Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IRBs07LkOYE0JuHlmi3AYZeQ5zQ.roa
File: IRBs07LkOYE0JuHlmi3AYZeQ5zQ.roa (raw, json)
Hash identifier: RRTq4CJ6J4S+N5v5JRstKvgqAk2Y3iMRTWMXKEt1xK4=
Subject key identifier: 21:10:6C:D3:B2:E4:39:81:34:26:E1:E5:9A:2D:C0:61:97:90:E7:34
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0188A972C882AE404FE7C8D0F4E0B3574BEF
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IRBs07LkOYE0JuHlmi3AYZeQ5zQ.roa
Signing time: Sun 11 Jun 2023 07:54:11 +0000
ROA not before: Sun 11 Jun 2023 07:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 46.3.39.0/24 maxlen: 24
46.3.64.0/24 maxlen: 24
46.3.67.0/24 maxlen: 24
46.232.84.0/24 maxlen: 24
46.3.69.0/24 maxlen: 24
46.232.82.0/24 maxlen: 24
46.3.71.0/24 maxlen: 24
46.232.80.0/24 maxlen: 24
46.232.81.0/24 maxlen: 24
46.3.65.0/24 maxlen: 24
46.232.85.0/24 maxlen: 24
46.3.66.0/24 maxlen: 24
46.3.68.0/24 maxlen: 24
46.3.70.0/24 maxlen: 24
46.232.83.0/24 maxlen: 24
46.3.73.0/24 maxlen: 24
46.232.86.0/24 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.78.0/24 maxlen: 24
46.232.90.0/24 maxlen: 24
46.232.89.0/24 maxlen: 24
46.232.91.0/24 maxlen: 24
46.3.75.0/24 maxlen: 24
46.232.88.0/24 maxlen: 24
46.3.74.0/24 maxlen: 24
46.232.87.0/24 maxlen: 24
46.3.72.0/24 maxlen: 24
46.232.94.0/24 maxlen: 24
46.3.79.0/24 maxlen: 24
46.232.92.0/24 maxlen: 24
46.232.95.0/24 maxlen: 24
46.232.93.0/24 maxlen: 24
46.3.4.0/24 maxlen: 24
46.3.6.0/24 maxlen: 24
46.3.7.0/24 maxlen: 24
46.3.5.0/24 maxlen: 24
46.232.24.0/24 maxlen: 24
46.232.31.0/24 maxlen: 24
46.232.27.0/24 maxlen: 24
46.3.16.0/24 maxlen: 24
46.232.29.0/24 maxlen: 24
46.232.25.0/24 maxlen: 24
46.232.28.0/24 maxlen: 24
46.232.26.0/24 maxlen: 24
46.3.17.0/24 maxlen: 24
46.232.30.0/24 maxlen: 24
46.3.18.0/24 maxlen: 24
46.3.24.0/24 maxlen: 24
46.3.19.0/24 maxlen: 24
46.3.26.0/24 maxlen: 24
46.3.30.0/24 maxlen: 24
46.3.27.0/24 maxlen: 24
46.3.25.0/24 maxlen: 24
46.3.35.0/24 maxlen: 24
46.3.33.0/24 maxlen: 24
46.3.37.0/24 maxlen: 24
46.3.32.0/24 maxlen: 24
46.3.36.0/24 maxlen: 24
46.3.34.0/24 maxlen: 24
46.3.38.0/24 maxlen: 24
149.126.192.0/24 maxlen: 24
149.126.197.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
149.126.207.0/24 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.150.0/24 maxlen: 24
46.3.148.0/24 maxlen: 24
46.3.151.0/24 maxlen: 24
46.3.149.0/24 maxlen: 24
46.3.95.0/24 maxlen: 24
46.3.93.0/24 maxlen: 24
46.3.94.0/24 maxlen: 24
46.3.92.0/24 maxlen: 24
46.3.204.0/24 maxlen: 24
46.3.203.0/24 maxlen: 24
46.3.226.0/24 maxlen: 24
46.3.224.0/24 maxlen: 24
46.3.225.0/24 maxlen: 24
46.3.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a9:72:c8:82:ae:40:4f:e7:c8:d0:f4:e0:b3:57:4b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 11 07:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21106cd3b2e439813426e1e59a2dc0619790e734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:41:ea:de:68:76:6a:60:b9:aa:41:84:56:
9e:d7:b7:16:5e:c2:7a:97:60:55:56:d1:e1:b3:55:
fc:1d:75:40:12:5f:49:a5:5a:13:1d:f4:1f:0e:3d:
f3:f1:21:b2:1d:f9:3e:8a:ae:4d:a3:51:f8:ff:78:
15:94:71:92:cf:09:22:54:a0:45:2b:ed:70:a1:64:
5a:4e:48:88:76:b9:36:6b:82:73:83:ad:a2:7f:67:
b1:05:c9:68:46:ab:4c:8e:c1:9b:8c:f3:8a:d1:bd:
28:37:1d:d2:89:fc:23:c9:fa:e2:56:44:7d:88:f2:
5b:fa:d3:2e:e1:ff:2c:30:c8:50:b2:af:b1:d4:53:
e5:f0:89:df:c5:e3:09:77:cb:06:9b:56:15:d6:0b:
5d:70:99:a0:27:29:39:88:a1:d0:09:ce:fe:cf:9f:
7a:d5:a3:c0:94:d4:d4:11:d9:18:6b:c1:98:5e:81:
19:4a:53:e7:06:aa:96:a1:c8:90:b0:c5:eb:3f:87:
90:19:3e:48:79:26:ca:87:11:f5:7d:35:d4:37:4e:
1c:b2:40:a7:7f:c1:9a:6c:b7:31:1b:d4:6a:7f:2c:
08:fe:bf:3c:4c:1e:22:61:b3:8b:cc:87:12:50:1f:
de:fe:96:04:95:56:f7:e4:8d:ff:e8:42:12:cc:07:
58:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:10:6C:D3:B2:E4:39:81:34:26:E1:E5:9A:2D:C0:61:97:90:E7:34
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/IRBs07LkOYE0JuHlmi3AYZeQ5zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.30.0/24
46.3.32.0/21
46.3.64.0/20
46.3.92.0/22
46.3.148.0/22
46.3.203.0-46.3.204.255
46.3.224.0/22
46.232.24.0/21
46.232.80.0/20
149.126.192.0/24
149.126.197.0/24
149.126.200.0/24
149.126.207.0/24
149.126.215.0/24
Signature Algorithm: sha256WithRSAEncryption
92:34:25:65:10:3f:9b:bb:fe:bb:1b:2e:9e:8c:4a:a8:14:4b:
c1:03:e9:ac:37:7f:b9:21:24:74:4d:06:c4:89:01:3b:0d:f1:
10:23:c2:80:5d:42:33:e2:a5:80:83:7e:28:81:14:c3:88:0e:
f9:f4:6e:ce:d4:7d:10:cf:0c:09:8a:2a:f3:b7:0b:b9:d2:44:
b7:c8:6b:1c:a4:75:8c:1c:7d:97:52:b5:ba:b5:3b:ab:54:3d:
4e:f4:6d:d2:67:38:b7:65:81:92:27:87:85:a7:ea:d3:37:5e:
e1:03:aa:e2:a4:4f:80:d8:61:0f:27:a9:26:6c:23:37:46:b2:
a6:1a:67:aa:0a:5a:3c:15:b1:e5:15:18:31:b8:c8:7a:6e:c0:
26:d2:35:8d:7f:d9:a1:d0:b0:cb:e4:8f:d8:cd:c6:27:dd:05:
a6:33:f2:ca:84:a9:9b:a7:88:e8:98:ce:89:42:c3:b9:0b:8f:
06:4d:04:e4:7e:21:5a:7f:b6:50:73:e4:34:35:ac:6a:db:5b:
55:2a:a8:8b:b8:90:98:59:55:b6:a9:77:bc:e6:8f:dc:fb:3b:
f9:69:b0:f9:65:a2:42:fc:72:95:fa:f7:41:f4:e6:0b:0f:24:
b6:00:bd:ac:fa:7f:d8:61:1f:b2:04:9a:8d:7d:25:12:f2:c4:
da:6a:ea:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org