Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ORD0uggqW7DZCG_7lvSzR4iWNMA.roa
File: ORD0uggqW7DZCG_7lvSzR4iWNMA.roa (raw, json)
Hash identifier: jIy1NqrEdHTjnYGXMp8fPh32TwOEXe4wVTensow6WXQ=
Subject key identifier: 39:10:F4:BA:08:2A:5B:B0:D9:08:6F:FB:96:F4:B3:47:88:96:34:C0
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0191091AECEBAFCB66357A77CA1CA0EAB381
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ORD0uggqW7DZCG_7lvSzR4iWNMA.roa
Signing time: Wed 31 Jul 2024 14:04:05 +0000
ROA not before: Wed 31 Jul 2024 14:04:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Sat 10 Aug 2024 06:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:1a:ec:eb:af:cb:66:35:7a:77:ca:1c:a0:ea:b3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 31 14:04:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3910f4ba082a5bb0d9086ffb96f4b347889634c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:12:fa:b1:cc:43:78:fe:22:29:f5:0a:15:
b0:5b:78:64:fa:de:1b:a7:8b:62:a7:63:5e:de:e8:
1e:f1:10:5f:6f:74:cd:e6:d6:c8:d6:17:3d:e0:e4:
01:48:e3:81:fa:40:7b:fd:2e:18:97:7c:7d:3e:f0:
44:bf:f8:01:d4:85:e2:d0:30:9d:50:c0:8f:f2:e1:
e1:cd:e7:89:d9:2c:03:83:fc:3d:5c:13:70:41:20:
7a:ca:dd:5d:27:b9:e9:f4:0c:79:73:42:bc:c3:61:
35:b1:70:ab:0d:29:16:9b:5e:09:73:80:6d:ee:05:
4a:0d:24:d7:0b:f8:ca:9c:70:55:36:44:c6:63:a2:
58:d4:6b:6e:e7:cb:aa:67:f3:da:da:1e:45:f6:0c:
76:b0:65:d4:c8:ca:35:5d:e3:6c:a3:e8:c9:49:83:
0c:d1:80:36:e9:33:cc:5d:db:82:28:6b:38:ea:8a:
00:9e:dd:62:04:90:61:87:1b:d6:c4:76:4e:db:23:
f2:c2:5a:28:04:e7:1c:5f:c4:e0:19:87:b5:95:ab:
ce:99:f8:5b:48:00:cf:32:24:02:30:16:71:06:c4:
5f:db:2a:0b:4e:18:70:c1:7d:a9:7f:69:5e:46:09:
70:dd:ef:36:6f:87:84:9e:8f:e2:a8:ed:46:e1:a6:
ff:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:10:F4:BA:08:2A:5B:B0:D9:08:6F:FB:96:F4:B3:47:88:96:34:C0
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ORD0uggqW7DZCG_7lvSzR4iWNMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
185.24.150.0/24
185.29.220.0/23
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
a3:04:e9:41:65:b4:6d:e4:de:b7:80:76:a9:76:7d:f1:b9:9d:
85:95:75:bc:79:10:cd:42:90:60:98:cc:05:55:2d:a4:57:7a:
6d:f5:a8:a4:d3:60:e9:55:4f:0e:9a:f1:03:ab:c0:7e:74:c6:
59:14:c4:35:47:00:77:d9:14:24:ce:6b:ee:fe:e7:f0:57:a4:
85:a5:a3:d9:9f:e0:c2:6d:49:da:54:4d:23:b1:a0:a7:c0:d1:
1b:c4:19:cf:08:10:fa:c1:0c:20:53:ad:e3:93:d6:a6:3f:7e:
2c:88:12:b8:e6:9d:e3:23:f2:60:f4:3b:69:18:ad:b4:e1:76:
c6:be:67:03:cc:3e:98:91:b6:52:78:a8:7d:50:7b:2a:fa:80:
ee:db:ec:11:6f:d2:c1:32:9c:48:9e:df:a0:74:2b:9b:68:6e:
f7:c9:28:ed:c8:50:2b:ce:08:e6:2c:e7:8a:76:ad:92:92:3e:
bc:da:c6:77:e1:8a:da:87:81:71:2c:83:71:7d:b0:5e:9e:86:
11:a1:2d:69:5e:30:94:26:56:be:65:7d:06:46:8b:68:40:7e:
8e:07:4d:35:e7:f7:6c:61:1e:cd:81:aa:05:1a:08:a7:00:b5:
d9:e5:4d:87:2a:3b:cd:46:a6:d9:31:f5:d3:95:0c:8c:cb:ba:
72:d0:d8:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 10 09:26:57 2024 by rpki-client on console-fra.rpki-client.org