Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OxxYwr3f8ezrjpOimwGKMTr0bWg.roa
File: OxxYwr3f8ezrjpOimwGKMTr0bWg.roa (raw, json)
Hash identifier: p8x+e15P6zuZItVAzCr9NKw1qI5BZ27sXWRrGvqqNXo=
Subject key identifier: 3B:1C:58:C2:BD:DF:F1:EC:EB:8E:93:A2:9B:01:8A:31:3A:F4:6D:68
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CD4A145E3617DD93E9BDCE8BF515DAABF
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OxxYwr3f8ezrjpOimwGKMTr0bWg.roa
Signing time: Thu 04 Jan 2024 13:19:48 +0000
ROA not before: Thu 04 Jan 2024 13:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 46.232.72.0/21 maxlen: 21
46.232.96.0/20 maxlen: 20
46.3.86.0/23 maxlen: 23
46.232.4.0/23 maxlen: 23
149.126.196.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.206.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
46.232.20.0/22 maxlen: 22
149.126.210.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 08:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:a1:45:e3:61:7d:d9:3e:9b:dc:e8:bf:51:5d:aa:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 4 13:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b1c58c2bddff1eceb8e93a29b018a313af46d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:01:e6:4b:d6:61:6a:24:44:ce:53:8c:5e:25:
17:7c:b1:12:8a:d5:dd:e5:79:1c:55:62:3f:a2:85:
97:66:75:c4:7d:77:43:81:fe:e0:a1:6d:87:10:4f:
aa:4b:65:aa:49:7f:88:09:35:15:08:2a:ea:cd:1c:
25:da:48:94:7e:ab:ae:d4:5a:86:13:69:36:81:96:
75:55:6f:ff:11:83:5b:e9:ab:88:8e:a8:6b:c0:4b:
98:aa:67:85:e2:1c:b0:c9:5d:8c:6c:80:9e:61:2a:
13:7e:6f:7b:3b:c3:3a:a4:5d:45:bf:5a:ca:6d:b7:
71:2a:c3:15:a4:58:8b:15:45:67:90:49:40:9d:0f:
1f:00:b0:16:53:7f:8e:f0:8a:4f:20:f4:5e:44:ad:
f0:6e:31:6e:f5:1c:34:69:6a:fe:0f:83:61:e3:e0:
e2:a1:a0:84:7e:ca:a4:50:f5:1a:c3:cb:3d:cf:37:
d0:1a:73:89:1a:ea:58:55:a1:bb:b2:6b:30:46:22:
b7:d7:8f:fa:71:34:c5:7f:d8:a6:d5:d9:79:55:b0:
a2:52:ae:4c:45:d9:49:7c:d6:b6:91:d2:66:aa:eb:
24:66:6f:3a:f6:f6:8f:b9:54:01:6e:0e:d7:1d:a2:
9d:e8:c3:47:db:5c:02:d3:71:f2:7d:95:50:d5:65:
fb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1C:58:C2:BD:DF:F1:EC:EB:8E:93:A2:9B:01:8A:31:3A:F4:6D:68
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/OxxYwr3f8ezrjpOimwGKMTr0bWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.86.0/23
46.232.4.0/23
46.232.20.0/22
46.232.72.0/21
46.232.96.0/20
149.126.195.0-149.126.196.255
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0-149.126.206.255
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.224.0/23
Signature Algorithm: sha256WithRSAEncryption
05:30:ff:47:cc:b9:b3:22:f2:6a:70:ce:6c:bf:dc:e0:db:7f:
b6:3e:bc:b1:c4:b8:80:78:23:e5:fb:ca:f9:ed:92:0e:cd:37:
05:ea:a4:14:05:be:d5:64:8b:e4:4b:19:37:76:1f:87:ed:56:
b8:d0:e9:92:55:5c:a7:00:ad:bf:9c:0e:96:85:c2:82:e8:00:
f3:d1:05:ba:85:48:7e:81:16:bf:83:b5:fb:7d:a9:62:8d:ce:
df:ca:a3:18:d5:ce:cd:32:61:bb:3a:fe:5a:38:44:dc:b0:14:
52:5d:0d:31:b4:19:87:ab:38:29:0b:ff:d4:56:3a:9c:85:a8:
de:38:45:1d:e9:b9:12:08:a5:8c:74:59:c7:c9:e1:93:ab:4e:
1a:0a:b2:0d:f0:fa:70:3f:a7:c8:01:56:13:23:9d:7f:93:de:
31:8c:ae:74:01:2d:74:c3:12:24:76:73:8b:e2:b7:8a:88:a9:
d7:50:92:0b:9c:44:db:be:1b:11:22:2c:1a:a1:e7:c1:29:50:
c3:1e:8a:3f:3a:ae:07:0a:ef:78:c9:21:5a:60:9c:c2:dc:f1:
c7:67:84:da:3a:3f:45:b1:6a:91:d5:9f:de:b5:4d:50:23:c7:
ad:ad:04:dc:e1:87:40:dd:7b:80:08:07:ca:a2:00:4b:c1:c0:
94:03:0c:4e
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYzUoUXjYX3ZPpvc6L9RXaq/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjQwMTA0MTMxOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjFjNThjMmJkZGZmMWVjZWI4ZTkzYTI5YjAxOGEzMTNhZjQ2ZDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAHmS9ZhaiREzlOMXiUXfLESitXd
5XkcVWI/ooWXZnXEfXdDgf7goW2HEE+qS2WqSX+ICTUVCCrqzRwl2kiUfquu1FqG
E2k2gZZ1VW//EYNb6auIjqhrwEuYqmeF4hywyV2MbICeYSoTfm97O8M6pF1Fv1rK
bbdxKsMVpFiLFUVnkElAnQ8fALAWU3+O8IpPIPReRK3wbjFu9Rw0aWr+D4Nh4+Di
oaCEfsqkUPUaw8s9zzfQGnOJGupYVaG7smswRiK314/6cTTFf9im1dl5VbCiUq5M
RdlJfNa2kdJmquskZm869vaPuVQBbg7XHaKd6MNH21wC03HyfZVQ1WX75QIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFDscWMK93/Hs646TopsBijE69G1oMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvT3h4WXdyM2Y4ZXpyanBPaW13R0tNVHIwYldnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQBLgNWAwQB
LugEAwQCLugUAwQDLuhIAwQELuhgMAwDBACVfsMDBACVfsQDBACVfsYwDAMEAJV+
yQMEAJV+yjAMAwQClX7MAwQAlX7OAwQAlX7QAwQAlX7SAwQAlX7WAwQBlX7gMA0G
CSqGSIb3DQEBCwUAA4IBAQAFMP9HzLmzIvJqcM5sv9zg23+2PryxxLiAeCPl+8r5
7ZIOzTcF6qQUBb7VZIvkSxk3dh+H7Va40OmSVVynAK2/nA6WhcKC6ADz0QW6hUh+
gRa/g7X7falijc7fyqMY1c7NMmG7Ov5aOETcsBRSXQ0xtBmHqzgpC//UVjqchaje
OEUd6bkSCKWMdFnHyeGTq04aCrIN8PpwP6fIAVYTI51/k94xjK50AS10wxIkdnOL
4reKiKnXUJILnETbvhsRIiwaoefBKVDDHoo/Oq4HCu94ySFaYJzC3PHHZ4TaOj9F
sWqR1Z/etU1QI8etrQTc4YdA3XuACAfKogBLwcCUAwxO
-----END CERTIFICATE-----
Generated at Fri Mar 15 13:41:25 2024 by rpki-client on console-ams.rpki-client.org