Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/NuoDnODfkDayRkoIfx5ID-WzLcg.roa
File: NuoDnODfkDayRkoIfx5ID-WzLcg.roa (raw, json)
Hash identifier: dK2xsxjhnN85KnAp4br6Sw4WR5B/5NfF1z3W+xpUe+E=
Subject key identifier: 36:EA:03:9C:E0:DF:90:36:B2:46:4A:08:7F:1E:48:0F:E5:B3:2D:C8
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0190AB982A585B733FA7DC83A07CEA0324E7
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/NuoDnODfkDayRkoIfx5ID-WzLcg.roa
Signing time: Sat 13 Jul 2024 10:16:34 +0000
ROA not before: Sat 13 Jul 2024 10:16:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Sun 28 Jul 2024 13:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ab:98:2a:58:5b:73:3f:a7:dc:83:a0:7c:ea:03:24:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 13 10:16:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36ea039ce0df9036b2464a087f1e480fe5b32dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:98:f1:2d:c6:d3:c5:ee:6a:ad:e3:98:8e:b1:
ff:74:38:32:37:ec:f8:4f:5f:f5:35:6f:d8:c5:25:
e1:bf:31:12:2e:41:45:be:c2:d7:c4:1f:6d:c7:38:
72:50:42:82:77:36:4c:0e:88:b8:f8:fe:94:bd:a7:
8d:98:b4:6d:9a:3c:84:d4:87:01:6c:d2:6e:a2:a0:
84:6d:42:a0:d6:86:8e:74:47:17:1e:50:23:e4:a5:
1a:26:9a:68:c3:87:cb:11:7e:f0:59:01:b6:5d:60:
5d:77:ea:db:39:41:32:b7:8e:80:10:3c:e5:6b:1f:
f5:2a:10:e9:9c:45:96:3d:f8:68:7c:54:1e:85:43:
f8:5b:bb:8f:be:87:c4:4d:38:29:b8:2f:0e:9b:d3:
94:93:9c:81:2a:6c:ed:4d:a0:46:7b:78:8e:e8:43:
e2:8b:04:df:07:0c:b9:61:e1:a7:03:94:a9:8b:e3:
21:b5:77:1a:38:ea:fd:68:32:34:67:0c:e7:9e:63:
a4:19:cb:1d:4f:6d:15:83:bb:f3:de:f1:93:e3:e2:
50:1d:40:b8:0c:a4:31:6a:61:fb:b4:7e:74:59:0c:
a6:0a:c5:dc:39:67:7e:e5:ae:a4:d2:4c:e5:05:0d:
d1:5e:18:55:f2:23:3c:c8:53:30:29:59:f7:47:10:
81:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EA:03:9C:E0:DF:90:36:B2:46:4A:08:7F:1E:48:0F:E5:B3:2D:C8
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/NuoDnODfkDayRkoIfx5ID-WzLcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
185.24.149.0-185.24.150.255
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
1f:dc:d7:b9:73:53:be:54:7e:3c:76:4b:c9:a3:78:36:c8:fc:
2f:7e:04:a1:7c:0b:53:f0:24:aa:fb:5e:ce:d3:b4:a2:7f:9e:
c8:e4:cc:32:e7:fd:b9:fc:1c:d3:29:f8:44:50:97:7d:8b:01:
03:0f:14:80:f6:e2:27:5f:15:99:8b:b1:e9:54:d8:0b:69:6f:
c6:41:7a:a7:bd:85:20:c5:7f:2a:54:61:a2:56:b0:0e:8a:11:
d3:99:e3:14:a3:c9:18:cd:48:49:f8:7a:34:d2:8c:6f:90:7b:
08:ad:48:a5:30:9c:06:99:09:c9:e5:80:9d:98:93:fc:2f:b6:
9e:a3:fb:69:ff:c6:4f:2a:cf:da:22:84:43:8c:ba:e1:74:8e:
93:ec:f7:d4:ef:ce:57:41:64:05:e5:0c:ee:6d:c2:12:fe:f6:
71:e5:4d:bc:02:eb:00:29:8f:ab:10:2f:a3:25:dd:df:8f:c3:
32:1d:2e:dc:1b:d9:63:30:a1:e6:13:22:04:82:31:ca:85:fc:
e6:72:2a:e1:ec:f2:13:48:f8:8b:5e:76:60:e0:f4:31:bf:c6:
80:38:6c:a3:62:88:59:72:a8:50:21:0c:a9:51:78:af:31:47:
8c:15:3a:24:55:40:89:3f:9b:b6:20:e7:4b:bc:2a:34:0a:eb:
28:ef:90:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 18:02:32 2024 by rpki-client on console-ams.rpki-client.org