Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/aA3pN96zBib6X6jyY5RmwC0nUtM.roa
File: aA3pN96zBib6X6jyY5RmwC0nUtM.roa (raw, json)
Hash identifier: Ip30oAEWl5XUh0dhTzBRcvr3ad128OIhal7T1wzKRK8=
Subject key identifier: 68:0D:E9:37:DE:B3:06:26:FA:5F:A8:F2:63:94:66:C0:2D:27:52:D3
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01913B1123BE2C67C363B9BEC696CEF982D8
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/aA3pN96zBib6X6jyY5RmwC0nUtM.roa
Signing time: Sat 10 Aug 2024 06:54:24 +0000
ROA not before: Sat 10 Aug 2024 06:54:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.81.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 28 Aug 2024 12:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3b:11:23:be:2c:67:c3:63:b9:be:c6:96:ce:f9:82:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Aug 10 06:54:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=680de937deb30626fa5fa8f2639466c02d2752d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:47:27:12:79:42:bf:27:cd:15:13:9e:5b:39:
ed:70:d1:49:63:81:8d:9d:94:da:da:e1:c8:09:0f:
33:29:b3:d6:db:09:c2:2e:c6:f8:be:cf:22:f3:82:
cd:44:10:51:e4:ca:e4:40:b7:07:2f:fe:93:eb:81:
22:77:b0:02:b9:b7:65:6f:45:10:09:c6:b1:55:9a:
10:4d:20:43:23:68:a3:f9:42:10:30:37:aa:1b:c5:
b7:58:b3:3b:cb:37:22:4b:f1:3f:da:47:83:0f:7d:
66:7d:82:e1:f2:73:00:0c:76:fb:cc:ce:6a:88:5b:
4f:32:60:69:c2:8d:31:af:ba:c9:aa:76:90:d1:34:
f8:17:d8:60:ab:fd:8c:4d:af:25:5b:cf:3d:b3:1a:
17:81:f2:df:11:bf:7c:06:f8:22:80:6d:c0:c4:94:
72:1c:01:92:c3:59:1d:87:bb:6f:45:6c:05:12:61:
22:01:77:2a:b6:d9:32:42:da:37:2e:ec:f4:1b:ae:
a6:3a:ad:98:3c:87:71:13:86:89:75:ba:dc:b9:94:
0a:65:3e:e6:a0:ea:8a:f8:0f:c7:6a:31:fa:1a:98:
a4:30:f9:d6:a1:aa:92:c8:d3:bc:be:0c:32:95:7e:
26:d1:06:2a:5a:b2:7e:c7:f0:cc:81:9d:ff:ad:3a:
6b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0D:E9:37:DE:B3:06:26:FA:5F:A8:F2:63:94:66:C0:2D:27:52:D3
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/aA3pN96zBib6X6jyY5RmwC0nUtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
185.24.150.0/24
185.29.220.0/23
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
0e:cd:9e:d7:49:ba:d3:02:ca:b1:d9:c8:e2:0f:55:a4:82:82:
9b:29:fc:1f:c4:18:8c:e6:4b:e5:36:68:50:64:26:e7:aa:e1:
dc:83:10:af:5d:91:b2:f5:e6:b3:b5:d4:fb:ae:53:4d:5e:88:
82:cb:2f:59:90:ca:c5:e8:a1:20:75:33:75:4c:a3:32:33:17:
87:ff:ed:3b:f7:fa:c7:d1:46:5e:1d:bf:db:29:2b:d5:8b:47:
37:ae:49:35:e9:30:e3:0b:1f:a1:ef:71:d0:4b:9f:14:4f:79:
7d:b7:fc:89:de:ba:2b:19:ab:f4:03:08:56:3f:8d:bc:d1:b9:
5e:aa:c3:6c:c3:bb:d6:d9:45:93:24:dc:7c:e9:6b:76:f4:a8:
d6:b7:10:e6:41:15:82:bf:0f:14:1b:f5:51:01:69:66:9f:4a:
89:fc:76:bc:cd:b5:e9:39:62:ba:ef:d6:33:b3:dd:b6:22:3b:
64:72:6a:06:32:3d:9f:f7:8b:39:37:9d:52:d4:3b:15:ba:bb:
68:7c:94:bc:e7:19:a9:e9:9d:3b:af:28:55:b5:d6:6d:d1:44:
98:81:5c:16:2b:7a:aa:d9:b8:36:ec:68:cd:51:43:77:a0:76:
26:9b:1d:03:18:49:e8:5f:15:95:66:0f:7d:cc:ca:92:6a:73:
db:a0:00:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 16:05:30 2024 by rpki-client on console-fra.rpki-client.org