Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/txs9mxK7j77CuBnRYw3r_Me8_Zc.roa
File: txs9mxK7j77CuBnRYw3r_Me8_Zc.roa (raw, json)
Hash identifier: SnLzpx7RXMHEo25g4z9K4gIzX0XvC5jYChZYQHc217U=
Subject key identifier: B7:1B:3D:9B:12:BB:8F:BE:C2:B8:19:D1:63:0D:EB:FC:C7:BC:FD:97
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185F2D374D587A05998D7AD8F7ED89479C6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/txs9mxK7j77CuBnRYw3r_Me8_Zc.roa
Signing time: Fri 27 Jan 2023 10:43:42 +0000
ROA not before: Fri 27 Jan 2023 10:43:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50928
IP address blocks: 46.29.192.0/21 maxlen: 21
46.29.199.0/24 maxlen: 24
46.29.194.0/24 maxlen: 24
46.29.196.0/24 maxlen: 24
188.170.244.0/23 maxlen: 23
188.170.244.0/24 maxlen: 24
188.170.245.0/24 maxlen: 24
188.170.250.0/24 maxlen: 24
188.170.251.0/24 maxlen: 24
188.170.252.0/24 maxlen: 24
188.170.248.0/24 maxlen: 24
188.170.249.0/24 maxlen: 24
178.23.144.0/21 maxlen: 21
178.23.149.0/24 maxlen: 24
178.23.148.0/24 maxlen: 24
178.23.151.0/24 maxlen: 24
178.23.150.0/24 maxlen: 24
178.176.250.0/24 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.248.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
178.176.254.0/24 maxlen: 24
37.29.81.0/24 maxlen: 24
37.29.80.0/24 maxlen: 24
37.29.83.0/24 maxlen: 24
37.29.80.0/22 maxlen: 22
37.29.82.0/24 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
2a00:9780::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 07 Apr 2023 10:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f2:d3:74:d5:87:a0:59:98:d7:ad:8f:7e:d8:94:79:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 27 10:43:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b71b3d9b12bb8fbec2b819d1630debfcc7bcfd97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9e:ba:ac:35:ac:12:21:0a:bb:fe:d5:e4:c4:
5e:cd:19:ed:c8:c6:fd:69:e2:92:be:87:1c:c1:fe:
40:f0:25:2f:dd:db:c8:d9:8e:36:0d:a1:3d:d8:b6:
78:94:45:0e:65:0c:0c:24:84:da:c6:23:a5:e8:9b:
31:b5:84:c0:8c:76:e2:52:30:a3:33:79:ea:8e:26:
6c:ab:9c:78:9f:6a:f3:ea:78:a9:32:f3:03:57:99:
6d:e5:29:4d:61:ec:f3:88:78:d0:c1:1a:35:30:b2:
77:29:de:ef:22:24:2c:70:78:0b:57:48:df:22:a9:
49:94:08:fb:33:88:c6:c7:e3:95:e6:de:73:de:d0:
6f:9c:58:6d:04:2a:8c:c1:b5:5d:cb:92:b1:35:5c:
25:00:2d:1a:ed:2d:33:5d:6a:b3:be:11:26:0b:a4:
76:ac:be:7d:28:e5:f1:d4:98:e1:17:a7:76:50:d0:
c6:41:aa:3a:52:30:c7:57:37:fa:12:44:8a:34:22:
42:d0:33:4a:f2:3d:50:17:66:3b:ca:2e:b5:e9:1f:
8a:09:98:ac:1d:30:33:af:e6:02:07:3a:33:d9:31:
1d:52:c4:d8:cd:b6:e6:4c:56:ca:fb:f0:bc:01:ec:
62:30:02:af:f8:99:ad:f6:3e:22:96:b4:8b:63:5e:
75:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1B:3D:9B:12:BB:8F:BE:C2:B8:19:D1:63:0D:EB:FC:C7:BC:FD:97
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/txs9mxK7j77CuBnRYw3r_Me8_Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.29.80.0/22
46.29.192.0/21
178.23.144.0/21
178.176.248.0-178.176.254.255
188.170.244.0/23
188.170.248.0-188.170.252.255
IPv6:
2a00:9780::/40
Signature Algorithm: sha256WithRSAEncryption
58:40:c2:44:a0:a0:4b:5a:10:ff:95:1a:6a:fb:91:99:92:b2:
67:3c:5f:61:a1:ca:53:c4:69:83:c1:5c:79:87:b7:8f:2c:0e:
cf:71:10:48:79:74:63:90:a7:04:68:6f:bd:ff:2c:c8:2d:93:
6e:65:f9:05:e0:83:e3:2c:9d:aa:0a:04:be:57:7f:27:5b:97:
bc:10:d6:71:00:22:ab:b9:47:c1:02:9f:44:16:fc:e3:90:09:
8d:6b:ce:6e:35:7b:01:f4:b2:6f:09:87:c2:dc:d5:bc:1d:83:
c1:f3:f0:86:92:cd:6a:32:0a:01:d3:de:1a:75:cb:3b:80:b6:
16:63:29:77:e6:dd:7d:9b:d2:74:d6:dc:b6:2c:15:f4:6c:6e:
8f:d9:c8:40:49:8e:2a:2f:7c:ec:ad:6b:fb:39:76:e1:1c:1d:
3f:ac:75:fe:47:f5:31:63:12:f3:49:66:ff:2a:e3:68:2c:ca:
56:4e:de:31:cb:f0:8e:64:73:f5:51:f3:f0:91:ea:6d:6d:28:
d7:aa:dd:ab:7e:32:68:cc:fb:f5:2e:e0:bd:e8:9d:aa:f1:6a:
54:0b:29:65:b3:ed:d6:7a:40:fa:a6:ab:a3:a2:5c:85:eb:09:
a0:e3:de:d2:65:a9:38:3b:bc:83:e9:c9:4d:09:3e:48:6b:a1:
e7:29:2d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org