Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/NnjLsDhjSmfVktc3EZ47IHp9Fwc.roa
File: NnjLsDhjSmfVktc3EZ47IHp9Fwc.roa (raw, json)
Hash identifier: 4/PlagdmSq8CBudayjOiNZ2JJvyoEgYqa+gLLaeehuI=
Subject key identifier: 36:78:CB:B0:38:63:4A:67:D5:92:D7:37:11:9E:3B:20:7A:7D:17:07
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018E3C1C340AD4DE1CEFB78753F1913643D9
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/NnjLsDhjSmfVktc3EZ47IHp9Fwc.roa
Signing time: Thu 14 Mar 2024 08:37:45 +0000
ROA not before: Thu 14 Mar 2024 08:37:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 46.3.8.0/22 maxlen: 24
46.3.28.0/23 maxlen: 24
46.3.80.0/22 maxlen: 22
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.120.0/21 maxlen: 24
46.3.134.0/24 maxlen: 24
46.3.135.0/24 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.184.0/22 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.206.0/23 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.208.0/22 maxlen: 24
46.3.212.0/22 maxlen: 24
46.3.228.0/23 maxlen: 24
46.3.236.0/23 maxlen: 24
46.3.243.0/24 maxlen: 24
46.3.244.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.232.0.0/22 maxlen: 24
46.232.16.0/23 maxlen: 24
46.232.18.0/23 maxlen: 24
46.232.64.0/21 maxlen: 24
46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.116.0/23 maxlen: 24
46.232.118.0/23 maxlen: 24
46.232.124.0/23 maxlen: 24
46.232.126.0/23 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.196.0/24 maxlen: 24
149.126.203.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 20:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:1c:34:0a:d4:de:1c:ef:b7:87:53:f1:91:36:43:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 14 08:37:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3678cbb038634a67d592d737119e3b207a7d1707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:02:50:ea:65:3e:86:01:84:9c:3d:97:eb:fc:
2b:df:44:bb:e6:ed:a8:2f:67:f6:c7:14:ed:1d:ff:
88:5f:3a:2e:4c:1b:17:8f:40:c3:ab:d3:b4:f3:58:
1a:73:16:4c:72:44:8a:a5:55:5b:b5:69:a8:e3:94:
fc:58:8f:36:74:0b:27:18:c1:52:77:8e:c2:8d:f4:
1a:14:a0:2f:42:19:ac:37:2f:7c:6d:33:ec:2d:87:
73:ec:2d:d2:9c:af:fc:ed:a3:48:07:72:64:73:44:
0a:81:0d:24:70:65:99:10:f6:58:f9:ff:26:3c:23:
2c:79:8f:fc:87:91:93:a6:31:9d:10:9e:53:28:14:
dc:d3:02:76:1e:7a:07:39:4b:e6:4d:e4:93:51:b4:
62:53:55:d9:32:48:8b:74:73:bb:a7:82:68:c8:fc:
74:38:6f:14:7e:28:e7:d8:52:d2:6d:4c:ce:7d:03:
5e:6e:e3:36:da:13:95:19:a3:1f:73:56:e7:42:ea:
a0:a5:fb:c6:dd:e8:63:b1:93:fe:df:c1:da:e8:7d:
8f:4a:f7:d0:a7:a9:14:3a:26:73:cf:76:1b:d4:ba:
74:75:56:03:f3:88:2a:14:cc:0b:fc:71:6f:fe:0f:
16:e0:30:8b:91:5f:22:fe:50:50:3a:dd:8d:63:24:
c2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:78:CB:B0:38:63:4A:67:D5:92:D7:37:11:9E:3B:20:7A:7D:17:07
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/NnjLsDhjSmfVktc3EZ47IHp9Fwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.8.0/22
46.3.28.0/23
46.3.80.0/22
46.3.89.0-46.3.91.255
46.3.120.0/21
46.3.134.0/23
46.3.156.0/23
46.3.160.0/22
46.3.184.0/21
46.3.206.0-46.3.215.255
46.3.228.0/23
46.3.236.0/23
46.3.243.0-46.3.244.255
46.3.246.0/24
46.232.0.0/22
46.232.16.0/22
46.232.64.0/21
46.232.116.0/22
46.232.124.0/22
149.126.193.0/24
149.126.196.0/24
149.126.203.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
13:fa:57:3d:77:13:bd:4f:9b:6c:ae:71:eb:e3:f8:39:d1:7b:
06:ab:fe:57:56:3e:8c:ba:20:e7:c0:76:83:09:c9:0e:91:3b:
cb:80:80:c3:20:3e:c7:b0:08:94:34:f2:0b:aa:1e:9e:5c:77:
a3:34:5a:30:0a:35:9c:27:09:3c:da:0f:c9:6f:5d:15:85:e8:
8e:1f:72:b1:7d:2c:8a:68:b0:6f:ac:81:ab:dc:96:d3:1a:9e:
76:56:12:b0:04:5e:3a:03:eb:4b:30:76:bf:13:9b:95:f5:bd:
42:ec:a5:69:22:a8:e5:44:95:b9:c9:7a:cb:23:a7:17:b5:33:
c5:4d:7f:e6:2d:cb:23:0b:43:a4:4e:c3:6d:ab:db:e0:7b:0e:
8a:dd:da:d3:07:82:2c:ad:39:69:8a:8b:b9:e0:dd:0b:fe:2b:
c8:57:8a:a9:1c:5d:7a:a9:96:43:d3:98:5d:16:6c:98:87:24:
f4:9d:b4:fd:49:06:03:87:da:53:cf:65:9d:49:c8:e0:ad:7c:
28:00:ec:ef:91:5c:dd:13:43:a6:c6:f0:61:d5:7f:56:af:89:
d4:3d:74:de:c6:6a:9a:59:0c:89:7c:63:b0:ce:97:9c:53:98:
36:56:80:6e:f3:5b:db:0e:0f:39:6f:c9:70:d4:69:d5:20:81:
b0:e3:c2:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 23:46:24 2024 by rpki-client on console-ams.rpki-client.org