Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/opbeRB_r0m033zroEVgMWbrnoCE.roa
File: opbeRB_r0m033zroEVgMWbrnoCE.roa (raw, json)
Hash identifier: kUKCusTaxP6UB5B0STKJTVsMYCJ5Ate6NLaCCRe4yRw=
Subject key identifier: A2:96:DE:44:1F:EB:D2:6D:37:DF:3A:E8:11:58:0C:59:BA:E7:A0:21
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018E0346B3D337466A8773AC23EB599706B9
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/opbeRB_r0m033zroEVgMWbrnoCE.roa
Signing time: Sun 03 Mar 2024 07:45:48 +0000
ROA not before: Sun 03 Mar 2024 07:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.144.0/23 maxlen: 23
46.38.150.0/24 maxlen: 24
46.38.152.0/22 maxlen: 22
46.38.156.0/23 maxlen: 23
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:03:46:b3:d3:37:46:6a:87:73:ac:23:eb:59:97:06:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Mar 3 07:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a296de441febd26d37df3ae811580c59bae7a021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9b:7f:60:aa:dd:4f:41:2a:8b:25:1d:d1:34:
44:94:de:83:4e:83:bf:79:2a:ce:f7:39:9b:d9:8a:
89:4b:21:82:b4:62:1c:f3:39:93:b9:de:e7:df:07:
9e:6f:4b:cc:b5:26:a0:05:b1:e6:a6:07:9b:f2:17:
c2:54:47:e9:54:06:d4:50:76:1b:f2:d0:64:54:81:
1e:e3:cb:8d:c7:5a:71:40:e8:d5:f2:f1:2d:b3:fe:
24:ce:24:fe:cb:7b:8d:2e:da:fe:f8:a8:2b:d1:17:
40:20:10:e0:97:59:ac:5f:b1:a1:fd:40:23:93:eb:
99:a8:d6:26:ca:1c:7d:25:37:c8:c4:1f:08:16:d9:
69:1c:84:3c:ef:28:ad:34:70:fa:ee:27:2f:66:9c:
30:2f:03:0a:94:5c:50:53:7d:77:3b:57:9a:97:e5:
d0:b5:12:25:0a:69:2e:31:57:83:b8:1d:f6:1b:f1:
3a:3c:06:92:c1:4f:64:18:01:f2:05:d8:87:89:92:
c3:e7:e8:c2:5f:72:9c:26:53:af:66:71:aa:9c:6f:
e5:ca:0e:d6:67:01:d0:c3:58:ec:63:5c:c7:9c:e5:
9e:a5:62:38:c9:e4:2b:5e:58:dd:cc:f4:24:10:f9:
15:07:b7:07:a6:5d:fc:bc:1b:7e:b8:d8:bc:cc:ac:
df:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:96:DE:44:1F:EB:D2:6D:37:DF:3A:E8:11:58:0C:59:BA:E7:A0:21
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/opbeRB_r0m033zroEVgMWbrnoCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.136.0-46.38.140.255
46.38.144.0/23
46.38.150.0/24
46.38.152.0-46.38.157.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.74.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
8d:e4:f9:41:94:5c:6f:ce:1a:99:fb:ba:5f:a0:8d:64:35:87:
9e:eb:95:aa:3c:f3:ee:6b:b0:b8:8e:93:f7:2a:16:dc:0c:30:
26:31:27:fb:71:f9:5c:c1:8d:f7:f4:a9:9a:8e:18:ff:e4:42:
13:a7:63:da:52:88:ca:4f:5c:01:6d:ea:f8:9d:ca:ae:b6:18:
11:bc:dc:2a:a6:1c:5a:33:18:ec:e1:93:38:19:f0:76:6d:1b:
10:0e:e8:71:95:dd:7f:08:96:c5:d6:5b:95:7a:13:c7:58:9b:
e0:30:1d:68:da:13:51:26:32:60:fb:5f:58:e1:5d:b1:20:fe:
74:64:de:59:3b:aa:ae:6b:4d:26:50:b3:2a:14:07:c2:20:e5:
cb:76:a6:9f:aa:1c:58:5b:32:ea:5e:f5:1e:4e:df:09:7d:c5:
e3:56:2e:97:17:ed:d2:6e:9d:8a:4e:eb:aa:2f:5e:5e:41:a9:
db:24:76:10:35:a1:84:86:e8:c8:4b:38:97:19:fc:49:33:58:
94:00:46:85:3f:bb:c0:50:d6:e1:cd:97:46:e1:69:40:06:30:
4c:aa:21:bc:98:c7:8e:97:50:78:31:3a:b5:86:30:98:d5:70:
42:3f:25:dc:5c:3b:cd:ef:3f:5d:3a:96:99:21:c3:a8:dc:d8:
75:2e:75:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org