Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8I6pTWwFRuT6UaY_riobhLs60-A.roa
File: 8I6pTWwFRuT6UaY_riobhLs60-A.roa (raw, json)
Hash identifier: SlmZFGj154sNihtZZ/bEKiMjFJ8xxYf2oejNDqqa/Rk=
Subject key identifier: F0:8E:A9:4D:6C:05:46:E4:FA:51:A6:3F:AE:2A:1B:84:BB:3A:D3:E0
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01934643D362787FF93928B002E21B324F5B
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8I6pTWwFRuT6UaY_riobhLs60-A.roa
Signing time: Tue 19 Nov 2024 21:11:10 +0000
ROA not before: Tue 19 Nov 2024 21:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 46.3.116.0/22 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
149.126.226.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Nov 2024 21:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:46:43:d3:62:78:7f:f9:39:28:b0:02:e2:1b:32:4f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 19 21:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f08ea94d6c0546e4fa51a63fae2a1b84bb3ad3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f8:46:0d:2c:92:1e:9a:53:bc:ba:43:af:7f:
78:4f:1d:bd:06:69:2f:bc:be:40:d4:ac:88:81:ee:
3d:8b:36:11:c8:1c:71:72:dc:c0:b8:59:39:29:da:
d3:60:fb:b6:aa:3b:a3:7c:1e:75:16:25:48:d0:d8:
f7:f1:6f:9d:ed:9b:48:9c:21:86:58:87:55:66:3f:
1c:b1:ee:0c:f9:fe:95:18:77:b5:85:e0:2f:1d:e8:
dd:65:7d:3d:1c:d2:fe:b9:6b:6a:67:eb:79:01:86:
a4:ad:d2:fd:9a:36:37:d6:0c:59:27:c6:37:87:b5:
12:33:7e:82:63:6e:68:53:37:ba:c8:b6:19:ba:6c:
98:d6:13:a5:78:5a:af:11:13:c7:e4:85:39:ac:bc:
8a:04:54:c4:74:99:c0:59:e2:0f:0e:66:b3:78:24:
87:c9:da:25:76:67:ca:d1:89:09:e3:29:1e:52:11:
08:fd:33:f5:a9:39:13:c2:b0:d0:5c:37:c1:5f:5c:
84:33:e4:43:fd:97:8e:30:68:61:d1:65:06:7b:e8:
37:e2:c0:9a:ff:fc:66:b0:94:e4:0e:6e:8d:2b:2a:
49:89:b5:27:e7:b4:9f:95:bd:c9:13:00:5b:07:b7:
14:4b:02:3a:75:3b:67:bb:42:47:01:af:af:56:5e:
41:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8E:A9:4D:6C:05:46:E4:FA:51:A6:3F:AE:2A:1B:84:BB:3A:D3:E0
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/8I6pTWwFRuT6UaY_riobhLs60-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.116.0/22
46.3.190.0/24
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.248.0/24
46.3.251.0-46.3.255.255
46.232.69.0/24
46.232.112.0/20
149.126.226.0/24
149.126.244.0/24
149.126.246.0-149.126.250.255
Signature Algorithm: sha256WithRSAEncryption
98:69:d1:94:a4:5b:4b:93:34:a5:d5:6f:8c:2c:eb:cb:d4:48:
1c:32:d2:e2:b8:53:d0:3b:ac:b5:1a:03:d0:fa:3a:87:37:61:
e4:3c:c5:8e:c3:03:31:d5:d9:db:2c:fe:06:dc:02:a1:fe:11:
a1:b5:a7:16:51:06:40:b4:a8:ba:a0:cc:21:6e:d0:ed:85:5c:
35:8e:de:f7:79:ac:b4:71:4f:46:a7:89:a7:f3:5c:31:6f:ea:
c0:7e:ed:08:88:a6:2a:cc:b0:22:cf:ad:78:69:0f:e0:9d:61:
17:2a:10:14:c6:70:60:40:c0:ff:f1:00:65:be:51:dc:05:8a:
fb:68:e9:42:13:14:04:78:9d:8d:f0:e1:1b:84:b0:02:cb:3a:
c4:31:f0:e8:97:98:fd:c5:be:b5:ff:95:21:2b:30:73:2b:8b:
01:a5:1d:ce:50:34:47:6a:19:e8:7b:35:f5:63:21:b7:7d:3b:
77:df:4a:99:8f:c4:4a:ee:4c:b5:7d:c4:f1:1d:5d:9b:93:68:
93:ad:b5:80:46:3f:3b:57:75:b6:f7:86:b3:f0:38:8d:c4:82:
85:ec:70:52:68:ac:4e:1b:92:69:d3:dd:19:f1:7c:2f:a4:21:
b2:3b:98:21:78:7b:75:f8:98:22:3b:9a:a8:bd:ae:3a:ce:b4:
78:a9:94:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:29:34 2025 by rpki-client