Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Kwv2DzunX0CQVu9PnBJ0GfwCuos.roa
File: Kwv2DzunX0CQVu9PnBJ0GfwCuos.roa (raw, json)
Hash identifier: S/XjD+N2fl9jVWJ6QANo8PKuW6i7IFkVbVauFU3het0=
Subject key identifier: 2B:0B:F6:0F:3B:A7:5F:40:90:56:EF:4F:9C:12:74:19:FC:02:BA:8B
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018901D44B0BCA453770EBAC9F61A1D4305A
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Kwv2DzunX0CQVu9PnBJ0GfwCuos.roa
Signing time: Wed 28 Jun 2023 11:47:17 +0000
ROA not before: Wed 28 Jun 2023 11:47:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 46.3.39.0/24 maxlen: 24
46.3.64.0/24 maxlen: 24
46.3.64.0/22 maxlen: 22
46.232.84.0/24 maxlen: 24
46.3.69.0/24 maxlen: 24
46.232.82.0/24 maxlen: 24
46.232.81.0/24 maxlen: 24
46.232.83.0/24 maxlen: 24
46.3.71.0/24 maxlen: 24
46.3.67.0/24 maxlen: 24
46.232.80.0/24 maxlen: 24
46.3.65.0/24 maxlen: 24
46.232.85.0/24 maxlen: 24
46.3.66.0/24 maxlen: 24
46.3.68.0/24 maxlen: 24
46.3.68.0/22 maxlen: 22
46.232.80.0/20 maxlen: 20
46.3.70.0/24 maxlen: 24
46.3.73.0/24 maxlen: 24
46.232.86.0/24 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.78.0/24 maxlen: 24
46.232.90.0/24 maxlen: 24
46.232.89.0/24 maxlen: 24
46.232.91.0/24 maxlen: 24
46.3.75.0/24 maxlen: 24
46.232.88.0/24 maxlen: 24
46.3.74.0/24 maxlen: 24
46.232.87.0/24 maxlen: 24
46.3.72.0/24 maxlen: 24
46.3.72.0/21 maxlen: 21
46.232.94.0/24 maxlen: 24
46.3.79.0/24 maxlen: 24
46.232.92.0/24 maxlen: 24
46.232.95.0/24 maxlen: 24
46.232.93.0/24 maxlen: 24
46.3.4.0/22 maxlen: 22
46.3.4.0/24 maxlen: 24
46.3.6.0/24 maxlen: 24
46.232.24.0/21 maxlen: 21
46.3.7.0/24 maxlen: 24
46.3.5.0/24 maxlen: 24
46.232.24.0/24 maxlen: 24
46.232.31.0/24 maxlen: 24
46.3.16.0/22 maxlen: 22
46.232.27.0/24 maxlen: 24
46.3.16.0/24 maxlen: 24
46.232.29.0/24 maxlen: 24
46.232.30.0/24 maxlen: 24
46.232.25.0/24 maxlen: 24
46.232.28.0/24 maxlen: 24
46.232.26.0/24 maxlen: 24
46.3.17.0/24 maxlen: 24
46.3.24.0/22 maxlen: 22
46.3.18.0/24 maxlen: 24
46.3.24.0/24 maxlen: 24
46.232.32.0/20 maxlen: 24
46.3.19.0/24 maxlen: 24
46.3.26.0/24 maxlen: 24
46.3.30.0/24 maxlen: 24
46.3.27.0/24 maxlen: 24
46.3.25.0/24 maxlen: 24
46.3.32.0/21 maxlen: 21
46.3.35.0/24 maxlen: 24
46.3.33.0/24 maxlen: 24
46.3.37.0/24 maxlen: 24
46.3.32.0/24 maxlen: 24
46.3.36.0/24 maxlen: 24
46.3.34.0/24 maxlen: 24
46.3.38.0/24 maxlen: 24
149.126.192.0/24 maxlen: 24
149.126.197.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
149.126.207.0/24 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.150.0/24 maxlen: 24
46.3.148.0/24 maxlen: 24
46.3.148.0/22 maxlen: 22
46.3.151.0/24 maxlen: 24
46.3.149.0/24 maxlen: 24
46.3.95.0/24 maxlen: 24
46.3.93.0/24 maxlen: 24
46.3.92.0/22 maxlen: 22
46.3.94.0/24 maxlen: 24
46.3.92.0/24 maxlen: 24
46.3.204.0/24 maxlen: 24
46.3.203.0/24 maxlen: 24
46.3.224.0/22 maxlen: 22
46.3.226.0/24 maxlen: 24
46.3.224.0/24 maxlen: 24
46.3.225.0/24 maxlen: 24
46.3.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:d4:4b:0b:ca:45:37:70:eb:ac:9f:61:a1:d4:30:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 28 11:47:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b0bf60f3ba75f409056ef4f9c127419fc02ba8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d4:b2:46:ce:b1:62:5f:c2:e0:7e:30:00:48:
d0:38:d1:27:05:7b:73:95:5b:fc:58:a3:80:c9:ea:
ae:1f:1d:40:bf:20:dc:5c:1d:80:1c:32:82:69:9c:
dd:e5:b2:f5:c0:e9:e6:86:81:b8:ee:99:08:6e:e4:
e7:e2:58:b0:8f:cf:64:bd:85:9f:2b:e4:64:1e:f5:
94:d7:62:63:6d:8b:4f:d6:fb:ea:eb:98:a1:10:a3:
3d:5d:1a:8b:56:54:cc:75:c5:b2:43:3e:a0:6c:c3:
1b:a2:40:99:3c:16:92:4a:77:29:6b:51:61:9a:54:
c8:1b:08:bc:d5:39:78:ff:2e:90:8e:99:97:5e:50:
a5:0f:22:c0:ef:3e:e4:8e:d8:63:04:08:87:d7:b8:
e6:18:43:f6:1d:38:ca:ae:64:2e:5b:03:43:99:d1:
09:ec:56:8a:c4:a9:62:45:d8:c0:41:51:6c:11:e9:
ec:a1:28:ff:1f:3e:a3:e2:04:46:1a:d1:06:69:3a:
51:06:d2:7b:ca:a5:7f:6a:c5:23:06:77:50:18:38:
ce:85:ea:b8:9a:ce:91:6e:47:d7:3a:67:61:ee:a7:
40:38:3a:d3:bb:c4:a6:3c:62:f6:75:d1:36:b9:39:
15:6f:ad:69:65:d1:9b:96:8b:b4:f9:51:05:89:bf:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0B:F6:0F:3B:A7:5F:40:90:56:EF:4F:9C:12:74:19:FC:02:BA:8B
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Kwv2DzunX0CQVu9PnBJ0GfwCuos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.30.0/24
46.3.32.0/21
46.3.64.0/20
46.3.92.0/22
46.3.148.0/22
46.3.203.0-46.3.204.255
46.3.224.0/22
46.232.24.0-46.232.47.255
46.232.80.0/20
149.126.192.0/24
149.126.197.0/24
149.126.200.0/24
149.126.207.0/24
149.126.215.0/24
Signature Algorithm: sha256WithRSAEncryption
33:fc:5f:1b:34:3c:8c:69:a3:9c:00:6e:16:78:19:80:3e:be:
3f:e6:c3:ed:a0:e9:7e:04:c9:c9:ff:9a:e2:b8:98:23:54:30:
8d:c5:12:af:f7:73:a6:90:c2:29:4d:5f:b9:07:cc:91:fe:5c:
04:ff:83:11:cd:c2:7f:a9:5b:b6:17:50:40:9f:5b:e7:3a:bb:
aa:25:74:db:fc:ed:4a:ee:38:85:55:b8:f1:34:7e:56:6f:4f:
86:aa:c9:09:0a:c5:e4:b5:ec:72:5a:30:83:fd:f3:c4:d2:b4:
e4:af:f2:5b:21:40:66:a6:c7:a5:97:76:9c:c5:b8:79:f5:b1:
cc:de:95:cc:cc:63:84:1f:51:3b:bc:db:20:a2:b1:2a:93:79:
75:ce:ae:38:b8:aa:8d:34:3f:a9:2b:65:72:2a:ce:c9:e5:65:
dd:eb:b3:e2:cf:be:34:21:a0:c0:54:8f:d8:aa:fd:54:18:d6:
6f:b1:21:11:a7:0a:46:ae:21:f6:6d:93:ee:d7:7e:e8:77:ee:
f6:0f:a6:19:b1:65:78:c2:75:59:bc:f5:6f:2a:fd:a8:1c:5f:
77:9e:bc:05:f6:c7:5a:a5:f4:5d:a6:95:e8:9b:75:7e:21:15:
38:ca:d9:4b:ad:f6:fa:13:d0:8f:1d:30:95:85:ca:9e:1e:22:
56:19:76:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org