Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ncf6e_wEPGUDemDSdv83ECmFuCg.roa
File: ncf6e_wEPGUDemDSdv83ECmFuCg.roa (raw, json)
Hash identifier: r9e59vn2YxE7HiMbJcxZWtBO4m1hAjMX7Wa+mpzEv6w=
Subject key identifier: 9D:C7:FA:7B:FC:04:3C:65:03:7A:60:D2:76:FF:37:10:29:85:B8:28
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01906023388092D1BF66258F418972EAC510
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ncf6e_wEPGUDemDSdv83ECmFuCg.roa
Signing time: Fri 28 Jun 2024 18:37:18 +0000
ROA not before: Fri 28 Jun 2024 18:37:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Sun 30 Jun 2024 14:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:60:23:38:80:92:d1:bf:66:25:8f:41:89:72:ea:c5:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jun 28 18:37:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9dc7fa7bfc043c65037a60d276ff37102985b828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5a:e1:be:40:85:83:45:73:b1:d2:6f:59:84:
96:29:e0:91:1b:1b:80:1d:6b:c7:89:91:ee:73:dc:
32:be:4f:57:e9:01:59:72:4a:36:de:e0:9e:ca:59:
f4:d4:c7:18:1d:76:55:a7:0d:29:96:9f:fd:17:d6:
54:f4:71:ab:d3:93:3f:30:d7:00:7a:9e:31:db:c6:
eb:e1:76:24:f1:ca:07:fc:f6:a5:69:f5:40:32:54:
e8:a1:cf:36:1d:c8:a8:55:85:66:c0:0f:aa:0c:0e:
f8:17:f0:e1:d0:71:1c:5f:e7:a0:93:ba:b6:eb:96:
dd:71:b8:c5:a9:a8:88:79:0b:71:87:4e:e0:16:7e:
e9:08:1b:5e:9a:98:96:b8:53:cb:0b:d2:41:1f:ef:
f2:c8:74:77:8f:78:37:fb:f8:85:ce:05:b3:01:d1:
8b:6e:48:31:cd:d3:99:88:8a:28:30:66:30:90:eb:
d1:37:54:0d:90:ed:13:53:44:32:f8:69:22:3a:24:
ee:96:a0:a4:c5:34:ee:22:76:77:ff:48:b7:23:82:
9c:41:ac:d9:02:a0:1d:32:b3:b5:f1:91:46:a6:14:
66:95:cf:c5:3c:f7:00:fd:59:f8:6d:8e:64:a3:96:
97:97:d5:53:c2:70:7e:06:3c:9d:03:cb:c8:74:a9:
67:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C7:FA:7B:FC:04:3C:65:03:7A:60:D2:76:FF:37:10:29:85:B8:28
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ncf6e_wEPGUDemDSdv83ECmFuCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
109.94.164.0/23
185.24.149.0-185.24.150.255
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
11:22:b7:5c:63:97:fc:d2:eb:e4:fa:2e:ef:8d:35:15:18:96:
88:9b:84:3b:e1:7c:81:51:f8:0b:c3:83:07:a5:8c:27:c5:f8:
2e:f8:e0:c6:bb:e3:95:de:b5:17:83:4b:37:1c:bc:fb:59:d3:
2e:a3:93:f3:e1:44:94:25:90:72:99:31:d6:70:f4:32:7d:a3:
0f:cb:a8:bf:17:5f:67:c8:9b:93:8e:31:ed:eb:16:45:f3:e0:
b8:d7:3a:10:c9:ad:ea:28:65:b7:b4:9f:3a:6d:33:e9:32:ef:
ea:23:62:5c:db:9e:5a:cf:a3:86:83:39:82:a1:0b:1a:2a:32:
8d:6e:63:55:e7:19:d2:8b:ce:a2:18:d8:07:3a:a9:d3:d9:16:
bb:d7:2a:f6:b3:c5:17:0a:04:a7:4c:49:4e:56:b9:37:6c:bd:
e5:e8:d9:79:26:57:c4:d2:a0:9e:56:46:97:42:0e:66:0f:6a:
68:4f:5f:a3:f8:d8:96:f3:d7:a2:68:53:6c:bf:e9:2b:2e:1b:
79:49:6a:be:dc:54:bf:20:99:88:e7:72:a7:6f:07:05:d3:f2:
ca:86:03:72:0a:32:1d:fa:2b:f1:42:4c:09:44:d8:ae:3f:f4:
be:44:0a:4c:68:51:9f:39:2f:43:e8:b4:50:8a:08:f7:66:df:
dc:57:60:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 17:34:09 2024 by rpki-client on console-fra.rpki-client.org