Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/HHcLwtxlSAXIWihFw5oIaH58THc.roa
File: HHcLwtxlSAXIWihFw5oIaH58THc.roa (raw, json)
Hash identifier: rqPreGvHJ4Y/4nfrlLByLlDz9iqdiSAQ87RS3PlJ614=
Subject key identifier: 1C:77:0B:C2:DC:65:48:05:C8:5A:28:45:C3:9A:08:68:7E:7C:4C:77
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881E14A4A8FB999285EA33835D68B94812
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/HHcLwtxlSAXIWihFw5oIaH58THc.roa
Signing time: Mon 15 May 2023 06:24:09 +0000
ROA not before: Mon 15 May 2023 06:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.101.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.243.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:14:a4:a8:fb:99:92:85:ea:33:83:5d:68:b9:48:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 06:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c770bc2dc654805c85a2845c39a08687e7c4c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f8:58:b4:ce:1c:cf:a3:26:83:80:80:11:d2:
c6:b9:ec:04:9e:68:c2:71:63:73:13:8c:e8:78:0a:
d3:a0:0e:8e:6d:74:92:7d:24:e5:cf:44:2a:41:fb:
98:4f:09:44:be:9c:a1:c7:b1:6b:73:48:88:dd:56:
e5:30:88:7d:fa:5f:a1:39:53:c6:d3:fa:f8:92:08:
9d:29:2d:5c:2e:83:9f:11:54:68:e5:43:d6:a6:75:
a4:b0:81:2d:14:db:97:a7:d2:dd:26:45:ab:3f:77:
f1:13:a8:32:39:bc:0a:b5:eb:6a:4f:27:c8:18:a2:
eb:c7:22:bd:6a:40:f2:fd:58:61:e5:2b:64:73:6d:
12:9b:37:32:11:e9:59:8b:0c:ec:75:39:1b:cc:08:
48:4d:46:33:78:05:00:5e:d7:cb:7e:79:6e:13:78:
f7:79:ff:7b:60:48:e5:a5:5a:42:d9:c8:bb:a7:82:
7a:3e:25:35:6b:1d:4b:b3:11:c3:17:bb:d1:e7:53:
1b:cd:5c:9a:5f:06:35:81:f7:8f:9d:3f:3b:41:42:
39:e6:3e:57:b7:32:16:1b:8a:7d:0f:aa:39:e6:f9:
55:ed:d1:68:c8:11:fa:24:82:af:ad:65:3d:68:48:
69:39:41:f3:1e:d4:59:ed:23:be:5a:b9:18:db:8e:
d0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:77:0B:C2:DC:65:48:05:C8:5A:28:45:C3:9A:08:68:7E:7C:4C:77
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/HHcLwtxlSAXIWihFw5oIaH58THc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0/24
46.3.202.0/24
46.3.243.0/24
46.3.245.0-46.3.246.255
46.3.250.0/24
46.3.252.0/24
46.232.64.0-46.232.72.255
Signature Algorithm: sha256WithRSAEncryption
09:8b:dc:27:a0:c1:98:c8:16:d6:11:e7:38:9d:f6:61:46:71:
ab:d6:34:7d:7c:c0:76:2d:33:11:15:f4:37:84:65:b1:61:26:
69:92:6e:58:2d:c8:0e:0b:c7:7b:5e:81:20:68:34:21:21:76:
02:fc:e0:7f:f3:a0:03:05:54:f6:b0:f1:57:4c:3c:ed:2b:a3:
3d:3c:f7:04:38:24:1f:99:da:92:84:b7:64:87:7b:81:15:04:
a7:90:08:f0:8b:b7:23:e2:1e:7a:f8:4c:d6:99:d0:e5:52:86:
09:6e:d0:bd:36:50:b9:3a:5b:cf:0b:ae:ad:72:5b:47:f3:ec:
c0:31:3d:34:6e:29:92:67:87:4d:d9:9b:26:1a:5a:e9:0b:70:
11:45:2d:f0:aa:70:8c:1a:37:b9:fc:d0:1e:c6:7a:fb:ab:dd:
48:4d:3c:2a:e7:cc:07:ca:d3:ff:dc:a1:e4:51:18:71:5d:07:
d0:1b:ae:b6:35:73:b5:c9:19:92:1f:f6:03:28:45:ac:8a:75:
d6:19:a2:9f:c0:dc:91:95:01:7d:0c:07:36:43:18:b4:73:a8:
e3:85:a3:49:2b:1d:09:05:19:17:76:21:bb:09:65:17:99:06:
db:f3:d0:4e:1e:31:12:fd:59:3f:2c:59:2b:56:fb:05:57:84:
1f:53:ae:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 31 10:48:29 2023 by rpki-client on console-fra.rpki-client.org