Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Gsr98FxqMqqo7i7OInqQubEwqcI.roa
File: Gsr98FxqMqqo7i7OInqQubEwqcI.roa (raw, json)
Hash identifier: ctS9qcBKqpB023qCzFPzG3dQX0EXhuJZ9iW4tvhbJl8=
Subject key identifier: 1A:CA:FD:F0:5C:6A:32:AA:A8:EE:2E:CE:22:7A:90:B9:B1:30:A9:C2
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0189A373E1E37BE3E936EB72CE027A0156C2
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Gsr98FxqMqqo7i7OInqQubEwqcI.roa
Signing time: Sat 29 Jul 2023 21:00:27 +0000
ROA not before: Sat 29 Jul 2023 21:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 46.232.72.0/21 maxlen: 21
46.232.96.0/20 maxlen: 20
46.3.86.0/23 maxlen: 23
149.126.196.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.206.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
46.232.20.0/22 maxlen: 22
149.126.210.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a3:73:e1:e3:7b:e3:e9:36:eb:72:ce:02:7a:01:56:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 29 21:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1acafdf05c6a32aaa8ee2ece227a90b9b130a9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:34:7e:da:1a:e0:c7:26:60:df:a8:bb:98:ca:
e6:91:93:3b:68:6b:44:4b:fa:02:27:df:1a:53:fe:
89:31:3e:82:10:9d:48:fa:21:17:49:64:ff:24:b7:
d1:e2:18:8f:a2:59:12:bb:61:f9:bd:63:b6:57:cd:
d7:af:be:d7:c4:9c:3f:9b:4e:07:45:58:34:7e:03:
3b:13:b4:ec:1f:e4:0b:1f:4c:87:92:11:ae:09:30:
5d:77:5e:3c:45:97:c1:7b:48:8a:ed:63:79:92:21:
11:1d:33:38:15:37:b4:4b:a1:41:d8:e6:06:7b:69:
04:a7:37:62:3f:2c:a3:0f:55:d6:ea:30:55:ae:a1:
69:c3:fd:1e:a7:e1:8e:96:72:64:b5:54:48:c1:6f:
55:d3:63:31:a2:63:83:f7:a5:47:59:47:b5:b9:58:
02:af:13:08:83:a2:07:48:3b:1a:2a:20:86:11:83:
e9:9f:4c:c1:44:6e:7e:cd:83:cf:c7:ac:ae:85:3f:
b0:eb:31:58:a4:33:c6:ae:1f:93:d2:23:85:b8:14:
4d:44:43:93:a3:8c:e4:36:d9:ae:1b:1d:7c:e8:c2:
4a:2b:7b:26:2b:32:c6:8e:79:a0:91:38:28:fe:6f:
27:aa:0f:9f:18:9b:cd:54:65:5f:20:89:88:98:41:
3b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CA:FD:F0:5C:6A:32:AA:A8:EE:2E:CE:22:7A:90:B9:B1:30:A9:C2
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Gsr98FxqMqqo7i7OInqQubEwqcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.86.0/23
46.232.20.0/22
46.232.72.0/21
46.232.96.0/20
149.126.193.0/24
149.126.195.0-149.126.196.255
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0-149.126.206.255
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.224.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:91:01:e6:e5:f9:3a:88:e9:14:76:4e:66:1d:c9:59:6b:3d:
9e:64:35:67:ed:88:68:da:77:49:79:6a:ff:d3:bf:b1:6c:77:
d6:73:5d:e9:00:fb:73:f2:2a:ae:29:5b:84:af:43:52:5d:f1:
71:e5:6e:c5:25:5e:3f:86:28:25:f8:7a:3e:f2:fa:eb:58:ea:
35:ad:69:52:f4:d7:5b:db:af:46:8f:4e:85:53:01:e0:1b:46:
e3:24:13:98:63:12:1d:ef:3c:60:09:a0:46:b4:d1:86:08:f6:
a1:e6:ee:1e:f3:98:af:f4:58:c9:4c:c9:80:4e:d2:e7:b5:97:
6e:98:7a:ed:c1:c6:d3:af:31:c6:08:d4:95:3b:ee:7b:25:15:
99:e6:bd:1b:39:12:49:a6:41:27:e1:06:82:a0:a6:50:cc:3e:
30:8f:61:12:fa:16:88:29:b2:ca:84:09:5c:d9:eb:b3:ef:d8:
dc:bd:ea:1d:f8:1c:c2:77:27:2f:5c:2b:c1:80:02:63:a1:af:
fd:bb:f3:df:76:9d:eb:3d:a6:d0:78:a7:82:ef:67:e0:4d:92:
86:82:97:cc:b6:a0:ec:2f:15:77:81:0f:8a:9e:c9:b3:f6:48:
7c:67:c5:59:1a:0e:38:49:03:af:e9:7a:2d:1b:03:a1:2f:6f:
55:39:7a:bb
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYmjc+Hje+PpNutyzgJ6AVbCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwNzI5MjEwMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWNhZmRmMDVjNmEzMmFhYThlZTJlY2UyMjdhOTBiOWIxMzBhOWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTR+2hrgxyZg36i7mMrmkZM7aGtE
S/oCJ98aU/6JMT6CEJ1I+iEXSWT/JLfR4hiPolkSu2H5vWO2V83Xr77XxJw/m04H
RVg0fgM7E7TsH+QLH0yHkhGuCTBdd148RZfBe0iK7WN5kiERHTM4FTe0S6FB2OYG
e2kEpzdiPyyjD1XW6jBVrqFpw/0ep+GOlnJktVRIwW9V02MxomOD96VHWUe1uVgC
rxMIg6IHSDsaKiCGEYPpn0zBRG5+zYPPx6yuhT+w6zFYpDPGrh+T0iOFuBRNREOT
o4zkNtmuGx186MJKK3smKzLGjnmgkTgo/m8nqg+fGJvNVGVfIImImEE77QIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFBrK/fBcajKqqO4uziJ6kLmxMKnCMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvR3NyOThGeHFNcXFvN2k3T0lucVF1YkV3cWNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQBLgNWAwQC
LugUAwQDLuhIAwQELuhgAwQAlX7BMAwDBACVfsMDBACVfsQDBACVfsYwDAMEAJV+
yQMEAJV+yjAMAwQClX7MAwQAlX7OAwQAlX7QAwQAlX7SAwQAlX7WAwQBlX7gMA0G
CSqGSIb3DQEBCwUAA4IBAQAOkQHm5fk6iOkUdk5mHclZaz2eZDVn7Yho2ndJeWr/
07+xbHfWc13pAPtz8iquKVuEr0NSXfFx5W7FJV4/higl+Ho+8vrrWOo1rWlS9Ndb
269Gj06FUwHgG0bjJBOYYxId7zxgCaBGtNGGCPah5u4e85iv9FjJTMmATtLntZdu
mHrtwcbTrzHGCNSVO+57JRWZ5r0bORJJpkEn4QaCoKZQzD4wj2ES+haIKbLKhAlc
2euz79jcveod+BzCdycvXCvBgAJjoa/9u/Pfdp3rPabQeKeC72fgTZKGgpfMtqDs
LxV3gQ+Knsmz9kh8Z8VZGg44SQOv6XotGwOhL29VOXq7
-----END CERTIFICATE-----
Generated at Fri Aug 11 10:30:52 2023 by rpki-client on console-fra.rpki-client.org