Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/49JN_zJOpjxS7ehLgpA2196r-04.roa
File: 49JN_zJOpjxS7ehLgpA2196r-04.roa (raw, json)
Hash identifier: wiOeVVVNWroeKF7zWujpidvdZ0cageHcaTc6KBA/BGs=
Subject key identifier: E3:D2:4D:FF:32:4E:A6:3C:52:ED:E8:4B:82:90:36:D7:DE:AB:FB:4E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CC94E7251E088BDAF371AE1811174FE0E
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/49JN_zJOpjxS7ehLgpA2196r-04.roa
Signing time: Tue 02 Jan 2024 08:33:30 +0000
ROA not before: Tue 02 Jan 2024 08:33:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399587
IP address blocks: 46.3.164.0/22 maxlen: 24
46.3.160.0/22 maxlen: 24
46.3.96.0/20 maxlen: 24
46.3.120.0/21 maxlen: 22
80.243.128.0/21 maxlen: 24
80.243.130.0/23 maxlen: 24
80.243.128.0/23 maxlen: 24
46.3.40.0/21 maxlen: 24
46.232.64.0/22 maxlen: 24
46.3.48.0/21 maxlen: 24
46.3.56.0/21 maxlen: 24
46.3.80.0/21 maxlen: 22
46.3.208.0/21 maxlen: 21
46.3.216.0/22 maxlen: 24
46.3.216.0/21 maxlen: 22
46.232.20.0/22 maxlen: 24
46.3.222.0/24 maxlen: 24
46.3.224.0/21 maxlen: 22
46.3.20.0/22 maxlen: 24
46.3.32.0/19 maxlen: 24
46.3.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 15 Mar 2024 08:25:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:72:51:e0:88:bd:af:37:1a:e1:81:11:74:fe:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:33:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3d24dff324ea63c52ede84b829036d7deabfb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1f:2a:23:41:cd:5f:1b:37:a2:fc:31:7e:51:
69:41:27:dd:e6:58:33:40:99:2c:50:78:04:de:3f:
8d:1c:86:94:0b:24:b5:73:8f:a5:42:3b:c2:da:63:
c6:13:71:14:fb:dc:0b:73:32:4c:ac:c3:38:e2:2e:
94:c5:81:9e:e8:2d:53:8e:0e:eb:44:3f:10:63:2c:
74:92:05:95:40:fc:72:90:6f:eb:29:70:a5:1e:6f:
8b:95:8d:33:1f:bf:9d:36:a5:94:f3:ea:e1:bc:d7:
06:5e:6f:76:76:b6:45:50:77:f5:dc:dd:6c:be:6f:
ee:89:b4:43:bb:0b:e2:5a:d1:b3:9b:cc:30:8b:45:
89:af:de:f0:e9:2a:7c:2b:83:c7:5e:78:95:92:02:
77:e7:c1:c0:cc:3a:0e:04:69:6d:9d:74:9f:40:6b:
35:54:0c:2c:7e:16:00:76:4a:66:4c:d3:1d:c9:00:
b5:02:15:4c:c7:64:db:7c:3e:50:df:31:9d:9c:33:
ce:16:3e:c9:2e:7b:6d:63:64:77:6f:1c:fa:d2:bc:
b5:1a:63:44:fa:16:66:5d:73:2d:b5:d6:1c:b0:00:
57:c9:c9:22:0e:22:82:38:8b:5f:cc:8d:57:40:be:
ec:d5:16:30:37:8b:29:70:71:92:86:00:af:c3:94:
93:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D2:4D:FF:32:4E:A6:3C:52:ED:E8:4B:82:90:36:D7:DE:AB:FB:4E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/49JN_zJOpjxS7ehLgpA2196r-04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.20.0/22
46.3.32.0/19
46.3.80.0/21
46.3.96.0/20
46.3.120.0/21
46.3.160.0/21
46.3.208.0-46.3.231.255
46.232.20.0/22
46.232.64.0/22
80.243.128.0/21
Signature Algorithm: sha256WithRSAEncryption
30:ab:52:20:72:95:b1:1c:61:4e:cb:bf:af:5d:e2:8e:e4:f0:
0a:65:84:a4:b0:75:30:e9:2f:a7:a6:50:a8:9a:33:dc:61:1d:
5b:f6:9e:15:ed:d4:4e:16:de:5c:f6:35:a3:61:f3:ff:8a:a0:
4f:c2:28:61:91:13:41:96:82:12:4d:33:72:6d:7d:de:bd:d0:
44:c1:5f:3e:c3:d4:a9:f5:af:c5:c9:35:33:0e:89:2b:3c:d8:
c9:ab:25:20:14:0e:0d:20:24:03:0d:06:0d:2a:f9:cb:b9:32:
a8:94:bd:e9:23:86:34:fd:7e:ae:ad:9b:38:12:71:fa:40:2b:
b1:74:95:ef:1c:a0:64:e5:74:a0:c7:c2:c6:af:b5:32:5d:19:
ee:d7:f7:a2:10:80:8c:f6:a2:f6:16:cd:14:ba:f2:fa:67:e6:
89:23:2a:54:08:04:d3:0c:57:29:59:d6:96:d8:e4:4e:df:3f:
8c:90:4e:1d:70:e3:09:fd:e2:8a:37:0a:bf:ca:2e:a0:fe:a9:
fd:cc:5f:1a:de:87:1b:3b:23:09:1b:4f:46:3a:72:07:ec:a8:
29:98:42:03:42:4e:c9:ea:ac:83:6f:71:ff:bc:b0:90:ce:c6:
5a:b8:b5:a1:6b:ce:38:9c:59:06:d3:64:78:68:10:3e:ba:ff:
5a:6b:a9:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Mar 15 13:41:25 2024 by rpki-client on console-ams.rpki-client.org