Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/KrJPeT5XaEmGOReBX95XnCSJ-iI.roa
File: KrJPeT5XaEmGOReBX95XnCSJ-iI.roa (raw, json)
Hash identifier: gVNe66VOj1GDDFNWYzBU6tYr4tSqIBxd2IMX2qwpUQg=
Subject key identifier: 2A:B2:4F:79:3E:57:68:49:86:39:17:81:5F:DE:57:9C:24:89:FA:22
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018946C5712A57E4D2F5DCD92CF78CB26AD5
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/KrJPeT5XaEmGOReBX95XnCSJ-iI.roa
Signing time: Tue 11 Jul 2023 21:04:51 +0000
ROA not before: Tue 11 Jul 2023 21:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207636
IP address blocks: 46.3.192.0/19 maxlen: 19
80.243.128.0/20 maxlen: 24
46.3.129.0/24 maxlen: 24
46.3.131.0/24 maxlen: 24
46.3.128.0/24 maxlen: 24
149.126.241.0/24 maxlen: 24
46.3.85.0/24 maxlen: 24
149.126.199.0/24 maxlen: 24
149.126.194.0/24 maxlen: 24
46.232.8.0/22 maxlen: 22
46.232.12.0/22 maxlen: 22
149.126.211.0/24 maxlen: 24
149.126.209.0/24 maxlen: 24
46.3.224.0/19 maxlen: 19
149.126.212.0/24 maxlen: 24
46.3.12.0/22 maxlen: 22
46.3.22.0/24 maxlen: 24
46.3.20.0/24 maxlen: 24
46.3.23.0/24 maxlen: 24
46.3.237.0/24 maxlen: 24
46.3.21.0/24 maxlen: 24
149.126.227.0/24 maxlen: 24
46.3.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:46:c5:71:2a:57:e4:d2:f5:dc:d9:2c:f7:8c:b2:6a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 11 21:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ab24f793e576849863917815fde579c2489fa22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1a:21:b1:56:3a:78:93:9f:6a:91:f5:4f:a4:
56:a9:51:ed:c1:db:5b:1f:66:5e:58:8a:aa:7a:e7:
80:76:ea:31:b5:d4:ca:8a:e5:32:26:fc:05:43:e7:
dc:bf:03:c7:76:7a:65:75:6d:bc:ab:64:ea:c3:fc:
2c:17:9b:75:30:81:97:c0:b0:1b:f3:53:56:63:b3:
97:ca:f9:c0:23:b2:83:a7:39:b9:31:7c:51:a5:ed:
0d:c3:33:93:5f:f6:84:80:3d:65:47:76:01:95:22:
f0:59:19:89:dc:15:05:2e:88:19:35:33:92:9b:c2:
a0:44:b4:27:f7:e8:8a:58:3e:43:9a:a0:d3:f2:d5:
8c:3f:5b:d4:1f:ae:db:0f:35:ba:bd:4c:1d:a6:0f:
be:af:bf:8d:d2:cc:9e:ca:8c:88:02:93:9f:99:88:
ee:be:3d:3b:5d:3a:8a:71:49:da:b9:5f:2b:ad:77:
12:10:2f:bd:75:b1:f0:3a:a3:19:e6:d8:fa:8e:f4:
b3:cc:50:dc:a6:ca:64:59:74:53:db:20:20:70:d0:
bc:07:dc:47:fc:4c:0b:5a:82:83:32:a3:de:ab:63:
4f:b1:97:1c:64:71:24:8a:c3:cf:fc:ae:13:b6:de:
ce:9f:9d:25:46:28:21:9c:0e:ad:ab:8a:6e:55:7f:
de:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B2:4F:79:3E:57:68:49:86:39:17:81:5F:DE:57:9C:24:89:FA:22
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/KrJPeT5XaEmGOReBX95XnCSJ-iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0/22
46.3.20.0/22
46.3.85.0/24
46.3.128.0/23
46.3.131.0/24
46.3.192.0/18
46.232.8.0/21
80.243.128.0/20
149.126.194.0/24
149.126.199.0/24
149.126.209.0/24
149.126.211.0-149.126.212.255
149.126.227.0/24
149.126.241.0/24
Signature Algorithm: sha256WithRSAEncryption
17:c3:10:9a:a1:69:d4:4b:ce:cb:dd:07:cc:3b:5e:5d:b7:2d:
d8:d7:d6:2d:9e:01:97:9e:bd:b5:88:e4:13:8d:84:57:5e:51:
37:34:aa:ae:a4:11:b6:b3:9f:b6:53:22:0c:35:32:f7:61:2e:
a7:c3:85:81:1b:61:73:aa:c6:49:e1:dd:31:52:a7:bb:9d:cf:
b9:d3:be:65:5e:9f:ab:c0:fc:4c:c2:54:5b:84:73:5e:a3:96:
fc:b8:e3:c9:24:65:82:57:33:8e:ca:be:6a:a2:9d:35:33:a2:
94:50:22:2c:69:ec:5a:92:ae:8a:a7:fe:4a:6d:5d:79:66:4f:
ad:cf:80:41:5d:29:ee:46:e5:c0:d6:4f:71:ce:06:6b:9d:46:
23:2a:c9:3f:00:c7:9a:5f:b7:76:c7:5f:6c:de:1d:1a:b5:c7:
d4:01:16:22:e0:85:9e:93:67:8c:3c:ac:21:ca:b5:9b:6e:77:
39:13:6a:f0:f0:e3:7a:7a:87:a0:a9:06:c2:d4:fe:cb:17:5c:
5a:76:47:9a:37:1a:43:f3:d6:f0:0d:82:39:f9:92:b0:3d:69:
32:d0:57:0d:47:6b:41:2c:de:da:c2:63:ec:07:53:71:cf:12:
03:ca:bb:17:4e:09:3c:74:37:55:c3:f7:8c:f2:1a:2e:e3:04:
33:53:49:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org