Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BdFm0UGg6M_ZEYRqyR4TPIAd-Oc.roa
File: BdFm0UGg6M_ZEYRqyR4TPIAd-Oc.roa (raw, json)
Hash identifier: KeJxpJ5jAjT0NZH432Upf3YJVIYlqD+YwyGQ3+1lIiI=
Subject key identifier: 05:D1:66:D1:41:A0:E8:CF:D9:11:84:6A:C9:1E:13:3C:80:1D:F8:E7
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881EF5DE4EEFDF1079B339E6A98E25A846
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BdFm0UGg6M_ZEYRqyR4TPIAd-Oc.roa
Signing time: Mon 15 May 2023 10:30:09 +0000
ROA not before: Mon 15 May 2023 10:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.135.0/24 maxlen: 24
46.232.64.0/21 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
46.3.80.0/22 maxlen: 22
46.3.204.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
149.126.203.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
46.3.224.0/22 maxlen: 22
149.126.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f5:de:4e:ef:df:10:79:b3:39:e6:a9:8e:25:a8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 10:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05d166d141a0e8cfd911846ac91e133c801df8e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:91:60:ae:2a:fb:ee:03:e0:fa:e1:45:ad:7a:
f3:51:dd:d1:a4:e0:74:b9:77:97:05:e3:61:e7:4d:
32:b4:19:0e:b5:a3:70:3c:a6:7e:f5:ab:54:97:5b:
74:c9:26:8f:16:62:5c:71:60:7b:7f:a6:38:ba:f2:
58:7c:8b:ca:d5:41:3c:7a:7f:ed:5a:97:11:51:17:
c5:2d:53:2c:e4:e0:09:12:71:b1:59:6e:b0:0f:59:
bc:57:28:0e:c4:b4:d1:10:e3:1f:53:40:9e:c9:81:
26:c4:ac:d2:a0:c0:c3:98:a5:1e:5c:48:f2:d4:b0:
a3:19:e1:a5:dd:d2:d9:6e:4b:70:5e:1d:1e:98:54:
b4:09:70:b2:fe:01:58:43:d5:62:19:2a:2f:ea:b7:
b2:06:35:4a:65:55:cc:ac:7d:a0:73:aa:23:6a:3e:
75:83:2c:45:ef:06:db:a3:d9:41:2a:5f:ba:4a:b7:
01:b7:45:f4:90:c6:45:66:9f:c5:02:d8:39:da:62:
13:0f:68:25:2b:5a:7b:79:54:f2:aa:be:24:ce:01:
4d:12:ff:64:c0:3c:2c:dd:19:72:65:7d:0c:3e:bd:
6c:40:4f:ec:94:5e:9e:8c:c2:8f:9d:08:48:14:02:
7b:63:ad:ec:b1:21:30:50:83:aa:4e:a9:5b:ff:76:
1a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D1:66:D1:41:A0:E8:CF:D9:11:84:6A:C9:1E:13:3C:80:1D:F8:E7
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BdFm0UGg6M_ZEYRqyR4TPIAd-Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.80.0/22
46.3.135.0/24
46.3.156.0/23
46.3.188.0/22
46.3.204.0/24
46.3.208.0/21
46.3.224.0/22
46.232.64.0/21
149.126.200.0/24
149.126.203.0/24
149.126.215.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
64:e9:0c:0a:c8:ea:5f:71:05:21:a2:29:d8:29:7f:bf:e0:59:
4b:f8:6d:9a:66:76:36:26:0b:2e:07:b1:5b:f3:4f:90:57:74:
31:7b:ed:e5:28:93:5d:50:1d:4d:12:fb:a1:53:eb:50:82:3e:
1f:89:bf:88:7b:dc:f7:91:8f:e0:e0:9e:fb:61:dd:94:7d:eb:
e9:2c:bf:bd:c6:4d:d8:1c:7e:6f:8a:dc:eb:1e:22:9c:ce:b3:
ff:c8:ea:4a:db:db:6b:21:47:27:20:ab:91:5e:25:50:1e:46:
27:22:6b:38:08:9d:05:8f:8b:23:88:1b:c6:28:17:c8:cf:42:
a8:2a:69:7d:f1:07:8c:48:d7:8f:e8:70:8d:56:97:4d:69:c9:
ff:df:54:9a:53:eb:73:ed:38:99:60:20:47:3d:2f:69:9e:5a:
20:8c:b6:31:ce:b9:03:b6:d5:be:31:7e:15:b7:b5:e7:fb:1f:
e3:ba:52:78:01:ab:0b:a0:51:93:44:e2:e2:23:41:94:4c:fe:
8d:64:7b:61:66:f3:13:6e:7a:46:dd:33:e1:fb:1f:bf:0e:6c:
80:0f:da:0c:5b:95:fb:8b:d0:eb:c3:56:87:28:f1:07:4f:01:
de:19:7b:e8:49:7b:d5:67:f8:68:10:3b:2d:63:09:a2:b9:97:
c7:7c:60:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org