Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Dq_ehW4bzyxGK-eGm1p9v4qoXy8.roa
File: Dq_ehW4bzyxGK-eGm1p9v4qoXy8.roa (raw, json)
Hash identifier: BJisrhRIc6kSxxIh1y46Y+gS8wWKZSVnIEIwnDegp3I=
Subject key identifier: 0E:AF:DE:85:6E:1B:CF:2C:46:2B:E7:86:9B:5A:7D:BF:8A:A8:5F:2F
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0185719555E972434A733C525DFEB0DE6373
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Dq_ehW4bzyxGK-eGm1p9v4qoXy8.roa
Signing time: Mon 02 Jan 2023 08:24:50 +0000
ROA not before: Mon 02 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 46.3.152.0/22 maxlen: 22
46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.92.0/22 maxlen: 22
46.3.128.0/23 maxlen: 23
46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.232.96.0/19 maxlen: 19
46.232.0.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.232.16.0/22 maxlen: 22
46.3.224.0/22 maxlen: 22
46.3.16.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.3.24.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
46.3.30.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:55:e9:72:43:4a:73:3c:52:5d:fe:b0:de:63:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0eafde856e1bcf2c462be7869b5a7dbf8aa85f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2a:84:df:0f:2f:1a:de:18:c6:c5:5a:86:dc:
5d:8f:d6:77:14:bb:99:56:2d:8f:05:d7:09:e2:c1:
7b:d7:8f:59:9b:8d:c2:23:01:25:01:c5:6a:f5:89:
b1:78:e0:25:cd:53:60:b7:1e:12:5e:d2:71:97:f9:
3f:09:87:4b:bd:ac:76:09:e9:6d:1e:73:0f:72:97:
d3:cf:d0:a1:c3:0d:cc:78:f1:2f:36:78:52:1a:9b:
64:a6:5d:22:44:bf:88:77:cc:5d:af:2a:34:db:68:
46:58:96:d8:af:83:6a:97:fe:71:af:4a:15:04:95:
ac:de:fc:a0:74:4f:0c:56:9b:e1:d2:3b:44:e7:06:
ea:fd:15:5b:59:f4:c8:3c:85:c7:99:b8:bb:17:17:
65:c2:85:35:ca:8d:6b:ab:38:f8:8a:ce:0d:e4:24:
cd:e1:41:b9:02:1e:53:74:a1:09:b3:a0:cf:1c:e8:
19:ca:3f:27:97:05:e7:86:57:09:e6:c1:9f:87:59:
b7:f7:a6:f9:83:68:cb:d0:22:b5:c9:43:b0:a5:48:
6b:d0:cb:4b:8b:ba:37:da:40:96:2d:da:31:cc:47:
19:e8:24:39:b0:04:0d:b6:b4:5e:2f:8b:39:3d:33:
4d:e4:07:16:a0:f4:3f:07:93:bf:03:9b:a2:33:ab:
70:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AF:DE:85:6E:1B:CF:2C:46:2B:E7:86:9B:5A:7D:BF:8A:A8:5F:2F
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Dq_ehW4bzyxGK-eGm1p9v4qoXy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0-46.3.19.255
46.3.24.0/22
46.3.30.0/24
46.3.64.0-46.3.129.255
46.3.152.0/22
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/24
46.232.16.0/22
46.232.32.0-46.232.127.255
Signature Algorithm: sha256WithRSAEncryption
66:17:6b:f3:aa:fc:bd:61:11:2e:8c:d6:81:af:07:c2:08:74:
af:c6:06:b0:90:17:08:9b:82:85:6c:9c:4d:55:ed:fb:84:bf:
0e:66:24:e2:3c:e8:1d:a8:51:fc:1a:4a:46:9d:ac:65:59:19:
5d:13:15:21:e3:5d:17:0a:c0:e6:8f:5f:c7:d4:0c:e1:1a:19:
6e:f3:ae:93:6e:e0:c8:16:d8:a3:f5:00:6d:6a:de:35:00:2c:
03:88:89:f5:db:36:8b:09:bd:09:b9:40:ae:41:28:91:7f:ed:
cd:6c:c3:82:6f:f7:7c:54:be:32:86:77:ce:8d:4a:ad:27:57:
f4:2c:65:0f:b1:d5:27:3c:84:a1:58:5d:b5:e3:24:34:74:a2:
f4:6e:e1:4e:5b:71:03:62:b9:8d:43:ab:17:6a:cb:f7:45:2c:
9c:7e:1c:ff:0a:1d:cf:75:02:bc:0b:77:78:db:bb:ae:32:b6:
6e:03:fd:92:26:62:41:03:8c:42:f8:38:51:86:5a:73:7a:77:
0e:65:d4:7c:8b:1f:7e:6d:9d:c2:14:c1:3d:ee:af:39:f5:8a:
3a:e8:a1:f7:23:54:18:be:86:91:24:ad:8d:31:cb:17:74:d6:
63:8c:d8:cf:3a:2d:80:9e:88:aa:71:6d:8f:c5:29:25:ea:d2:
67:63:6d:12
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAYVxlVXpckNKczxSXf6w3mNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwMTAyMDgyNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWFmZGU4NTZlMWJjZjJjNDYyYmU3ODY5YjVhN2RiZjhhYTg1ZjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgCqE3w8vGt4YxsVahtxdj9Z3FLuZ
Vi2PBdcJ4sF7149Zm43CIwElAcVq9YmxeOAlzVNgtx4SXtJxl/k/CYdLvax2Celt
HnMPcpfTz9Chww3MePEvNnhSGptkpl0iRL+Id8xdryo022hGWJbYr4Nql/5xr0oV
BJWs3vygdE8MVpvh0jtE5wbq/RVbWfTIPIXHmbi7FxdlwoU1yo1rqzj4is4N5CTN
4UG5Ah5TdKEJs6DPHOgZyj8nlwXnhlcJ5sGfh1m396b5g2jL0CK1yUOwpUhr0MtL
i7o32kCWLdoxzEcZ6CQ5sAQNtrReL4s5PTNN5AcWoPQ/B5O/A5uiM6tw7wIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFA6v3oVuG88sRivnhptafb+KqF8vMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvRHFfZWhXNGJ6eXhHSy1lR20xcDl2NHFvWHk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcMAwDBAIuAwwD
BAIuAxADBAIuAxgDBAAuAx4wDAMEBi4DQAMEAS4DgAMEAi4DmAMEBS4DoDAMAwQD
LgPYAwQCLgPgAwQALugAAwQCLugQMAwDBAUu6CADBAcu6AAwDQYJKoZIhvcNAQEL
BQADggEBAGYXa/Oq/L1hES6M1oGvB8IIdK/GBrCQFwibgoVsnE1V7fuEvw5mJOI8
6B2oUfwaSkadrGVZGV0TFSHjXRcKwOaPX8fUDOEaGW7zrpNu4MgW2KP1AG1q3jUA
LAOIifXbNosJvQm5QK5BKJF/7c1sw4Jv93xUvjKGd86NSq0nV/QsZQ+x1Sc8hKFY
XbXjJDR0ovRu4U5bcQNiuY1Dqxdqy/dFLJx+HP8KHc91ArwLd3jbu64ytm4D/ZIm
YkEDjEL4OFGGWnN6dw5l1HyLH35tncIUwT3urzn1ijroofcjVBi+hpEkrY0xyxd0
1mOM2M86LYCeiKpxbY/FKSXq0mdjbRI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org