Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JszbNnVcpPw45dX6r1aiZMenkGE.roa
File: JszbNnVcpPw45dX6r1aiZMenkGE.roa (raw, json)
Hash identifier: b2r38GDzxjprxXR/19dnIuqvs68VfZZSmL/I3O7OooI=
Subject key identifier: 26:CC:DB:36:75:5C:A4:FC:38:E5:D5:FA:AF:56:A2:64:C7:A7:90:61
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018E8698CEC9E735459F3A8FA44BB8C37ACF
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JszbNnVcpPw45dX6r1aiZMenkGE.roa
Signing time: Thu 28 Mar 2024 19:45:45 +0000
ROA not before: Thu 28 Mar 2024 19:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
46.38.156.0/23 maxlen: 23
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Tue 09 Apr 2024 12:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:98:ce:c9:e7:35:45:9f:3a:8f:a4:4b:b8:c3:7a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Mar 28 19:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26ccdb36755ca4fc38e5d5faaf56a264c7a79061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:ff:29:64:57:cc:5d:ce:52:49:2d:ec:de:
bb:85:ed:21:77:2b:34:f7:00:b7:3e:25:ee:cd:9e:
8f:33:6a:8a:0e:ee:ef:33:56:e2:f2:d8:80:3b:5e:
15:47:45:20:dd:74:f7:45:09:73:06:71:b6:7a:7e:
18:96:ac:a5:c2:9c:ca:36:2b:9e:3a:15:1e:56:13:
a5:a1:e7:e5:d8:c1:4e:b2:c4:b5:89:56:e2:dd:bb:
47:fb:f8:26:a6:64:1c:49:82:c6:f2:a3:d2:10:d4:
25:f0:cd:9b:ca:50:35:97:20:91:b9:cb:b0:1d:3f:
20:bf:29:24:4b:8f:4c:ae:a0:35:a0:ea:49:09:5b:
cb:57:f9:2b:e1:f1:39:2b:70:76:52:17:c5:12:b3:
84:0d:96:62:ba:0f:7a:46:6d:5e:01:ce:40:9b:57:
a1:0a:6a:eb:aa:30:f5:91:44:fe:b3:1b:0b:a1:e2:
07:0d:ea:37:bd:8c:0a:8c:7a:3b:7c:f4:ba:34:2a:
1a:f1:14:28:83:16:69:12:8e:7b:9a:06:6e:d8:2a:
73:4a:ab:2c:31:e9:a6:a7:53:f9:fc:41:82:db:94:
17:d8:14:8e:74:f6:dc:28:fc:cd:00:99:44:d2:04:
ea:0c:d9:6b:c1:12:2d:fe:ce:9b:e9:09:5f:d8:48:
62:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CC:DB:36:75:5C:A4:FC:38:E5:D5:FA:AF:56:A2:64:C7:A7:90:61
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/JszbNnVcpPw45dX6r1aiZMenkGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
46.38.156.0/23
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
7c:b7:bf:b8:a9:04:b6:ee:c9:d9:62:2f:82:ce:26:83:a0:07:
e4:fe:8e:0a:72:b4:40:5e:25:d3:07:a5:e4:b0:9b:34:fc:cc:
3f:84:e9:8e:28:f4:14:51:5d:6b:56:3b:05:a6:83:9c:a9:23:
d6:03:04:7c:51:2f:2d:2c:06:dc:65:36:bb:f1:3e:41:ee:db:
d7:1c:ea:df:dd:f0:4e:2a:11:df:b4:ec:8c:22:1d:e1:08:84:
ea:6f:cb:7d:47:63:03:b4:ed:1f:c0:24:ae:27:ea:06:d8:cf:
c9:2f:31:8d:2c:5b:ee:6d:5d:a9:39:a9:85:ce:b5:90:b1:1b:
89:ff:d3:d9:34:92:dd:a6:35:04:02:5c:ca:08:1b:31:74:39:
bc:67:f4:76:c8:6f:15:1a:ab:c4:f7:eb:70:d2:04:0d:00:96:
9a:47:c8:87:4f:03:3b:e7:59:56:16:a8:c3:d3:0a:56:01:db:
05:95:96:1a:90:d3:e2:0d:74:5f:67:2f:56:9e:ec:4b:ee:ce:
80:99:bc:b7:79:6b:e0:ac:2d:17:0a:66:e1:52:57:07:c8:2c:
d5:78:a3:f3:ea:f0:ba:f6:3e:71:aa:c7:a7:8c:d8:91:93:c9:
e8:c9:11:30:53:e4:eb:7b:a2:de:3d:9f:3a:7e:08:b8:7a:da:
29:15:e6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 17:28:24 2024 by rpki-client on console-fra.rpki-client.org