Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/W-DzExAthllOLFBQ_nvk-M1b9iU.roa
File: W-DzExAthllOLFBQ_nvk-M1b9iU.roa (raw, json)
Hash identifier: zQcyUP0PSWgRazcKi0CylqQo3oVvx9FP9boYu2HsBWo=
Subject key identifier: 5B:E0:F3:13:10:2D:86:59:4E:2C:50:50:FE:7B:E4:F8:CD:5B:F6:25
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018DA2484679575FB9862B2D8720FD0C2848
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/W-DzExAthllOLFBQ_nvk-M1b9iU.roa
Signing time: Tue 13 Feb 2024 11:44:22 +0000
ROA not before: Tue 13 Feb 2024 11:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.132.0/24 maxlen: 24
46.38.133.0/24 maxlen: 24
46.38.134.0/24 maxlen: 24
46.38.135.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/21 maxlen: 21
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
46.38.152.0/22 maxlen: 22
46.38.156.0/23 maxlen: 23
46.38.158.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.72.0/24 maxlen: 24
185.143.73.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.78.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Tue 13 Feb 2024 12:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:48:46:79:57:5f:b9:86:2b:2d:87:20:fd:0c:28:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 13 11:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5be0f313102d86594e2c5050fe7be4f8cd5bf625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c8:b9:31:64:ef:b4:82:e7:46:dd:db:59:f0:
16:87:e0:b0:e0:3b:9a:57:17:89:bf:b4:59:74:fe:
8d:e1:72:f8:35:e5:d5:25:02:03:fc:94:75:a5:b9:
46:b6:91:c1:53:dd:e3:d7:c1:63:bf:87:3d:17:15:
6e:69:e3:03:03:f6:82:38:e9:c4:9b:33:07:fe:9d:
8b:2b:0a:01:55:d9:f3:29:24:ca:26:aa:69:08:0c:
a4:4f:66:46:35:67:a0:8f:24:fb:dc:12:41:21:75:
8f:8a:df:87:59:65:d4:61:07:56:de:6f:a9:dc:b1:
34:45:4e:a1:c7:ac:d6:76:f1:c8:f0:b0:c4:41:7e:
54:2e:e0:af:22:f7:64:99:9b:ba:24:f0:a6:2c:ef:
08:94:26:9b:1f:50:64:9c:4e:a3:d6:33:45:25:a1:
04:e4:6b:35:e3:45:29:5e:4c:b0:87:15:09:fd:34:
59:77:6a:6e:b6:ed:5a:9c:01:27:71:2b:15:07:7a:
d6:b0:3c:3d:e0:e0:cc:d0:8c:8d:1d:aa:8d:6e:67:
7c:37:23:e8:f3:f2:0a:38:1c:89:2b:5e:8a:0b:cc:
0e:f8:96:b8:a2:b1:6f:78:e3:8e:be:c7:a3:f5:08:
30:37:9a:86:b3:bd:0f:a1:70:3c:7b:f0:54:af:48:
8f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E0:F3:13:10:2D:86:59:4E:2C:50:50:FE:7B:E4:F8:CD:5B:F6:25
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/W-DzExAthllOLFBQ_nvk-M1b9iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0-46.38.140.255
46.38.144.0-46.38.158.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
44:32:cc:56:62:70:e0:7e:79:b6:9b:66:0e:16:f6:97:23:a6:
a3:76:10:03:e8:70:6c:5f:90:76:aa:2d:be:24:cf:55:b2:7b:
51:74:8c:96:7a:ec:4e:c5:dc:1b:90:8a:60:c5:0d:04:fa:eb:
05:8e:95:a2:20:99:b8:fd:34:4c:e8:1c:ef:fe:e6:37:f0:94:
51:21:03:d3:a3:60:7a:e5:d6:c3:e5:07:00:e7:9b:d7:69:84:
e7:88:5b:d6:f2:1c:02:5c:56:3d:72:b1:c4:8f:21:57:06:97:
c7:40:17:ab:9c:9c:4b:bb:ee:14:9e:2c:51:e7:e1:a1:18:81:
50:5d:9b:5c:22:ea:66:2f:4e:4d:70:a7:72:71:10:19:ce:a8:
4b:e7:97:cb:45:a6:87:c2:76:64:eb:e6:c2:6c:24:df:28:b2:
55:f0:a2:79:3b:40:42:d7:c8:10:f3:44:dc:9c:7e:e2:7d:19:
9d:b3:77:de:a8:ed:b4:2b:93:5e:d9:a1:9f:67:f0:e7:27:6d:
06:fb:6d:79:21:74:e1:cb:0e:10:7b:16:ab:86:e3:63:2a:03:
f4:d7:26:3b:bf:05:42:dd:96:cd:2e:17:31:26:89:49:33:d3:
6f:18:83:7f:61:92:d6:8d:9e:40:dc:cc:e0:9e:96:82:35:a5:
ac:37:2b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 17:34:57 2024 by rpki-client on console-fra.rpki-client.org