Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/FJeNsM4nCCDX5w9lUB7nD54Dcuc.roa
File: FJeNsM4nCCDX5w9lUB7nD54Dcuc.roa (raw, json)
Hash identifier: eiM8ZdVJusSdICuXJjBZOXjQz+vbQtDkAkRq0QFhgGw=
Subject key identifier: 14:97:8D:B0:CE:27:08:20:D7:E7:0F:65:50:1E:E7:0F:9E:03:72:E7
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019426B934CDFD002FD9507019CD5F2FB62F
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/FJeNsM4nCCDX5w9lUB7nD54Dcuc.roa
Signing time: Thu 02 Jan 2025 11:14:19 +0000
ROA not before: Thu 02 Jan 2025 11:14:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.81.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Mon 20 Jan 2025 16:59:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:b9:34:cd:fd:00:2f:d9:50:70:19:cd:5f:2f:b6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 2 11:14:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14978db0ce270820d7e70f65501ee70f9e0372e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:9c:66:56:2f:3c:74:6a:ff:36:8b:4e:6a:
2a:f2:e8:cc:a5:8e:46:5f:11:ad:d0:5a:2f:ec:03:
1f:14:0f:7b:a9:dd:a1:6f:ad:9f:da:10:cf:b6:19:
85:cc:e7:46:1a:67:34:5e:de:a7:2a:ff:49:96:a6:
77:b7:2c:95:18:b6:25:01:e2:de:29:e2:98:bb:98:
8a:59:7e:cb:fe:35:53:32:b6:fb:fa:01:af:72:1b:
78:98:92:24:f8:af:61:e3:b0:a3:1b:0a:44:b6:f6:
0a:82:87:8d:37:eb:eb:d8:eb:ba:c9:e8:91:90:92:
27:b3:b0:e1:43:9c:e1:a3:37:8b:ec:46:d6:3f:85:
16:95:0d:7f:60:f8:32:e8:16:f6:32:37:58:6c:8e:
05:29:f2:75:ff:7d:f7:2a:fb:7f:8f:a9:ed:49:53:
00:2c:f1:f0:db:6e:9e:f8:11:18:84:3b:1f:7f:84:
aa:af:05:69:87:1e:de:a9:ed:f8:76:4d:b4:12:ce:
ea:30:91:7b:58:22:40:9a:d3:0a:74:a5:7a:72:24:
df:04:d2:87:d3:a1:a9:95:9d:06:93:da:bd:ff:41:
3d:ba:e3:11:2f:b5:f6:4c:d8:3d:8c:75:91:26:f3:
fa:eb:c2:74:9f:57:a9:1f:b1:60:29:23:4c:d4:dc:
61:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:97:8D:B0:CE:27:08:20:D7:E7:0F:65:50:1E:E7:0F:9E:03:72:E7
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/FJeNsM4nCCDX5w9lUB7nD54Dcuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
46.38.151.0/24
185.24.150.0/24
185.29.220.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
76:97:02:d6:02:14:c3:21:ec:a1:d2:08:bf:c1:74:ea:50:ea:
dd:34:00:1e:36:b1:33:2f:e6:af:42:51:91:12:81:ad:07:41:
b5:7c:25:79:27:a4:30:d0:8d:e2:2a:d4:70:92:07:16:1b:fe:
a5:b1:17:91:2f:2c:a6:df:b0:d0:4c:47:7b:a1:53:c3:ac:47:
e7:e0:09:be:b8:00:41:48:6d:88:d8:47:d7:45:df:d9:ce:74:
d6:3b:61:6d:5c:0e:be:a1:67:e0:43:94:95:24:a6:16:6c:d0:
6c:9b:fe:67:06:51:a5:d2:16:28:f7:fd:4e:e5:c5:72:9c:b6:
1a:55:f0:08:41:8a:23:a4:7f:c7:aa:ad:b9:04:58:4a:e4:62:
5c:e1:aa:f9:7a:2b:59:fb:da:c6:9b:a1:a5:22:bf:cf:84:ab:
76:b2:8e:3a:4e:02:b2:34:d5:9f:35:36:b6:d2:01:f9:f4:c7:
e2:bb:cc:3c:b4:9d:0a:2c:0b:15:b6:f1:c0:db:17:7f:a0:7c:
9f:3a:d5:8e:ab:d9:c0:d6:07:22:f8:f9:21:0d:10:03:a1:e6:
5e:a4:e4:6d:ea:52:49:79:82:1b:d6:13:d9:5a:8e:9b:77:ce:
71:34:f4:56:f7:31:f2:ef:91:1c:13:7d:c3:ea:0d:d7:f3:a3:
b4:d8:b5:20
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAZQmuTTN/QAv2VBwGc1fL7YvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjUwMTAyMTExNDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDk3OGRiMGNlMjcwODIwZDdlNzBmNjU1MDFlZTcwZjllMDM3MmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkOcZlYvPHRq/zaLTmoq8ujMpY5G
XxGt0Fov7AMfFA97qd2hb62f2hDPthmFzOdGGmc0Xt6nKv9JlqZ3tyyVGLYlAeLe
KeKYu5iKWX7L/jVTMrb7+gGvcht4mJIk+K9h47CjGwpEtvYKgoeNN+vr2Ou6yeiR
kJIns7DhQ5zhozeL7EbWP4UWlQ1/YPgy6Bb2MjdYbI4FKfJ1/333Kvt/j6ntSVMA
LPHw226e+BEYhDsff4SqrwVphx7eqe34dk20Es7qMJF7WCJAmtMKdKV6ciTfBNKH
06GplZ0Gk9q9/0E9uuMRL7X2TNg9jHWRJvP668J0n1epH7FgKSNM1NxhgwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFBSXjbDOJwgg1+cPZVAe5w+eA3LnMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvRkplTnNNNG5DQ0RYNXc5bFVCN25ENTREY3VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQALiaBAwQA
LiaDAwQALiaMAwQALiaXAwQAuRiWAwQBuR3cAwQF1BBAAwQF1FAAMA0EAgACMAcD
BQMqAH2AMA0GCSqGSIb3DQEBCwUAA4IBAQB2lwLWAhTDIeyh0gi/wXTqUOrdNAAe
NrEzL+avQlGREoGtB0G1fCV5J6Qw0I3iKtRwkgcWG/6lsReRLyym37DQTEd7oVPD
rEfn4Am+uABBSG2I2EfXRd/ZznTWO2FtXA6+oWfgQ5SVJKYWbNBsm/5nBlGl0hYo
9/1O5cVynLYaVfAIQYojpH/Hqq25BFhK5GJc4ar5eitZ+9rGm6GlIr/PhKt2so46
TgKyNNWfNTa20gH59Mfiu8w8tJ0KLAsVtvHA2xd/oHyfOtWOq9nA1gci+PkhDRAD
oeZepORt6lJJeYIb1hPZWo6bd85xNPRW9zHy75EcE33D6g3X86O02LUg
-----END CERTIFICATE-----
Generated at Fri Apr 18 00:37:36 2025 by rpki-client