Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q4NNmxal3ReyaJ0mKGhxSatL_Hg.roa
File: Q4NNmxal3ReyaJ0mKGhxSatL_Hg.roa (raw, json)
Hash identifier: aZ//ykL3L7ijwyi+TMlv6m4jIFeJN7nU7AohksoS51g=
Subject key identifier: 43:83:4D:9B:16:A5:DD:17:B2:68:9D:26:28:68:71:49:AB:4B:FC:78
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018946BE1DECFF35613E02AEB282662FCD1A
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q4NNmxal3ReyaJ0mKGhxSatL_Hg.roa
Signing time: Tue 11 Jul 2023 20:56:51 +0000
ROA not before: Tue 11 Jul 2023 20:56:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 46.3.134.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:46:be:1d:ec:ff:35:61:3e:02:ae:b2:82:66:2f:cd:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jul 11 20:56:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43834d9b16a5dd17b2689d2628687149ab4bfc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a3:4b:c9:ac:e0:39:47:ff:2c:ca:9a:ba:f7:
78:52:60:a0:e3:b4:d7:05:e4:bc:18:76:8f:86:b7:
79:80:3c:77:de:d9:a6:68:22:4c:ed:f6:1f:80:88:
e9:32:4c:0f:d3:28:3e:a8:07:c7:d0:33:9a:b5:1d:
a1:38:80:76:09:02:c2:75:a4:ef:95:2e:04:87:a8:
e3:fe:79:ac:e8:ee:ea:ed:77:16:23:e2:93:39:41:
07:ba:37:f3:d7:db:04:50:3c:ac:b9:e6:14:2b:d3:
b2:26:d3:ae:b1:3f:3a:0c:14:72:b0:75:29:bb:a1:
f4:d4:3b:b9:02:8f:b8:f8:f3:ea:33:65:85:fa:69:
b9:05:4a:60:63:c7:a2:58:a3:5c:d3:5b:cb:ae:d0:
37:fa:b8:68:fb:5e:22:14:7c:ff:05:92:1e:d7:c4:
6d:47:31:e9:44:cf:68:e0:0a:6e:ae:a4:d1:c2:bf:
8e:42:a9:32:68:9e:08:7f:08:6e:d1:49:a0:e8:b7:
5a:2b:59:aa:48:9e:da:6d:3f:84:ee:87:f9:4a:03:
04:41:fc:1d:dc:52:4a:b2:95:be:fc:8a:c5:08:dd:
0d:26:d7:cc:e4:22:12:39:7a:74:16:13:27:82:33:
9a:76:06:34:95:0d:4d:c1:89:db:30:9a:17:20:d5:
9e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:83:4D:9B:16:A5:DD:17:B2:68:9D:26:28:68:71:49:AB:4B:FC:78
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Q4NNmxal3ReyaJ0mKGhxSatL_Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.134.0/24
46.3.201.0/24
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0/23
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2d:75:1d:d3:c5:5d:c7:c5:92:fe:0e:46:98:57:b4:e0:7a:
a6:4f:1a:84:6f:db:93:55:b7:09:f5:3a:41:18:17:8c:b7:49:
50:42:35:53:9e:75:27:f8:15:4c:b7:70:63:2b:24:9c:52:45:
ff:58:5b:72:8e:a4:e0:c8:4e:10:30:00:32:e9:79:91:cc:b8:
26:84:68:7c:bf:0f:b3:b3:50:0c:29:5f:a7:88:5e:94:a0:72:
30:7f:1e:15:a0:19:14:b9:e2:f6:72:c6:4d:53:b4:25:a7:e0:
e9:6a:da:51:6d:48:90:34:f3:cd:81:6f:76:df:3d:d8:30:77:
d6:70:6b:cd:97:7d:ef:34:4d:32:4b:a4:c7:86:52:be:03:94:
78:fd:e2:85:7b:f4:76:4b:75:d2:05:62:4d:9c:55:40:75:9a:
43:0a:58:13:b3:6a:d4:ba:cb:3d:9d:a5:10:f4:45:3e:78:27:
a2:a2:4d:37:2a:8c:95:75:28:ca:86:63:2c:61:24:4a:aa:38:
b0:78:24:11:e5:cf:10:f9:02:e3:4b:a3:2f:df:17:82:97:af:
ca:55:b7:4d:62:7c:6b:22:16:0a:93:74:2e:8c:3a:4e:21:59:
07:11:d2:5a:a5:9a:bb:10:e5:cd:84:ac:bb:8f:88:76:63:fa:
50:52:35:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org