Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mzSJ4bUsi_pTs7V-atmX69YuI1Y.roa
File: mzSJ4bUsi_pTs7V-atmX69YuI1Y.roa (raw, json)
Hash identifier: CehXKgBIf+hxth7ROo9/DAvc1pFW3N2YAJf/lNmpUU0=
Subject key identifier: 9B:34:89:E1:B5:2C:8B:FA:53:B3:B5:7E:6A:D9:97:EB:D6:2E:23:56
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018E5184BCAFEA30F244F12D023A76618B4B
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mzSJ4bUsi_pTs7V-atmX69YuI1Y.roa
Signing time: Mon 18 Mar 2024 12:23:57 +0000
ROA not before: Mon 18 Mar 2024 12:23:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 46.38.152.0/24 maxlen: 24
46.38.153.0/24 maxlen: 24
46.38.154.0/24 maxlen: 24
46.38.156.0/24 maxlen: 24
46.38.157.0/24 maxlen: 24
212.16.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:84:bc:af:ea:30:f2:44:f1:2d:02:3a:76:61:8b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Mar 18 12:23:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b3489e1b52c8bfa53b3b57e6ad997ebd62e2356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:21:d5:0e:5c:d1:7f:ef:8a:8d:16:c9:06:fe:
09:06:23:4e:67:c6:6a:34:44:f8:46:43:68:b2:0a:
16:65:db:cb:ff:f9:79:18:a8:48:89:5d:c2:78:d8:
1d:e6:b5:74:df:f5:32:1c:f0:e3:06:6a:31:94:1b:
f3:94:1e:5f:cb:77:48:ee:8c:86:8a:28:2e:6f:60:
08:f8:77:2e:b0:27:a4:57:ac:8e:3a:11:ea:22:6a:
ba:8a:9f:3d:a6:7f:ac:fd:b1:b1:dc:60:4f:69:03:
44:e5:c8:58:88:7f:f2:8e:81:ac:e8:db:9c:ef:a3:
d9:56:9f:1d:7a:88:2e:02:96:a4:32:54:6f:84:26:
c6:5a:2c:bb:7c:fe:7f:a7:1a:45:6a:64:42:5d:0a:
bb:65:c7:61:6f:7f:80:52:c8:42:17:7c:85:a3:ba:
27:cc:17:7b:af:2c:a6:9b:a5:57:6e:ab:ee:31:01:
d3:f3:7f:79:c1:aa:38:9c:5c:2c:6f:08:8b:f9:5a:
dc:10:1f:ed:c2:df:f0:60:c7:f8:c8:28:74:f1:f2:
be:6e:ab:1f:01:24:57:84:8a:e3:b2:f8:6d:f3:f7:
18:d4:61:59:09:fa:38:4c:7c:14:53:69:c8:82:fb:
46:46:ab:94:4f:0d:2c:36:d0:0f:47:0b:db:05:44:
f3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:34:89:E1:B5:2C:8B:FA:53:B3:B5:7E:6A:D9:97:EB:D6:2E:23:56
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/mzSJ4bUsi_pTs7V-atmX69YuI1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.152.0-46.38.154.255
46.38.156.0/23
212.16.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:85:f6:df:fe:86:3f:8b:14:66:9e:5d:e1:3c:31:84:d3:87:
9a:ac:0f:8a:51:18:53:78:28:e9:3c:aa:2e:8e:b9:44:82:a2:
28:66:59:79:05:d4:ad:dd:a6:bc:8a:c5:3c:f9:44:cb:4c:29:
e0:a8:01:63:7e:c5:3e:06:ba:1c:19:58:74:09:5f:91:60:e0:
82:d4:ce:ef:1e:e5:43:19:ce:dd:37:c0:d1:07:da:06:07:38:
e4:4e:ed:55:6d:c2:af:b0:5e:b9:cf:48:b2:d5:7d:e6:80:da:
9f:fd:29:0a:cb:13:3a:5f:b1:8c:1d:06:52:dc:16:a8:b3:70:
76:70:6d:ad:df:a3:49:86:85:2b:91:7b:cb:f5:ca:90:7b:cb:
1b:8d:0c:b4:55:a4:f4:62:76:10:fd:aa:a6:fe:70:08:35:a3:
bd:e4:92:88:8f:b5:ec:3a:89:a6:ad:85:b5:02:93:ec:31:0e:
3d:4b:19:d9:4e:ba:7a:e2:0d:4e:6b:af:26:84:8d:66:39:8a:
a2:12:fa:4d:60:e7:12:82:20:82:68:96:20:bb:71:92:45:4c:
b0:f5:24:20:81:00:a8:35:8d:bf:06:d8:10:aa:94:8f:54:df:
fa:1a:54:2e:0b:c7:ca:e7:4b:05:a5:b9:85:aa:21:d8:ce:bf:
15:31:01:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org