Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/DoJ64_eMsFQuDAJ-ikFkUh0Vcko.roa
File: DoJ64_eMsFQuDAJ-ikFkUh0Vcko.roa (raw, json)
Hash identifier: 0lB8BMRCzTBCNsjMcyEOs+JJ3M75ClsvvEGSqcA+Klc=
Subject key identifier: 0E:82:7A:E3:F7:8C:B0:54:2E:0C:02:7E:8A:41:64:52:1D:15:72:4A
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018E3BF2175285B7F732AC67F409EEE24AE8
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/DoJ64_eMsFQuDAJ-ikFkUh0Vcko.roa
Signing time: Thu 14 Mar 2024 07:51:45 +0000
ROA not before: Thu 14 Mar 2024 07:51:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 46.3.134.0/24 maxlen: 24
46.3.160.0/22 maxlen: 22
46.3.201.0/24 maxlen: 24
46.3.205.0/24 maxlen: 24
46.3.216.0/22 maxlen: 22
46.3.222.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.229.0/24 maxlen: 24
149.126.230.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.243.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 20:53:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:f2:17:52:85:b7:f7:32:ac:67:f4:09:ee:e2:4a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 14 07:51:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e827ae3f78cb0542e0c027e8a4164521d15724a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4a:c6:d8:64:bb:5a:4e:9c:28:09:91:6c:47:
61:42:32:2e:0c:cb:02:96:c2:54:79:12:80:37:ed:
67:66:8b:7b:76:3c:54:0f:d5:2a:6a:bf:1a:1b:cf:
c9:88:81:ab:ac:de:23:a2:d5:3f:5f:54:59:89:a8:
c2:44:17:38:83:ba:e0:2b:fa:43:41:72:22:1f:53:
c6:53:5e:2a:8c:c6:0c:97:d8:41:8d:69:2b:f3:be:
91:11:bc:d8:23:9b:cd:12:73:da:f3:d2:bf:7f:0c:
4e:c5:fc:39:a5:b7:dd:6b:58:6e:5d:33:67:41:c6:
52:8c:12:14:7d:0f:b0:89:43:82:7d:a2:b7:27:dd:
15:68:32:4e:3c:c8:5d:94:e2:20:10:08:47:39:68:
ca:a7:5d:53:d3:dc:5d:73:af:59:ca:10:ec:38:9f:
6e:d7:5e:d2:02:28:0c:fe:fc:e0:fe:da:46:c8:12:
c6:3b:97:c9:b0:f1:c4:53:28:9d:cc:90:99:2d:12:
46:99:f0:93:0f:5f:55:fa:0d:5a:66:24:32:fd:3d:
7a:f3:40:86:88:17:b2:39:a0:62:64:af:99:6b:f7:
7d:ba:c8:89:1e:99:7d:ae:79:18:45:3f:b9:b3:d2:
15:e8:cd:0b:87:45:46:de:44:f8:c3:4c:74:75:44:
62:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:82:7A:E3:F7:8C:B0:54:2E:0C:02:7E:8A:41:64:52:1D:15:72:4A
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/DoJ64_eMsFQuDAJ-ikFkUh0Vcko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.134.0/24
46.3.160.0/22
46.3.201.0/24
46.3.205.0/24
46.3.216.0/22
46.3.222.0/24
46.3.248.0/24
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/22
149.126.242.0-149.126.245.255
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:79:3c:0d:a3:a7:53:1c:db:31:f5:5e:6a:82:9a:04:c8:d0:
fd:58:6b:ac:f8:e7:0b:bb:49:a3:43:53:1e:56:bd:48:b9:15:
b6:99:1d:74:fb:a9:bd:19:fd:8a:4f:a8:3e:3f:f2:f7:bd:61:
65:11:7d:55:85:de:e0:3d:d7:69:d7:a4:e8:16:96:c9:fa:8b:
86:32:d4:e8:b9:e5:48:e9:96:13:a0:36:3f:8d:6d:6f:6e:05:
4c:d8:f8:55:d9:f3:28:f7:a9:ca:ec:a9:62:43:cb:20:b4:b5:
1f:be:77:59:f8:cb:5b:6f:6d:18:c7:02:f5:01:c2:08:db:a7:
28:4a:55:35:90:e2:0a:f9:b0:d2:fd:0d:7f:59:19:8b:f4:31:
5e:48:a8:18:24:31:4a:95:2d:62:42:dc:5d:3a:f9:f7:ec:4b:
47:07:ac:9a:22:9c:20:86:c8:31:04:bb:d5:df:48:ce:27:d3:
4a:fb:9d:41:cc:80:21:37:58:10:37:8a:ef:4b:fd:a5:17:a2:
05:05:a7:c6:fd:bd:6d:9c:6a:a1:84:d0:51:cd:32:b6:08:09:
c7:6a:ad:f7:6a:c2:bd:ab:88:f2:00:0e:bb:dc:11:3b:20:00:
54:44:4f:3d:cf:d9:96:05:9d:32:2c:4c:8a:3d:d3:42:52:bf:
66:48:1a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 23:46:24 2024 by rpki-client on console-ams.rpki-client.org