Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/9XPSdZhy1EL3stdOHLccNgoqxuo.roa
File: 9XPSdZhy1EL3stdOHLccNgoqxuo.roa (raw, json)
Hash identifier: F05p5xUC/4yXh165VGFGtL2mFhWkWRzfYdebk0Ew7u8=
Subject key identifier: F5:73:D2:75:98:72:D4:42:F7:B2:D7:4E:1C:B7:1C:36:0A:2A:C6:EA
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DCFCD81B94ADCBE52FEA3F1F0190E08B2
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/9XPSdZhy1EL3stdOHLccNgoqxuo.roa
Signing time: Thu 22 Feb 2024 07:52:48 +0000
ROA not before: Thu 22 Feb 2024 07:52:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
46.38.152.0/22 maxlen: 22
46.38.156.0/23 maxlen: 23
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.79.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Thu 22 Feb 2024 11:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cf:cd:81:b9:4a:dc:be:52:fe:a3:f1:f0:19:0e:08:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 22 07:52:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f573d2759872d442f7b2d74e1cb71c360a2ac6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0a:e8:67:71:cd:58:66:c3:4f:9c:90:7b:7d:
39:3f:e8:05:63:69:8c:b9:5c:45:79:ef:aa:f7:92:
df:e9:0d:17:ef:2c:84:06:8f:3e:c3:9f:b7:75:eb:
ec:a8:8c:9c:3d:98:b2:51:e0:cf:ec:d8:d0:7f:ef:
55:61:59:79:82:ba:3f:56:79:36:d2:7a:0e:be:3a:
b2:aa:87:87:40:f1:c8:f2:59:5e:58:d0:8a:ec:ee:
b2:f3:69:31:5f:90:62:9e:b3:23:38:5d:a1:2b:c1:
49:75:93:2a:72:19:e8:06:ca:58:b3:3d:d7:a8:04:
f1:6e:06:ac:c0:66:86:85:79:81:2f:59:99:6e:1b:
8d:0f:7d:ed:ac:55:76:8c:7f:8f:f1:19:06:1f:29:
3f:0b:19:a5:e5:25:03:3c:79:d2:53:db:0a:21:2d:
54:36:63:34:5a:7f:5a:6e:bf:47:16:de:e5:db:0a:
06:1f:4c:dc:58:75:f1:7f:27:93:eb:96:5b:c8:67:
6c:d4:1b:63:e7:7a:02:64:85:e7:e6:ad:b5:6d:f7:
9d:2e:f0:e6:64:fc:e7:96:4f:63:e0:82:a0:b7:aa:
71:a4:d6:df:ee:fb:f7:b8:70:71:f1:9b:25:4e:75:
fb:f5:9c:12:4e:9c:39:18:8a:65:aa:a7:bd:bd:37:
8b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:73:D2:75:98:72:D4:42:F7:B2:D7:4E:1C:B7:1C:36:0A:2A:C6:EA
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/9XPSdZhy1EL3stdOHLccNgoqxuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
46.38.152.0-46.38.157.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
73:96:fe:4e:d4:55:85:48:d6:e4:b9:ed:a7:3a:3e:be:4c:19:
ed:6b:bf:3a:a6:db:00:6f:d5:88:53:78:42:80:9f:a8:f0:b7:
5c:0e:d1:3d:df:68:66:cb:bb:22:92:9a:1b:b3:cd:a0:b3:b5:
b9:a0:c9:ed:74:1a:18:41:b2:e3:65:4d:d2:d2:35:bd:b5:7a:
09:2b:2b:ef:07:d8:2c:04:bc:48:5c:f2:e5:3f:47:8c:f5:92:
66:43:b2:ff:a2:63:e9:24:a3:db:d2:14:aa:03:2f:55:fd:37:
93:4b:27:e4:df:36:70:f8:38:4f:8b:4a:6f:8b:03:a7:b5:93:
d2:d6:a1:12:d4:e5:c7:83:49:b1:72:19:63:05:6d:f7:38:c9:
88:64:6d:09:05:00:ea:8e:4a:b6:03:a9:ec:2d:ac:f1:6b:6b:
ea:59:d5:d9:f3:62:ca:ba:fc:27:c5:0c:d1:1d:42:63:89:02:
12:68:47:24:8d:9f:dc:99:18:9d:87:ff:07:85:be:c6:d1:dc:
44:57:8b:16:ca:04:9e:0e:cb:b9:35:9a:a2:65:6c:e0:97:5e:
be:8b:a3:f0:9d:3e:c7:27:31:0c:b2:03:34:f4:00:1b:23:35:
ae:93:e8:7c:70:a3:29:45:eb:2d:90:29:34:ac:9a:dd:22:36:
74:d0:16:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 15:54:49 2024 by rpki-client on console-ams.rpki-client.org