Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Gm_eAr8AzeJJ1iXZ1i_RLYX3ROY.roa
File: Gm_eAr8AzeJJ1iXZ1i_RLYX3ROY.roa (raw, json)
Hash identifier: 4SggAuyhCNP1d5svkQ4GEymKxunI9WgScokwaVD4qbM=
Subject key identifier: 1A:6F:DE:02:BF:00:CD:E2:49:D6:25:D9:D6:2F:D1:2D:85:F7:44:E6
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DA6FB477546A227128A6659B48148BB31
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Gm_eAr8AzeJJ1iXZ1i_RLYX3ROY.roa
Signing time: Wed 14 Feb 2024 09:38:22 +0000
ROA not before: Wed 14 Feb 2024 09:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
46.38.152.0/22 maxlen: 22
46.38.156.0/23 maxlen: 23
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.72.0/24 maxlen: 24
185.143.73.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.78.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Thu 15 Feb 2024 09:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a6:fb:47:75:46:a2:27:12:8a:66:59:b4:81:48:bb:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 14 09:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a6fde02bf00cde249d625d9d62fd12d85f744e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8f:6e:eb:a0:36:22:eb:c9:99:98:2c:a4:e1:
52:6a:e2:43:e3:a8:d1:d6:f9:d2:64:15:e9:97:f5:
6f:20:5a:37:12:bb:b1:e8:15:64:ac:5d:11:f2:88:
38:73:21:ef:3d:a3:fe:82:5e:b3:25:79:ae:38:0b:
a5:86:7c:cc:c3:d2:86:1a:2f:84:3f:1b:fc:5e:4f:
7b:c2:5c:6d:07:64:17:b0:74:00:ee:43:bc:ec:2d:
08:9c:7a:86:06:eb:22:15:53:05:0f:b1:b0:38:76:
ad:ce:48:69:85:db:58:fd:da:e0:26:5b:6f:43:d2:
03:43:5a:52:77:57:9e:5c:b4:fc:4b:d5:93:c8:c9:
e2:92:b7:ea:a2:51:cf:b1:b0:47:52:af:b8:2b:a2:
31:da:ba:c8:2e:ac:fa:b9:6f:b6:d6:bc:61:96:36:
98:e0:29:18:02:12:0e:cd:fe:5b:48:16:7f:91:5c:
4d:f6:3b:96:85:06:f5:26:b1:e3:4b:fa:e1:81:06:
cb:b1:e6:57:5b:95:31:62:b7:e3:aa:f6:b5:f5:5d:
53:a9:97:b8:01:49:3e:75:ad:c1:d9:34:23:bc:a8:
64:ed:02:18:db:18:07:96:35:dc:b2:d1:84:f8:af:
fa:91:82:2f:2f:b7:e7:b4:bd:91:d8:b4:4a:2a:ea:
8b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6F:DE:02:BF:00:CD:E2:49:D6:25:D9:D6:2F:D1:2D:85:F7:44:E6
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Gm_eAr8AzeJJ1iXZ1i_RLYX3ROY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
46.38.152.0-46.38.157.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
0b:79:59:59:9a:28:a8:15:79:41:34:c4:fd:39:a4:63:eb:90:
de:dc:aa:d9:42:bd:8f:a7:1e:80:c4:d4:46:4e:6c:22:cb:a6:
66:0a:6f:de:b7:ad:59:67:2c:30:53:06:28:01:89:56:6c:69:
c1:9f:2c:90:f8:2b:2c:5b:5e:aa:9f:e0:d0:84:04:be:8b:c9:
14:98:64:12:27:b1:fd:00:26:3c:05:64:b6:5f:4d:70:5f:d5:
50:b6:53:6a:fa:93:ac:7c:b5:d9:59:00:33:e0:23:de:ca:ff:
bb:1a:e1:bc:6e:1e:ff:8c:3b:aa:19:b0:f7:10:6f:22:65:ef:
c5:d7:e9:5a:28:a5:62:c1:f0:63:8e:12:50:08:7a:7a:4d:c3:
43:1d:a8:0d:e5:f8:43:38:fe:39:f6:ad:d6:cc:ff:cc:e5:ab:
d6:b5:0b:be:74:81:55:75:c9:36:ae:26:43:cc:a8:c8:7e:4f:
ea:3e:0a:05:0a:f0:93:0a:ba:6e:13:11:90:c5:1b:2e:93:da:
a7:02:25:09:b9:1b:10:b3:09:94:9d:73:82:f5:bd:db:ab:b5:
3c:d7:7b:85:af:2d:5e:40:78:89:d5:b9:22:b0:fa:93:1a:2a:
c1:d1:5a:32:d6:f2:46:cd:38:0b:9b:75:cb:50:a1:8d:3e:a5:
c2:b6:14:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 13:09:22 2024 by rpki-client on console-fra.rpki-client.org