Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/dqvBnH_vyyjjF0GWu6MI4PW0_2o.roa
File: dqvBnH_vyyjjF0GWu6MI4PW0_2o.roa (raw, json)
Hash identifier: yGcymwj2q16wZsnhM76o+MheQqoXRInqoYW2gbtZ2A0=
Subject key identifier: 76:AB:C1:9C:7F:EF:CB:28:E3:17:41:96:BB:A3:08:E0:F5:B4:FF:6A
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019378A1311AFF7E3C88FC55352D340AE880
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/dqvBnH_vyyjjF0GWu6MI4PW0_2o.roa
Signing time: Fri 29 Nov 2024 15:54:09 +0000
ROA not before: Fri 29 Nov 2024 15:54:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.150.0/24 maxlen: 24
46.38.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.81.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Sat 30 Nov 2024 07:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:78:a1:31:1a:ff:7e:3c:88:fc:55:35:2d:34:0a:e8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Nov 29 15:54:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76abc19c7fefcb28e3174196bba308e0f5b4ff6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:f0:19:fa:57:45:b2:81:9e:0e:df:a6:2c:
39:c1:09:f1:45:bc:1c:1e:fe:77:09:a1:fe:ae:74:
0b:60:17:57:db:f0:7e:20:69:14:e7:5c:94:d5:0a:
e1:75:28:dc:d3:0d:46:6d:52:43:ef:b8:fd:da:bc:
d1:11:36:0b:47:bb:1f:90:25:f6:ab:d2:16:40:0a:
b6:bb:2c:3e:6c:b4:18:26:6d:91:81:33:b3:c7:30:
08:a8:82:e6:ef:b2:69:f0:35:46:ba:d8:f1:52:b1:
e3:0c:d3:99:82:c8:c7:64:36:52:d5:95:4e:b5:d6:
35:49:e8:5b:ba:81:c7:05:99:df:c9:87:cd:58:95:
8c:1d:59:8b:e4:40:b8:dd:73:d8:48:7f:08:6c:75:
40:35:2e:d4:dd:34:ca:a3:35:5c:7a:63:f8:63:6f:
d4:b2:51:2b:85:90:e9:43:fa:2e:ca:b2:a9:52:b5:
a1:d2:f6:8d:e7:e2:f5:16:5c:54:49:f9:e2:ec:b7:
e1:60:b4:39:bb:4d:9e:aa:ae:cf:70:c9:1a:c8:bb:
b0:aa:ff:8f:0f:5b:71:f3:48:1a:43:d4:1d:76:66:
3c:f1:19:bd:5f:35:a6:f0:4d:2b:b4:a9:d4:32:1f:
84:11:76:de:b3:7c:ed:02:1f:65:a7:d2:e8:3f:3f:
4e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AB:C1:9C:7F:EF:CB:28:E3:17:41:96:BB:A3:08:E0:F5:B4:FF:6A
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/dqvBnH_vyyjjF0GWu6MI4PW0_2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
46.38.150.0/23
185.24.150.0/24
185.29.220.0/23
212.16.71.0-212.16.72.255
212.16.81.0/24
212.16.86.0/23
212.16.89.0/24
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
46:3c:5e:af:2a:ed:56:85:91:64:23:ab:e0:ef:24:1a:a1:c5:
44:f4:3c:2e:6e:2e:04:c5:9e:f5:f3:33:21:48:ae:db:de:a9:
b9:09:c3:bf:f9:be:44:09:6a:b6:94:77:99:91:e8:bc:64:8b:
28:ec:76:50:29:4e:01:a9:44:63:3c:43:c4:9c:e4:5f:a8:cd:
46:15:2f:31:0b:be:a7:da:29:b7:d4:35:d4:62:ba:5e:d1:91:
ee:aa:5e:a8:67:22:6f:4d:62:dc:ad:76:8f:36:c1:18:fc:d8:
b3:51:b8:c5:7c:72:2b:4e:e6:11:ff:53:56:b3:e1:1c:d3:08:
48:23:16:5c:d0:de:c3:2e:be:1a:a9:8d:66:48:1b:cf:33:bc:
a1:1d:48:d5:87:80:f5:45:b2:03:48:5b:e4:97:99:ae:a1:7c:
7d:77:2b:17:6c:c9:2d:6a:26:19:51:1f:d6:4e:44:28:ba:15:
9f:3f:1f:6c:69:bc:18:6c:23:4e:5f:6e:56:64:c0:52:5f:04:
d2:bb:f1:5c:8d:e7:71:4f:87:8b:37:8f:b3:02:d0:22:24:f9:
43:2d:62:af:87:65:6e:90:49:51:cc:dd:be:63:9c:36:ca:e1:
99:68:b5:4a:91:8c:ac:94:68:0e:f3:e4:e5:4f:38:11:5d:d3:
24:74:18:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:50:11 2025 by rpki-client