Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BwFX0jHIhHlUh3OJzl6CZ4E3TQA.roa
File: BwFX0jHIhHlUh3OJzl6CZ4E3TQA.roa (raw, json)
Hash identifier: MLFDZKD0GFK8PlzbQMitLF/HBdExA8WU4Sj2ZnRyui0=
Subject key identifier: 07:01:57:D2:31:C8:84:79:54:87:73:89:CE:5E:82:67:81:37:4D:00
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018946C39C32EFC6A2DF268125E768B8EDE2
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BwFX0jHIhHlUh3OJzl6CZ4E3TQA.roa
Signing time: Tue 11 Jul 2023 21:02:51 +0000
ROA not before: Tue 11 Jul 2023 21:02:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 46.3.160.0/22 maxlen: 22
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.243.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
46.3.205.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.216.0/22 maxlen: 22
46.3.222.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.229.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.230.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:46:c3:9c:32:ef:c6:a2:df:26:81:25:e7:68:b8:ed:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 11 21:02:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=070157d231c8847954877389ce5e826781374d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:53:c7:58:2d:af:50:7e:62:ba:69:5e:b0:62:
06:07:39:71:ca:dd:78:97:02:3a:a7:7d:44:f0:f7:
55:25:35:ed:9e:d2:49:4e:7a:63:e9:c4:7b:8d:9b:
1f:e2:fd:15:d8:1c:a6:13:26:53:64:9c:dc:d9:10:
e6:f1:0b:17:32:05:02:c8:ec:35:9e:f3:66:b9:c7:
12:f4:2b:86:21:e8:84:ca:f2:bf:ac:58:e0:54:fe:
7d:7b:f5:28:52:1d:d0:bf:d2:06:dd:10:c9:05:d5:
6c:6e:29:ab:08:2c:3b:8a:75:9d:63:ed:f7:10:7e:
02:b4:11:c2:0c:c6:e9:11:64:53:45:7b:0d:d2:63:
6b:20:50:9d:ea:4a:51:17:32:85:66:16:bd:2c:c7:
b0:4a:b7:47:93:3a:5d:a4:cb:12:c4:93:00:26:4b:
06:8b:3d:c3:97:57:03:73:55:46:74:73:b5:3e:1d:
2e:a7:42:5a:d4:a4:fb:8f:9c:cd:50:d6:1f:8d:fc:
b0:5b:dd:89:64:55:0f:82:2a:b8:ac:79:88:bb:9e:
78:70:98:d5:86:7e:78:83:41:da:67:a3:ee:35:c6:
1d:52:bb:c6:31:c6:3e:5a:cb:2e:9a:83:f3:5d:8c:
f1:b1:7d:e6:64:c7:e9:5f:03:b0:d2:4d:46:07:fc:
22:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:01:57:D2:31:C8:84:79:54:87:73:89:CE:5E:82:67:81:37:4D:00
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/BwFX0jHIhHlUh3OJzl6CZ4E3TQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.134.0/24
46.3.160.0/22
46.3.201.0/24
46.3.205.0/24
46.3.216.0/22
46.3.222.0/24
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/22
149.126.242.0-149.126.245.255
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
29:19:1e:72:c2:31:33:9c:75:92:ba:2a:15:f7:73:79:7c:9f:
9c:a2:4b:71:2c:2a:cb:2e:27:fc:7b:7a:e2:fd:38:d6:95:4a:
43:71:13:4f:c1:02:3b:89:3f:40:c9:f7:61:1a:ff:39:17:e2:
4a:6b:e8:26:94:c7:3c:d5:b1:04:2e:9d:19:eb:ac:0f:69:08:
6a:5a:19:99:80:1d:15:5b:92:06:06:ba:a4:33:e7:02:82:79:
51:9e:b5:75:17:a1:a7:f1:d2:7d:6e:44:c2:9c:7d:99:e0:a3:
10:e5:12:f3:84:cd:7d:db:54:a7:8f:5e:b2:ca:f5:99:4c:d1:
1c:8f:58:32:54:05:69:de:5f:62:2d:0d:e3:92:6e:5d:85:79:
c5:05:84:6d:98:a4:d5:7a:69:eb:95:5e:83:97:de:7c:da:8c:
6e:82:60:1b:22:98:6c:5a:c5:d9:4f:f5:f4:20:5f:01:5b:ff:
fb:54:e4:18:a1:03:27:61:87:16:d9:83:87:d4:ca:3e:c1:7f:
ef:eb:cf:70:4f:34:4f:19:4c:33:a5:66:a5:fa:c9:3e:c6:34:
19:e7:22:86:90:8d:7f:90:b0:20:e2:52:64:b2:71:df:da:8e:
43:f9:94:f3:74:ff:70:dd:61:e6:72:aa:9e:80:b8:94:6f:ef:
cc:0d:93:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org