Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JAjSM0FMbrinTYWMilYzmEqo6hE.roa
File: JAjSM0FMbrinTYWMilYzmEqo6hE.roa (raw, json)
Hash identifier: ANyvbnH39F/5Abc2D2FxKvqD8XMMT3juquTeyC9ZUGQ=
Subject key identifier: 24:08:D2:33:41:4C:6E:B8:A7:4D:85:8C:8A:56:33:98:4A:A8:EA:11
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018C880C53BD9DA0FC162A03873CB204D10D
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JAjSM0FMbrinTYWMilYzmEqo6hE.roa
Signing time: Wed 20 Dec 2023 16:25:58 +0000
ROA not before: Wed 20 Dec 2023 16:25:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44889
IP address blocks: 212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.78.0/23 maxlen: 23
212.16.72.0/24 maxlen: 25
212.16.80.0/24 maxlen: 24
109.94.164.0/23 maxlen: 23
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.16.92.0/23 maxlen: 23
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/23 maxlen: 23
212.80.18.0/23 maxlen: 23
212.80.29.0/24 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.144.0/21 maxlen: 21
46.38.144.0/23 maxlen: 23
46.38.140.0/24 maxlen: 24
46.38.150.0/24 maxlen: 24
46.38.156.0/23 maxlen: 23
46.38.158.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 20 Dec 2023 16:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:88:0c:53:bd:9d:a0:fc:16:2a:03:87:3c:b2:04:d1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 20 16:25:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2408d233414c6eb8a74d858c8a5633984aa8ea11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:f1:57:2b:08:76:51:c8:65:3d:99:ae:4a:
af:92:8c:c1:22:4b:3c:58:81:b6:b6:60:d2:b1:53:
6b:ec:f9:60:91:60:ab:53:58:65:8e:b4:44:18:40:
ca:ee:20:63:07:aa:64:38:d8:c3:53:00:3f:5a:76:
53:26:ed:87:0f:31:59:58:43:b9:00:67:b4:c3:b0:
f4:c7:9d:58:83:18:0d:86:91:f7:4d:1d:75:2e:b8:
3f:6a:3b:e4:11:8f:84:45:3b:71:d8:53:65:3a:f8:
2b:1a:0f:b2:e6:f3:5b:6f:43:ec:f1:ca:88:45:5b:
3b:fb:1b:c9:5f:ef:d4:a7:55:ac:6e:4e:e9:06:6f:
25:e8:c9:83:19:6a:06:01:be:a2:4d:69:31:f4:08:
ce:ae:71:9c:12:77:33:6a:7d:af:07:9f:a4:a9:56:
52:d6:e3:9e:6c:08:c3:30:95:14:1c:78:ba:5b:7b:
fd:c3:a8:e1:82:a0:88:88:6c:29:ee:dd:f3:aa:d5:
6e:91:e7:6e:44:d9:71:12:8b:4f:4c:93:bf:06:88:
e6:5b:e7:39:3b:ed:50:fc:1d:6e:7c:b2:94:3c:97:
6c:41:2c:4d:8c:78:93:7c:4b:2f:ce:70:0f:00:ce:
ef:ab:79:f0:62:e5:52:91:61:2d:de:f0:8b:47:46:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:08:D2:33:41:4C:6E:B8:A7:4D:85:8C:8A:56:33:98:4A:A8:EA:11
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JAjSM0FMbrinTYWMilYzmEqo6hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/23
46.38.144.0/21
46.38.156.0-46.38.158.255
109.94.164.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
65:06:7f:2f:fb:96:cf:ff:a9:4c:ab:85:85:4f:ef:db:44:d7:
d6:d5:22:86:fe:c5:c8:ef:55:c3:66:de:f2:11:68:aa:a9:04:
16:da:a2:de:15:9f:45:20:93:9f:8e:65:d0:e2:4e:02:0a:ee:
be:2d:fc:c4:15:88:98:e5:99:09:2c:a0:e9:c6:a5:57:82:d9:
17:e8:eb:20:70:7f:9c:34:84:62:f8:50:e7:39:1c:94:cf:3a:
5e:58:93:95:88:b0:bf:c1:52:39:b3:ef:af:fd:c1:f1:75:c1:
83:3a:7a:66:11:f7:15:66:44:3a:2a:a8:24:33:7d:6f:9d:be:
6c:66:a0:73:bf:81:db:27:a9:38:a4:70:79:8c:2f:a8:b5:a0:
01:21:ef:66:e1:67:62:7e:a5:7b:d2:b4:0e:58:3e:67:4b:55:
78:e0:7b:26:84:d1:68:64:94:7b:1d:51:83:aa:cb:72:21:45:
73:c8:8e:cd:3c:5e:6c:31:51:6f:da:17:f5:46:0b:76:28:22:
18:de:d7:b9:69:6b:ad:98:b2:34:c0:44:0a:d3:c4:60:a1:80:
06:5a:de:61:b3:85:98:68:9e:ae:c8:8a:31:75:ee:66:ee:b5:
d2:89:f8:7e:50:ea:53:93:8e:a5:fb:e1:c8:41:8d:91:5e:27:
bb:64:8d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:06 2024 by rpki-client on console-ams.rpki-client.org