maxlen: 24
2a12:3200::/36 maxlen: 36
2a12:3200:1000::/36 maxlen: 36
2a12:3200:2000::/36 maxlen: 36
2a12:3200:3000::/36 maxlen: 36
2a12:3200:4000::/36 maxlen: 36
2a12:3200:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 11 Mar 2024 16:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b3:d5:ae:0d:18:b0:65:bd:fe:ec:74:aa:87:c6:15:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Validity
Not Before: Feb 16 21:32:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3685ed5a15a5ae2518999a5ba1ad074df3179967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:e6:6d:0c:e6:58:13:47:28:67:e7:f0:73:
79:52:d9:b6:d4:d9:e7:e3:e9:22:6d:a1:e4:11:cb:
9d:6e:db:3f:a4:70:89:ad:dc:8d:3a:fa:41:27:59:
f1:c2:49:59:84:f1:48:da:0f:35:3a:b7:f7:a7:2c:
6b:4d:78:75:8a:19:99:60:70:3d:63:f1:c3:71:82:
76:ef:8b:52:bf:2a:1d:6a:41:78:4d:e6:90:8b:b1:
4b:73:03:c9:59:3c:b3:a5:96:7c:c2:af:72:ce:ca:
67:27:fc:f4:99:8a:72:d1:7e:19:b9:38:94:99:6e:
49:72:7e:3e:56:1c:07:65:59:75:89:75:60:0d:6b:
da:79:9d:c1:b9:e5:4a:34:54:29:64:02:d7:5f:81:
be:94:c0:f8:fb:53:2c:4e:9b:f3:9e:bc:0d:b3:2d:
c5:18:44:78:28:9e:6c:d8:ec:67:b0:25:52:5a:2c:
c0:59:fe:02:2b:ef:08:71:a1:a2:87:a8:d9:ae:b6:
db:4e:9a:7a:d5:a6:da:16:05:c4:ea:00:fc:7c:67:
20:74:85:69:ff:27:a2:64:cc:82:4f:dd:6d:47:67:
89:15:e7:d2:72:6f:50:6a:f3:bb:2b:bb:29:b6:5f:
9f:72:df:1e:0f:32:a2:1b:07:d5:d5:b9:2b:a8:73:
8d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:85:ED:5A:15:A5:AE:25:18:99:9A:5B:A1:AD:07:4D:F3:17:99:67
X509v3 Authority Key Identifier:
keyid:9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/NoXtWhWlriUYmZpboa0HTfMXmWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/nrUOU4bICaD65lMKpejZglJR3tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.243.0/24
46.229.251.0/24
46.229.253.0/24
77.74.123.0/24
83.229.61.0/24
85.204.107.0/24
92.42.100.0/24
103.112.171.0/24
103.244.144.0/23
103.246.248.0/23
185.104.63.0/24
195.74.93.0/24
IPv6:
2a12:3200::-2a12:3200:5fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
94:c1:74:33:04:de:8d:33:c9:48:51:0a:32:38:28:cf:4a:46:
30:22:56:7c:96:fe:9c:46:56:01:02:18:ef:c3:06:b0:ec:f6:
53:05:6e:29:da:93:87:a1:e6:e2:d5:f7:b1:72:f3:98:7f:dd:
d3:a9:d8:fe:ff:35:04:c9:ed:53:46:d6:b7:94:5b:3f:9e:4d:
f1:1e:37:b3:f2:7d:f4:cd:39:ed:f8:81:6e:58:9d:bd:aa:80:
8e:51:ce:73:de:df:95:ac:e0:93:a4:d7:31:c6:d1:30:28:45:
5d:37:6a:48:21:86:2a:07:f5:67:70:a4:fa:a7:3f:a8:c3:81:
52:0b:f9:98:24:a7:65:e0:9d:21:e8:8a:59:fc:47:3c:31:64:
7d:a3:4c:ba:12:7e:92:c9:f7:52:8a:b0:22:47:1f:33:b7:2e:
0d:74:ca:56:07:cf:08:ec:4e:10:22:27:5f:2f:69:5c:d0:5e:
ef:52:0e:f1:90:e9:82:52:45:ab:37:66:a7:ee:9a:e9:1b:21:
72:c9:f6:00:9e:9d:82:2b:cd:b8:a7:71:c9:e3:fd:7e:0e:01:
a3:6c:45:97:9d:7e:79:53:d5:94:cd:36:23:38:93:9f:11:10:
d0:2c:28:33:4b:9d:7e:1b:f0:86:3c:b9:c8:61:dc:c3:10:cd:
cb:01:7b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:19 2024 by rpki-client on console-fra.rpki-client.org