Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/_TdizwJ_vmTCwGbbngFTEEwu0yc.roa
File: _TdizwJ_vmTCwGbbngFTEEwu0yc.roa (raw, json)
Hash identifier: f87qcfKEG+XcW0cN8OyIcxAD6EYNjgGPqEzfUzemxlI=
Subject key identifier: FD:37:62:CF:02:7F:BE:64:C2:C0:66:DB:9E:01:53:10:4C:2E:D3:27
Certificate issuer: /CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Certificate serial: 019300E0A0DBCE220D9958FB3771A94FD5B5
Authority key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/_TdizwJ_vmTCwGbbngFTEEwu0yc.roa
Signing time: Wed 06 Nov 2024 09:49:01 +0000
ROA not before: Wed 06 Nov 2024 09:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64476
IP address blocks: 46.247.136.0/23 maxlen: 23
46.247.138.0/23 maxlen: 23
46.247.140.0/24 maxlen: 24
46.247.141.0/24 maxlen: 24
85.190.64.0/24 maxlen: 24
85.190.65.0/24 maxlen: 24
85.190.67.0/24 maxlen: 24
85.190.68.0/24 maxlen: 24
85.190.72.0/24 maxlen: 24
85.190.84.0/24 maxlen: 24
85.190.85.0/24 maxlen: 24
85.190.88.0/22 maxlen: 22
87.121.208.0/21 maxlen: 21
185.161.168.0/22 maxlen: 22
185.231.8.0/22 maxlen: 22
185.253.168.0/24 maxlen: 24
185.253.169.0/24 maxlen: 24
185.253.170.0/24 maxlen: 24
185.253.171.0/24 maxlen: 24
2a0a:e805:210::/44 maxlen: 44
2a0a:e805:500::/40 maxlen: 40
2a0a:e805:610::/44 maxlen: 44
2a0a:e805:710::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 21 Nov 2024 07:51:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:00:e0:a0:db:ce:22:0d:99:58:fb:37:71:a9:4f:d5:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Validity
Not Before: Nov 6 09:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd3762cf027fbe64c2c066db9e0153104c2ed327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e4:75:10:01:90:55:df:1f:94:38:81:c9:ef:
1d:e3:1a:0b:16:3b:1b:10:d8:ea:3c:44:dd:b8:37:
5c:b0:e2:39:c0:73:47:e8:24:81:9f:5e:b6:66:cf:
16:73:44:06:26:f0:7e:f7:bd:2a:b8:47:7c:bf:d3:
bd:66:73:4d:d7:fb:89:27:66:ba:1b:04:51:90:49:
53:78:fd:5a:47:eb:e2:e1:87:55:85:33:30:bd:06:
6a:89:29:10:29:33:23:34:4e:3d:ff:b2:b9:ff:74:
74:45:06:1e:fa:e1:5f:89:99:79:35:41:96:1d:e3:
5a:30:bd:c8:1e:89:ba:a7:75:eb:eb:d3:ff:67:07:
6e:a6:91:d8:44:f2:82:45:30:99:6a:35:74:24:1f:
f3:5b:35:78:35:8b:6c:27:84:85:19:1e:a4:26:eb:
88:d1:bd:d4:34:1f:22:1f:cb:2a:66:88:84:f3:4a:
ee:57:16:04:6d:be:a9:d6:0d:dd:29:0f:6f:e4:ef:
0f:99:54:cd:21:24:f9:5d:27:e3:d1:4e:35:51:51:
b1:e2:94:f6:0c:db:56:43:39:4f:d5:8c:ff:70:a6:
7e:a3:99:6b:2c:a2:1c:40:fb:93:f5:63:f8:56:af:
02:74:77:fa:f4:d6:30:d4:86:20:d3:d1:9f:b4:4f:
13:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:37:62:CF:02:7F:BE:64:C2:C0:66:DB:9E:01:53:10:4C:2E:D3:27
X509v3 Authority Key Identifier:
keyid:6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/_TdizwJ_vmTCwGbbngFTEEwu0yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0-46.247.141.255
85.190.64.0/23
85.190.67.0-85.190.68.255
85.190.72.0/24
85.190.84.0/23
85.190.88.0/22
87.121.208.0/21
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e805:210::/44
2a0a:e805:500::/40
2a0a:e805:610::/44
2a0a:e805:710::/44
Signature Algorithm: sha256WithRSAEncryption
38:95:70:ef:f7:d8:d2:9b:83:99:a9:33:a5:c6:e7:51:de:63:
0a:ec:c9:93:12:e4:0a:1d:9a:3c:13:62:3b:ed:21:98:69:24:
2a:69:f2:37:ba:82:0a:10:95:15:16:ee:cf:b8:39:51:f8:96:
05:29:01:4a:5d:23:7c:6c:23:56:07:9f:c0:7f:2e:2a:84:57:
3f:34:8d:4a:c2:5c:02:82:84:fb:a8:7f:b3:f4:6e:6f:29:b5:
06:79:f3:e4:65:f5:f1:5f:0d:f5:46:3a:27:c8:9e:f9:cc:c3:
f1:96:63:46:85:be:72:0c:1f:68:94:c8:58:0b:a1:a1:ab:42:
52:ed:39:a6:fe:98:48:2e:41:f2:56:9e:81:2d:31:7e:0b:98:
57:5a:e9:fd:55:81:b6:87:be:68:5a:56:ec:f0:4c:ed:40:a2:
d9:ff:34:0c:50:29:48:3e:12:f5:9d:6b:9a:be:69:8b:91:13:
da:26:e2:16:34:2b:dc:66:cd:e8:93:70:22:1e:ed:9d:5d:04:
2a:49:36:91:4f:06:f4:97:37:63:d3:8b:2d:d2:54:1d:a1:4e:
9c:f5:d8:c3:d0:cb:21:7b:8a:e2:d2:dc:61:12:20:e4:52:aa:
c2:96:54:45:b7:0a:32:1a:ca:f0:3a:5c:0e:f9:5a:7f:a4:da:
ea:b7:5b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 09:47:20 2024 by rpki-client on console-ams.rpki-client.org