Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/UfYkb3JSmD1o9jH-rfup7bDRUBY.roa
File: UfYkb3JSmD1o9jH-rfup7bDRUBY.roa (raw, json)
Hash identifier: e088cqDQIGekNMlFXbHDjqAMJcsPVuyU6sCvhKSMdnI=
Subject key identifier: 51:F6:24:6F:72:52:98:3D:68:F6:31:FE:AD:FB:A9:ED:B0:D1:50:16
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019198F1B4202CC08E4A4A1ACF90F7767720
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/UfYkb3JSmD1o9jH-rfup7bDRUBY.roa
Signing time: Wed 28 Aug 2024 12:24:22 +0000
ROA not before: Wed 28 Aug 2024 12:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.81.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Mon 16 Sep 2024 07:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:98:f1:b4:20:2c:c0:8e:4a:4a:1a:cf:90:f7:76:77:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Aug 28 12:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51f6246f7252983d68f631feadfba9edb0d15016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:60:a4:4e:e2:95:b4:a9:9e:23:fa:03:5c:ea:
b1:10:5f:36:8f:b5:4f:2a:59:2a:13:6c:1f:f0:cd:
f3:21:7a:7f:9f:9f:8a:1d:aa:21:fe:32:3b:c8:3d:
19:52:cd:be:4e:e7:52:d1:20:91:0c:c7:9c:6c:c4:
3b:37:bd:c3:f0:e2:0c:9a:39:9c:21:32:1b:d3:8a:
06:36:7e:43:e4:6c:49:41:9a:ab:3d:d2:c4:9d:c9:
a8:de:d4:4c:93:cd:71:3b:b2:ac:86:d8:be:4b:35:
bf:9c:90:bd:43:ea:39:2d:8b:ba:3f:34:40:fe:9a:
31:37:86:bc:4a:d8:29:c9:6a:77:ff:26:2b:fd:cd:
32:66:67:2b:fc:71:73:62:3b:6c:74:92:69:71:d4:
9b:16:a7:42:75:53:f1:fd:43:f9:45:d7:84:ad:49:
7d:da:c4:f0:2d:1b:7c:a5:1d:dc:d4:22:54:4a:9b:
d6:fd:dc:f6:55:da:b4:40:0a:ce:91:e3:7a:fb:d6:
b5:e6:41:e4:82:79:02:38:3a:ef:ad:39:1a:4e:6f:
0d:8d:92:d1:ee:7e:90:08:b6:ce:80:17:91:cf:44:
7f:e1:61:7d:fe:ed:5c:44:9f:dd:45:b5:93:ac:5d:
2e:1c:98:9e:31:b5:04:58:5f:bf:25:36:c9:f8:0e:
09:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F6:24:6F:72:52:98:3D:68:F6:31:FE:AD:FB:A9:ED:B0:D1:50:16
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/UfYkb3JSmD1o9jH-rfup7bDRUBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.138.0/24
46.38.140.0/24
46.38.144.0/23
46.38.150.0/24
185.24.150.0/24
185.29.220.0/23
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
94:5e:29:84:b6:71:17:83:d6:94:e4:db:95:40:78:69:2d:08:
e5:90:fb:32:a8:21:27:a7:f3:1f:87:c5:01:55:36:3d:64:54:
1f:b0:14:4c:79:64:33:91:da:22:e4:2c:26:f1:c6:f9:56:ee:
aa:1b:b4:b0:83:a9:16:e4:b7:48:a1:7a:dd:ad:98:30:93:e4:
c3:6b:21:e2:7f:48:c5:5a:5b:c5:79:77:cb:26:70:00:ec:0a:
97:59:47:f1:d8:f2:2f:c0:0d:41:da:2d:d7:90:f0:2b:49:99:
e3:b8:53:7c:a5:4e:b8:97:27:b4:ff:6c:df:ab:55:7a:27:ab:
ab:27:13:3c:30:95:75:4a:5b:98:93:72:75:eb:36:8c:5d:fa:
be:3f:7f:c6:a9:f2:93:40:01:93:77:5e:4f:2e:35:5a:64:89:
80:f5:c8:d6:b6:45:f4:94:39:46:a0:17:0c:e5:7d:3b:4b:92:
86:c9:19:5a:4a:f8:95:60:7a:ae:85:38:e4:3b:be:d4:fc:a4:
fa:dc:d7:29:15:75:bd:04:37:97:93:c5:48:86:ff:5d:a3:a6:
cd:e9:d2:1e:50:1b:c9:dc:32:24:49:a1:c9:4c:32:0d:a7:07:
78:fc:40:49:1a:5c:df:42:ba:b8:1b:b3:37:68:ba:59:6d:34:
17:88:ee:99
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAZGY8bQgLMCOSkoaz5D3dncgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjQwODI4MTIyNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWY2MjQ2ZjcyNTI5ODNkNjhmNjMxZmVhZGZiYTllZGIwZDE1MDE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5GCkTuKVtKmeI/oDXOqxEF82j7VP
KlkqE2wf8M3zIXp/n5+KHaoh/jI7yD0ZUs2+TudS0SCRDMecbMQ7N73D8OIMmjmc
ITIb04oGNn5D5GxJQZqrPdLEncmo3tRMk81xO7Kshti+SzW/nJC9Q+o5LYu6PzRA
/poxN4a8StgpyWp3/yYr/c0yZmcr/HFzYjtsdJJpcdSbFqdCdVPx/UP5RdeErUl9
2sTwLRt8pR3c1CJUSpvW/dz2Vdq0QArOkeN6+9a15kHkgnkCODrvrTkaTm8NjZLR
7n6QCLbOgBeRz0R/4WF9/u1cRJ/dRbWTrF0uHJieMbUEWF+/JTbJ+A4JHQIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFFH2JG9yUpg9aPYx/q37qe2w0VAWMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvVWZZa2IzSlNtRDFvOWpILXJmdXA3YkRSVUJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQALiaBAwQA
LiaDAwQALiaKAwQALiaMAwQBLiaQAwQALiaWAwQAuRiWAwQBuR3cAwQBuY9KAwQF
1BBAAwQF1FAAMA0EAgACMAcDBQMqAH2AMA0GCSqGSIb3DQEBCwUAA4IBAQCUXimE
tnEXg9aU5NuVQHhpLQjlkPsyqCEnp/Mfh8UBVTY9ZFQfsBRMeWQzkdoi5Cwm8cb5
Vu6qG7Swg6kW5LdIoXrdrZgwk+TDayHif0jFWlvFeXfLJnAA7AqXWUfx2PIvwA1B
2i3XkPArSZnjuFN8pU64lye0/2zfq1V6J6urJxM8MJV1SluYk3J16zaMXfq+P3/G
qfKTQAGTd15PLjVaZImA9cjWtkX0lDlGoBcM5X07S5KGyRlaSviVYHquhTjkO77U
/KT63NcpFXW9BDeXk8VIhv9do6bN6dIeUBvJ3DIkSaHJTDINpwd4/EBJGlzfQrq4
G7M3aLpZbTQXiO6Z
-----END CERTIFICATE-----
Generated at Mon Sep 16 08:56:54 2024 by rpki-client on console-ams.rpki-client.org