Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mGTkTP73qwkze3LS4vJU6uDvNrM.roa
File: mGTkTP73qwkze3LS4vJU6uDvNrM.roa (raw, json)
Hash identifier: qDkaGaAAEyBlxWtueBUybpZFrBEWS7Jj1euTuY/yP/I=
Subject key identifier: 98:64:E4:4C:FE:F7:AB:09:33:7B:72:D2:E2:F2:54:EA:E0:EF:36:B3
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018BD19D6E3FE3319884D300F37440C7199D
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mGTkTP73qwkze3LS4vJU6uDvNrM.roa
Signing time: Wed 15 Nov 2023 06:13:57 +0000
ROA not before: Wed 15 Nov 2023 06:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44889
IP address blocks: 212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.78.0/23 maxlen: 23
212.16.72.0/24 maxlen: 25
212.16.80.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.16.92.0/23 maxlen: 23
212.16.94.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/23 maxlen: 23
212.80.18.0/23 maxlen: 23
212.80.20.0/23 maxlen: 23
212.80.29.0/24 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.144.0/21 maxlen: 21
46.38.144.0/23 maxlen: 23
46.38.140.0/24 maxlen: 24
46.38.150.0/24 maxlen: 24
46.38.156.0/23 maxlen: 23
46.38.158.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
46.38.130.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.132.0/22 maxlen: 22
109.94.164.0/23 maxlen: 23
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Thu 14 Dec 2023 07:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d1:9d:6e:3f:e3:31:98:84:d3:00:f3:74:40:c7:19:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Nov 15 06:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9864e44cfef7ab09337b72d2e2f254eae0ef36b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:de:c2:78:6c:8e:09:d7:f0:56:cb:33:66:9f:
4a:4a:98:29:76:b9:83:b3:19:24:0a:0f:73:4a:cd:
8e:e6:c5:14:bb:22:73:3a:8a:17:e6:76:6f:ee:c5:
51:d5:45:45:ea:77:c9:99:e5:c7:42:ea:39:56:fa:
35:39:8f:e9:30:4c:0a:6b:62:2e:27:ed:e7:f8:af:
aa:49:70:01:d2:49:79:a0:a1:18:0b:a8:df:99:10:
ce:f7:cf:07:97:dc:c2:14:e4:47:91:12:60:cf:24:
c0:78:78:98:a1:bb:bf:dc:97:47:f4:27:19:c1:3f:
e0:5c:33:a8:13:c6:6b:12:41:00:e2:51:1c:6a:b6:
e4:5e:5c:3c:2a:d2:c3:d5:96:57:4b:5c:58:ea:e0:
d8:37:b0:e5:47:2a:cd:ce:6f:da:fd:e3:e9:3a:77:
f7:86:19:74:35:07:6f:8c:20:83:2d:a0:b7:30:0b:
c5:14:d1:1b:f3:13:6b:f4:3a:8f:59:09:f3:52:ec:
53:31:34:8b:42:9d:f8:37:32:69:f5:fc:8c:50:cf:
ac:6d:6f:c9:96:39:2e:51:d5:de:15:9f:73:ef:be:
07:2d:58:74:ad:db:69:59:28:71:5c:d1:72:ab:56:
35:f9:67:ea:06:1a:25:19:36:ce:7c:9f:88:ac:5a:
1c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:64:E4:4C:FE:F7:AB:09:33:7B:72:D2:E2:F2:54:EA:E0:EF:36:B3
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mGTkTP73qwkze3LS4vJU6uDvNrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/21
46.38.140.0/23
46.38.144.0/21
46.38.156.0-46.38.158.255
109.94.164.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
18:cb:eb:42:56:c9:35:74:db:4e:71:2c:74:d8:57:15:11:3f:
f5:0e:8f:41:7a:f7:a0:f5:97:ee:74:79:d0:2d:c2:62:a0:6a:
31:55:45:dd:ce:1c:68:49:61:f6:a1:15:52:f9:bc:5f:f0:c5:
d8:d6:b5:ff:80:7d:31:94:bf:30:63:f2:b9:44:e2:44:cd:79:
b1:7f:64:e5:a7:02:eb:2f:6a:47:b3:c3:e2:5c:d0:ec:14:3f:
f7:50:91:38:c8:64:e9:98:e2:83:1b:d9:cb:85:c9:02:0c:cb:
2b:62:c2:98:a3:f0:03:fa:49:87:a3:56:ca:85:7a:1c:e6:8e:
6a:cc:48:0c:9e:7b:1f:11:dc:c3:c1:6b:93:7a:32:42:51:7a:
9a:ba:52:38:54:28:cc:ae:51:b9:61:d7:99:6f:36:89:f2:a3:
eb:d6:c5:bf:f8:b1:57:1b:c3:3c:aa:5f:f7:5c:3f:78:ab:8a:
84:ca:d7:0b:23:45:94:86:72:98:da:42:05:bc:6f:2a:b6:01:
cd:29:ef:e6:ff:81:cb:f5:38:89:3f:40:b0:63:9f:08:c7:49:
66:b0:cb:90:47:62:96:70:76:60:1c:de:c0:4c:8f:42:b5:e8:
5e:06:f1:08:9d:14:97:78:e2:0a:b4:cc:c3:53:89:31:84:3b:
b6:14:cb:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org