Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Eb57U6TdbQ8TPUFSqg_Wf2oF42U.roa
File: Eb57U6TdbQ8TPUFSqg_Wf2oF42U.roa (raw, json)
Hash identifier: zJZxxHVjs/MpzfJFUUaps+SNMzPSlXSUBdBmHT+4zAU=
Subject key identifier: 11:BE:7B:53:A4:DD:6D:0F:13:3D:41:52:AA:0F:D6:7F:6A:05:E3:65
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CC94E655E74876B2A079AF7FDDA3AC385
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Eb57U6TdbQ8TPUFSqg_Wf2oF42U.roa
Signing time: Tue 02 Jan 2024 08:33:27 +0000
ROA not before: Tue 02 Jan 2024 08:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 46.3.160.0/22 maxlen: 22
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.243.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
46.3.205.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.216.0/22 maxlen: 22
46.3.222.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.229.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.230.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 07:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:65:5e:74:87:6b:2a:07:9a:f7:fd:da:3a:c3:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11be7b53a4dd6d0f133d4152aa0fd67f6a05e365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:20:52:89:09:1c:b5:7d:15:90:b1:e5:33:48:
eb:c4:2e:0a:8c:44:e7:40:b0:3d:bb:df:e7:63:bb:
75:02:a2:b3:45:db:19:3b:b7:13:76:95:f2:d1:12:
6f:e1:4e:41:9c:c2:1b:10:a5:cd:2f:15:73:48:4a:
54:e0:68:87:41:5d:d2:b9:00:78:e8:99:63:1e:1a:
93:5d:55:e1:de:e4:8e:ce:3b:0f:6b:60:d0:8b:4d:
7a:48:26:81:de:bd:1c:78:19:0a:56:41:24:48:f8:
9f:28:9b:d8:71:7f:f6:57:52:49:55:95:19:01:85:
b1:a1:71:69:b2:40:2c:a3:ad:e1:7d:d4:d5:26:1c:
e1:25:f2:74:82:d7:a2:b6:7b:7c:ef:e1:60:99:bd:
a5:71:23:38:51:c5:d4:10:53:12:4f:31:ef:54:9c:
7e:f4:a2:71:48:70:9b:b9:7d:ea:20:bf:8e:c2:d1:
c7:98:9b:e4:80:bc:3f:dc:0a:c4:00:00:1d:08:eb:
fd:29:a1:db:46:e9:b2:8e:62:b3:7a:36:8c:cf:a3:
48:78:e3:0d:88:d8:82:19:10:65:fb:b2:77:92:7b:
a0:db:d5:12:cd:ef:cb:22:0f:ed:e9:9b:f8:a9:02:
c4:52:3f:8d:aa:e7:2a:8a:5a:c6:e8:64:4f:90:0c:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BE:7B:53:A4:DD:6D:0F:13:3D:41:52:AA:0F:D6:7F:6A:05:E3:65
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Eb57U6TdbQ8TPUFSqg_Wf2oF42U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.134.0/24
46.3.160.0/22
46.3.201.0/24
46.3.205.0/24
46.3.216.0/22
46.3.222.0/24
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/22
149.126.242.0-149.126.245.255
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:9c:a9:74:a1:b1:05:b3:b9:96:a7:06:2d:5c:1a:ea:7d:0f:
14:1b:5d:ba:1c:eb:bf:48:70:17:b8:4d:a0:55:1d:de:6f:a9:
09:3f:c5:ae:e2:42:3d:76:ad:ef:a3:f5:f4:25:3e:59:26:f4:
24:43:6d:bf:97:38:32:7a:01:52:90:5c:a0:6d:ca:74:5d:b6:
74:b5:03:3e:05:f3:d4:61:b3:0a:dc:20:d9:69:b0:7d:ad:aa:
f3:5a:66:94:a1:be:37:8f:3f:19:bc:3a:ed:97:a7:45:fb:9b:
e1:89:0f:b5:2c:70:9a:c2:44:2a:da:46:a2:09:25:a0:5c:c6:
be:29:36:95:d1:a1:92:3d:75:78:a5:6f:fb:3c:59:3a:84:84:
ba:0f:c4:4a:27:31:24:67:93:b8:67:d2:f9:fc:bc:74:f2:3a:
2c:69:ad:80:0e:5a:a8:70:2e:d8:c4:30:b7:8c:0d:90:9d:ba:
42:81:6e:c1:dd:69:d6:77:f6:48:ee:b7:5e:a3:c3:07:21:cf:
f5:10:51:4d:a4:04:78:a5:e7:1e:6a:a2:52:32:e5:26:c5:59:
ec:e5:73:05:59:e3:1a:7d:72:11:ab:2e:59:7d:6e:cd:92:22:
ee:6d:dc:26:e1:b8:22:c1:09:2c:d4:ce:1e:10:d9:c0:22:e1:
58:39:01:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 11:47:50 2024 by rpki-client on console-ams.rpki-client.org