Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/f9c76b-4c66-4346-8ade-fc6cdaaf250b/1/SDZnI580kKy2Pw0bbB3KGNYr6mw.roa
File: SDZnI580kKy2Pw0bbB3KGNYr6mw.roa (raw, json)
Hash identifier: w36nGiLrhccT7GKu8fJVW06LrVwaXjCIZuJxryIzTqw=
Subject key identifier: 48:36:67:23:9F:34:90:AC:B6:3F:0D:1B:6C:1D:CA:18:D6:2B:EA:6C
Certificate issuer: /CN=014efdfd0647ccba734b2a05660124eb8c067567
Certificate serial: 01919E81596D91850219D6EA94DB902EFA38
Authority key identifier: 01:4E:FD:FD:06:47:CC:BA:73:4B:2A:05:66:01:24:EB:8C:06:75:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AU79_QZHzLpzSyoFZgEk64wGdWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/f9c76b-4c66-4346-8ade-fc6cdaaf250b/1/SDZnI580kKy2Pw0bbB3KGNYr6mw.roa
Signing time: Thu 29 Aug 2024 14:19:22 +0000
ROA not before: Thu 29 Aug 2024 14:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48940
IP address blocks: 46.148.96.0/20 maxlen: 20
46.148.96.0/21 maxlen: 21
46.148.104.0/21 maxlen: 21
62.122.96.0/21 maxlen: 21
62.122.96.0/22 maxlen: 22
62.122.100.0/22 maxlen: 22
94.231.160.0/20 maxlen: 20
94.231.160.0/21 maxlen: 21
94.231.168.0/21 maxlen: 21
176.115.32.0/19 maxlen: 19
176.115.32.0/20 maxlen: 20
176.115.32.0/21 maxlen: 21
176.115.32.0/22 maxlen: 22
176.115.36.0/22 maxlen: 22
176.115.40.0/21 maxlen: 21
176.115.40.0/22 maxlen: 22
176.115.44.0/22 maxlen: 22
176.115.48.0/20 maxlen: 20
176.115.48.0/21 maxlen: 21
176.115.48.0/22 maxlen: 22
176.115.52.0/22 maxlen: 22
176.115.56.0/21 maxlen: 21
176.115.56.0/22 maxlen: 22
176.115.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 02 Sep 2024 06:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:81:59:6d:91:85:02:19:d6:ea:94:db:90:2e:fa:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=014efdfd0647ccba734b2a05660124eb8c067567
Validity
Not Before: Aug 29 14:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=483667239f3490acb63f0d1b6c1dca18d62bea6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:84:31:74:a1:5d:46:50:6b:02:02:32:74:af:
9c:4b:40:76:13:6e:e2:7d:b9:47:a1:3e:d8:39:a4:
96:cd:92:56:49:a3:bb:03:ad:f7:22:1c:9d:f0:e0:
fe:67:c0:bc:8b:9b:1e:03:35:ce:10:52:c0:4d:50:
97:e6:b1:6f:ae:3a:1a:9c:e5:db:fc:91:5c:14:5e:
a2:e3:bc:b5:02:ec:7d:28:f7:9e:8c:09:28:0c:ef:
2d:80:68:6d:37:44:87:35:b8:66:72:53:24:f1:59:
9e:c3:64:f6:5a:05:69:c8:f1:dc:5c:23:d9:5a:7a:
67:23:fa:34:45:bd:6e:04:4b:21:9a:4e:9e:5c:cf:
04:01:a5:03:7a:51:65:3b:7b:68:3a:63:70:f1:2c:
35:9a:a0:c6:56:68:91:88:55:65:32:ec:b4:ad:40:
da:38:4f:44:54:06:b6:8b:99:3e:30:b1:ad:47:26:
a5:39:c9:ca:f1:b8:02:e8:85:df:48:e5:6e:fa:fa:
ed:ad:86:63:f1:3a:fc:e0:6d:37:d2:c3:07:49:91:
31:62:7e:c6:50:fa:6d:cb:66:96:0f:68:73:9d:75:
f8:f5:c6:c1:a8:45:26:57:cb:4f:9e:2e:0d:19:48:
95:82:74:75:c3:08:74:b1:cb:b7:23:68:3a:0d:ab:
64:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:36:67:23:9F:34:90:AC:B6:3F:0D:1B:6C:1D:CA:18:D6:2B:EA:6C
X509v3 Authority Key Identifier:
keyid:01:4E:FD:FD:06:47:CC:BA:73:4B:2A:05:66:01:24:EB:8C:06:75:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AU79_QZHzLpzSyoFZgEk64wGdWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f9c76b-4c66-4346-8ade-fc6cdaaf250b/1/SDZnI580kKy2Pw0bbB3KGNYr6mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f9c76b-4c66-4346-8ade-fc6cdaaf250b/1/AU79_QZHzLpzSyoFZgEk64wGdWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.96.0/20
62.122.96.0/21
94.231.160.0/20
176.115.32.0/19
Signature Algorithm: sha256WithRSAEncryption
25:2a:15:99:6d:64:49:58:11:4c:58:1a:fd:99:7b:f6:22:b3:
66:ae:65:69:43:66:56:b6:cc:19:25:6a:a3:4b:99:17:67:2c:
b5:e5:69:ad:2f:b8:aa:13:57:e7:66:6a:ba:f0:ea:cc:91:13:
d0:ea:eb:98:7a:cf:57:60:c3:93:f4:c8:89:87:c2:6f:30:1c:
21:49:9d:32:2a:fb:61:8d:a4:90:f7:19:f9:20:d4:c3:07:2c:
81:a9:b0:ad:99:f1:27:c2:a1:e3:00:b1:32:93:d3:a8:62:e5:
07:47:dd:82:ab:cb:aa:00:57:97:f5:e2:0f:7e:a5:83:a0:ea:
dd:37:3c:e0:7b:d2:d4:00:8f:83:ab:04:c1:7d:70:3f:95:49:
7d:41:6d:d1:72:71:3a:af:a3:89:6a:13:69:05:91:78:a6:e3:
02:70:0a:72:80:65:da:51:38:0a:d9:2b:77:90:c8:89:7d:d7:
ee:4e:c4:0a:4f:69:5f:b4:70:58:a4:35:23:f0:79:a9:a1:6d:
b3:8a:2a:bd:30:54:78:6e:8f:4d:8c:46:81:c7:0a:86:29:e4:
a4:fe:6a:01:99:a9:4c:62:d6:8a:5e:36:d0:45:dd:bc:e3:6e:
e5:61:25:e4:29:66:53:2b:27:1b:c6:ef:a2:27:5e:2e:2a:e9:
22:ad:6e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 08:06:43 2024 by rpki-client on console-fra.rpki-client.org