Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/bYGACh48TUSCRyWaZiNkj90urIE.roa
File: bYGACh48TUSCRyWaZiNkj90urIE.roa (raw, json)
Hash identifier: ZwdJipFC13YeLgIY5DQ+Bm2ffvjyMTGk9PEsfz/H5ko=
Subject key identifier: 6D:81:80:0A:1E:3C:4D:44:82:47:25:9A:66:23:64:8F:DD:2E:AC:81
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0190F99B05E7CFD31A7735D84F6D34D59945
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/bYGACh48TUSCRyWaZiNkj90urIE.roa
Signing time: Sun 28 Jul 2024 13:50:04 +0000
ROA not before: Sun 28 Jul 2024 13:50:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 31 Jul 2024 13:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:9b:05:e7:cf:d3:1a:77:35:d8:4f:6d:34:d5:99:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 28 13:50:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d81800a1e3c4d448247259a6623648fdd2eac81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:97:83:ad:2a:e8:7c:13:d8:08:1b:0d:fd:53:
f1:47:59:05:6f:09:98:2b:e6:89:3b:3a:7c:2c:e5:
d6:79:82:c9:51:8f:d6:e2:da:5c:c6:2b:61:d5:32:
7c:59:bb:eb:17:ce:ba:a9:2c:ac:39:48:f4:09:d3:
00:a1:e9:3a:da:7d:a4:f9:11:ac:ac:54:bc:ee:07:
df:96:2b:3a:ee:d4:35:ba:55:bb:e3:ba:e9:3b:1e:
bf:52:d9:33:b1:cc:a7:67:2c:66:a8:99:ca:ec:47:
20:77:42:53:cb:8c:eb:0e:8e:ec:9f:a3:59:06:fd:
1d:90:7a:dd:c0:c7:a4:3e:19:21:62:fb:b6:d4:0e:
6d:31:46:09:ee:a2:5e:ad:bd:c7:24:95:ae:57:59:
2d:74:af:ca:49:f4:9f:d1:89:f8:bd:51:71:ee:8b:
03:ea:86:61:4a:3c:f5:cd:20:86:9b:cb:d6:ac:2a:
95:80:89:d7:50:df:86:7e:ef:e7:81:aa:99:5b:41:
4e:99:28:fc:27:5f:38:32:e7:27:20:52:00:88:93:
a0:1c:2a:70:92:ae:c0:8d:8f:b3:19:06:00:49:c0:
7e:30:5c:2c:70:81:2c:54:55:ec:77:08:bd:4d:33:
ab:d0:15:f2:ad:5e:13:1a:cc:f6:7b:fb:f4:7e:9b:
ff:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:81:80:0A:1E:3C:4D:44:82:47:25:9A:66:23:64:8F:DD:2E:AC:81
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/bYGACh48TUSCRyWaZiNkj90urIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
185.24.150.0/24
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
af:9f:39:ed:db:aa:98:59:41:66:3d:86:1d:05:19:08:ed:fa:
04:a7:1d:78:f7:8b:c4:f5:9c:3a:95:fb:40:42:11:41:8e:92:
b2:40:5f:b6:54:56:68:ad:11:27:89:69:b7:46:6a:57:f7:09:
b2:a2:3c:f9:a8:63:7d:fa:10:f6:14:71:b8:cd:1d:0d:6a:d1:
30:ba:cf:37:d7:92:e8:ca:89:76:f9:39:2b:4e:f0:44:df:36:
8a:06:57:56:d4:3c:29:15:be:7f:b9:fe:c1:4d:83:7d:fd:ea:
d6:49:2b:be:49:b1:4c:43:8b:38:01:46:80:90:33:30:28:b0:
81:2f:81:81:6b:49:2c:82:e4:c5:bf:99:f6:85:00:8e:07:49:
d9:34:c4:40:cb:ac:cb:ff:ec:4b:83:e9:da:af:d6:b6:1d:06:
74:2f:42:c1:3c:7e:56:4d:2c:65:90:4e:cf:48:99:b8:e1:d9:
4f:c4:cd:51:ea:85:86:8b:a6:8c:80:9a:30:6a:bc:77:7e:5f:
3f:11:a3:f1:b1:36:22:08:ae:bb:89:06:42:04:f4:2c:aa:f3:
db:5d:04:49:b9:51:7f:4c:a2:b3:55:e2:c2:a7:ff:81:a7:8a:
18:1a:9d:6e:45:bd:bd:35:5d:6c:d2:ef:af:31:c2:b0:d9:82:
5d:53:61:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 16:48:19 2024 by rpki-client on console-fra.rpki-client.org