Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Zn5VuSdm1GyK-M0r1Nxq-YRIR70.roa
File: Zn5VuSdm1GyK-M0r1Nxq-YRIR70.roa (raw, json)
Hash identifier: 66bQAYtnvqXukcZ8hDV02GCRHsyxnR32ijLoPyt7ap4=
Subject key identifier: 66:7E:55:B9:27:66:D4:6C:8A:F8:CD:2B:D4:DC:6A:F9:84:48:47:BD
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019276972DA93588B69F7A6337379F0728E3
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Zn5VuSdm1GyK-M0r1Nxq-YRIR70.roa
Signing time: Thu 10 Oct 2024 13:21:12 +0000
ROA not before: Thu 10 Oct 2024 13:21:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 46.38.155.0/24 maxlen: 24
185.143.72.0/24 maxlen: 24
185.143.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:76:97:2d:a9:35:88:b6:9f:7a:63:37:37:9f:07:28:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Oct 10 13:21:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=667e55b92766d46c8af8cd2bd4dc6af9844847bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:44:2c:2c:33:73:f4:ec:00:3d:69:0a:a4:af:
ec:e8:07:d6:4d:2f:12:4f:a2:5a:a9:47:e9:f1:98:
1b:0a:2b:6e:ef:ac:e2:75:bc:de:fd:81:20:7e:d1:
06:5d:f8:b6:5c:f8:f7:d6:64:44:3c:0d:34:c0:01:
45:e6:cf:33:29:88:99:7b:ab:0a:41:8c:bb:e6:ee:
67:b8:6c:91:e8:53:ee:55:b2:79:5d:12:01:70:f6:
1f:51:fd:a6:a2:3f:97:48:25:d2:94:af:a4:8e:02:
57:29:d9:46:2b:d2:52:c6:60:88:69:8b:a1:14:5e:
ab:a2:ba:fe:6a:ef:e1:50:23:92:30:0b:b4:40:fe:
f8:03:1d:9f:31:4d:31:ec:ab:7f:d3:53:39:ab:f6:
71:6b:8f:c5:c2:ea:38:d6:6f:56:ef:26:b9:f6:99:
91:f7:51:7d:c9:71:f1:48:ee:19:5c:49:ea:e8:49:
1f:a4:0d:ce:b4:da:32:05:38:55:d9:1b:5f:ed:59:
7b:03:12:57:76:14:27:37:53:30:d0:bf:4d:ed:c2:
29:cb:99:53:35:85:14:25:d8:03:9d:22:a2:3a:3a:
d3:aa:cb:23:83:e3:7f:bd:2c:b8:ae:af:1a:7e:38:
08:76:07:7e:b8:ee:cb:d2:63:b8:66:7d:2d:f2:29:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7E:55:B9:27:66:D4:6C:8A:F8:CD:2B:D4:DC:6A:F9:84:48:47:BD
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Zn5VuSdm1GyK-M0r1Nxq-YRIR70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.155.0/24
185.143.72.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:b6:8e:01:27:b2:9c:0c:6e:ef:4d:66:49:f2:c9:a5:f5:7a:
f9:2c:c0:96:6e:dd:7c:af:49:c8:60:e2:5b:dd:c1:69:bf:b7:
d1:7c:0d:7f:f4:18:19:dd:55:71:dc:79:73:7d:6f:30:7a:fa:
06:83:fe:f0:97:fe:2b:10:62:6e:d7:dc:8e:7f:0c:e3:bc:64:
c8:9a:f8:ec:81:c7:6e:66:01:3a:b5:2b:35:d2:dc:ac:85:03:
54:12:ca:f1:56:a8:73:27:c7:76:ad:b0:b1:13:b9:9c:21:ea:
3c:5e:1e:49:f3:a1:2c:23:04:7a:3e:8b:eb:fb:e8:9f:f6:7d:
00:98:7e:fb:d1:7f:24:c6:d8:dd:9d:8b:f4:4b:9e:7b:52:b7:
84:01:ef:7b:4d:1b:a4:74:2e:06:9f:9a:04:76:46:bc:66:10:
70:ae:f0:0e:da:5d:86:f5:53:19:c3:4f:27:92:7c:17:54:30:
6c:c2:ae:db:74:af:38:1d:a1:18:75:b8:28:31:b5:20:21:c2:
e1:61:96:1c:1b:a9:63:11:2f:6e:67:50:0a:2a:e2:e5:fb:4b:
19:23:9b:bb:26:eb:92:53:a6:e7:87:1c:d4:99:3d:04:f3:e3:
f9:64:3d:3c:33:56:e5:2f:8e:4b:fb:00:a6:6f:2c:bf:f0:58:
37:51:8f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:34 2024 by rpki-client on console-fra.rpki-client.org