Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/_Njh-TCbliJcqqYGId9WawZpKw0.roa
File: _Njh-TCbliJcqqYGId9WawZpKw0.roa (raw, json)
Hash identifier: 6qHTy3C++wRq6WuPpWsGi0Yv33lr2yTF+4AlQiYcdTg=
Subject key identifier: FC:D8:E1:F9:30:9B:96:22:5C:AA:A6:06:21:DF:56:6B:06:69:2B:0D
Certificate issuer: /CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Certificate serial: 018BC836836996AF3A9A332A677606499BA7
Authority key identifier: 5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/_Njh-TCbliJcqqYGId9WawZpKw0.roa
Signing time: Mon 13 Nov 2023 10:24:57 +0000
ROA not before: Mon 13 Nov 2023 10:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201771
IP address blocks: 134.239.128.0/19 maxlen: 19
46.49.186.0/24 maxlen: 24
46.49.192.0/24 maxlen: 24
134.239.64.0/19 maxlen: 19
46.49.202.0/23 maxlen: 23
46.49.200.0/23 maxlen: 23
46.49.211.0/24 maxlen: 24
46.49.209.0/24 maxlen: 24
46.49.128.0/24 maxlen: 24
46.49.133.0/24 maxlen: 24
46.49.138.0/24 maxlen: 24
95.177.147.0/24 maxlen: 24
95.177.146.0/24 maxlen: 24
134.239.12.0/24 maxlen: 24
46.49.151.0/24 maxlen: 24
95.177.151.0/24 maxlen: 24
46.49.150.0/24 maxlen: 24
95.177.150.0/24 maxlen: 24
46.49.159.0/24 maxlen: 24
46.49.154.0/24 maxlen: 24
95.177.160.0/19 maxlen: 19
134.239.192.0/22 maxlen: 22
2a02:df1::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c8:36:83:69:96:af:3a:9a:33:2a:67:76:06:49:9b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Validity
Not Before: Nov 13 10:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcd8e1f9309b96225caaa60621df566b06692b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b5:00:60:cc:23:5b:39:67:4b:c0:86:f0:b1:
5b:54:52:52:73:16:2b:75:8f:90:9b:1a:da:5c:31:
8a:88:8b:c1:5c:be:d9:b8:b2:46:b8:c2:5f:3f:4d:
78:71:ed:60:0e:ba:51:35:09:49:9d:72:b4:5f:88:
de:8b:b4:e3:89:9b:8b:56:5e:60:d0:86:be:70:7b:
de:f1:11:cd:82:36:a5:7a:cc:f3:a7:a6:7d:fd:03:
01:89:17:10:cf:47:98:c2:9f:25:f0:57:c8:eb:60:
13:94:57:02:55:d6:01:0e:8e:80:02:63:35:12:53:
05:9c:bd:ad:58:7f:33:bc:70:fe:48:c8:2e:7d:aa:
70:ef:c6:16:cf:bf:86:8f:d0:76:1a:a2:0c:ec:c2:
24:2c:b4:aa:74:ef:a0:7e:6a:1b:cd:ed:63:34:ec:
20:5a:74:f7:b1:82:94:8e:43:b5:ac:89:97:9c:31:
e9:89:31:c1:9d:e2:3f:19:b7:a5:23:ed:bb:2d:bb:
73:86:a2:ba:1b:48:89:7b:cc:e4:0e:ce:b6:c1:46:
65:3e:f7:3d:fd:a9:02:ca:7c:73:ee:9a:69:3e:19:
48:65:31:96:c9:d1:f6:a7:03:07:5f:6b:59:68:44:
7f:40:54:40:3a:5b:8a:cd:79:57:72:3b:cb:5f:6c:
ac:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:D8:E1:F9:30:9B:96:22:5C:AA:A6:06:21:DF:56:6B:06:69:2B:0D
X509v3 Authority Key Identifier:
keyid:5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/_Njh-TCbliJcqqYGId9WawZpKw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.49.128.0/24
46.49.133.0/24
46.49.138.0/24
46.49.150.0/23
46.49.154.0/24
46.49.159.0/24
46.49.186.0/24
46.49.192.0/24
46.49.200.0/22
46.49.209.0/24
46.49.211.0/24
95.177.146.0/23
95.177.150.0/23
95.177.160.0/19
134.239.12.0/24
134.239.64.0/19
134.239.128.0/19
134.239.192.0/22
IPv6:
2a02:df1::/32
Signature Algorithm: sha256WithRSAEncryption
7e:be:c3:34:0f:b5:02:b6:a7:e3:55:e9:37:bd:fe:e9:6f:94:
e5:ac:83:0c:05:77:dc:07:80:be:55:40:23:4f:1e:5b:8e:6d:
18:09:c3:22:1e:45:49:d2:87:31:ed:37:54:4b:85:85:37:d1:
46:e7:21:05:9a:eb:96:0c:96:c1:84:48:11:5f:1a:74:b2:6e:
f6:b6:5a:9e:30:35:cb:c0:41:7d:b4:c9:4f:dc:a9:34:15:4a:
1b:fa:a2:c0:94:28:3f:d3:ea:be:9f:88:d8:ef:22:14:58:4b:
29:29:83:29:93:51:cd:42:9b:0b:ba:e3:0e:d5:fa:75:2f:30:
47:d5:54:c7:1f:d4:ac:e8:57:7a:55:c9:7b:f9:7c:45:97:b0:
f5:ba:14:ea:c6:bc:e6:b9:b7:3d:63:83:1f:36:56:f3:cd:37:
53:6f:6a:61:7b:70:17:18:b3:46:9a:72:08:51:c9:2b:68:0b:
bd:2f:30:5c:01:af:8b:5e:d6:bb:a7:0d:32:1d:b4:fe:21:21:
73:7d:3e:22:37:59:96:af:43:12:40:a6:ca:b8:a2:d7:a6:00:
c2:3a:19:18:cd:cc:dc:fa:37:92:bc:90:f4:64:07:eb:0e:f8:
c1:24:66:a6:53:0c:dd:27:6b:84:e5:76:e9:bb:8e:48:d8:58:
8c:bf:12:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org