Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/FKPGaGJYCmqtI-DS_lwxEl3GMbM.roa
File: FKPGaGJYCmqtI-DS_lwxEl3GMbM.roa (raw, json)
Hash identifier: wuFHI0HwtmUMQHopn9gmmvv0WNEWbe+Mu+Zl2nTWn/w=
Subject key identifier: 14:A3:C6:68:62:58:0A:6A:AD:23:E0:D2:FE:5C:31:12:5D:C6:31:B3
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0189E40415BB7937B238E1DBF20A98C0B7F2
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/FKPGaGJYCmqtI-DS_lwxEl3GMbM.roa
Signing time: Fri 11 Aug 2023 09:53:40 +0000
ROA not before: Fri 11 Aug 2023 09:53:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 46.232.72.0/21 maxlen: 21
46.232.96.0/20 maxlen: 20
46.3.86.0/23 maxlen: 23
46.232.4.0/23 maxlen: 23
149.126.196.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.206.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
46.232.20.0/22 maxlen: 22
149.126.210.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:04:15:bb:79:37:b2:38:e1:db:f2:0a:98:c0:b7:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Aug 11 09:53:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14a3c66862580a6aad23e0d2fe5c31125dc631b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:97:03:b1:54:36:62:5f:99:2c:74:11:bd:
90:be:f6:b6:12:95:dc:52:09:fa:e3:80:9c:25:c4:
4e:64:c2:37:bd:fd:49:50:de:07:44:7a:cd:30:19:
e5:be:f4:46:1f:c0:70:31:d6:f8:8f:1b:14:d6:a5:
17:a5:64:28:81:b3:5e:0f:45:49:7b:d1:a4:47:e5:
59:c5:31:ff:05:58:a1:12:2b:4b:ff:26:28:7d:2a:
b7:f8:58:c6:2e:96:15:78:58:34:7e:57:af:63:51:
5c:6e:6d:fe:ec:57:ef:73:3b:ba:ba:5e:38:90:c2:
46:90:bf:e3:2c:29:08:35:5a:9e:4a:2b:2a:15:be:
51:5c:b1:18:e9:5c:bf:21:c4:d6:f5:75:51:52:95:
bf:f3:bb:b5:39:31:54:30:79:ac:55:df:c8:6d:8a:
e2:aa:dd:d2:63:8f:cf:93:86:a0:84:73:21:3b:d8:
26:e6:b0:a6:9f:cc:35:d2:81:25:00:69:b9:2b:dc:
b9:b5:d7:6b:92:0b:f3:37:e9:8d:b8:41:23:65:fc:
e3:65:8b:5a:55:84:21:ca:c2:ae:3a:8e:8b:ad:cf:
24:b8:49:da:0b:f7:20:00:af:00:61:5d:71:46:17:
59:c0:0a:a3:67:af:23:c9:ce:fe:4a:dd:33:fc:f6:
f7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A3:C6:68:62:58:0A:6A:AD:23:E0:D2:FE:5C:31:12:5D:C6:31:B3
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/FKPGaGJYCmqtI-DS_lwxEl3GMbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.86.0/23
46.232.4.0/23
46.232.20.0/22
46.232.72.0/21
46.232.96.0/20
149.126.193.0/24
149.126.195.0-149.126.196.255
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0-149.126.206.255
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.224.0/23
Signature Algorithm: sha256WithRSAEncryption
32:b7:2d:61:5c:fb:0c:d0:55:c3:18:60:35:8e:d3:8c:55:f9:
ab:61:d6:6c:94:7c:ae:b4:f1:d4:8f:63:04:04:06:09:30:2b:
bf:d5:32:8f:22:e0:56:8f:2f:c7:13:17:02:8e:43:66:2b:45:
90:ee:b0:41:01:cd:3a:f1:6d:da:2b:c4:d3:04:8b:79:54:4c:
4a:34:32:c7:28:ba:03:88:68:59:42:b6:e9:b8:e9:bb:2e:92:
f7:41:53:0a:d2:18:65:39:0c:09:fb:51:f5:a9:96:c1:e0:e2:
59:1a:6e:3a:d4:b6:99:59:10:f7:07:80:71:71:79:8c:00:27:
14:f9:e2:cb:80:e8:9d:47:90:20:2c:7f:dd:31:7a:34:19:d4:
7a:c6:9b:e3:13:8f:40:3b:2e:af:c5:70:4d:00:57:04:05:cf:
55:3f:aa:06:51:1e:32:2a:48:21:0d:d7:2f:0a:55:bf:ad:93:
7f:27:c2:08:f1:a4:1d:83:57:89:5e:06:c5:6e:b7:d7:22:55:
03:41:44:c7:1c:eb:e5:4e:50:2c:14:55:3a:b5:53:b7:d1:0e:
10:6f:81:f0:9d:01:5f:70:f5:b6:49:d3:44:00:3c:f9:c8:f7:
72:ed:98:2d:ff:9f:2b:6c:74:43:33:06:6d:8d:af:68:66:3c:
73:ae:c3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:59 2024 by rpki-client on console-fra.rpki-client.org