Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/TFJiZ4oW2oSYPmWzGsXM1F0mIoE.roa
File: TFJiZ4oW2oSYPmWzGsXM1F0mIoE.roa (raw, json)
Hash identifier: 45TqucQXeHlcJIYJ0/YDW6ROQB8eQmXv9iNa843a3M0=
Subject key identifier: 4C:52:62:67:8A:16:DA:84:98:3E:65:B3:1A:C5:CC:D4:5D:26:22:81
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01884DDE278D0D8E21A2A01A735804E6770E
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/TFJiZ4oW2oSYPmWzGsXM1F0mIoE.roa
Signing time: Wed 24 May 2023 13:06:24 +0000
ROA not before: Wed 24 May 2023 13:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 46.3.39.0/24 maxlen: 24
46.3.64.0/24 maxlen: 24
46.3.67.0/24 maxlen: 24
46.232.84.0/24 maxlen: 24
46.3.69.0/24 maxlen: 24
46.232.82.0/24 maxlen: 24
46.3.71.0/24 maxlen: 24
46.232.80.0/24 maxlen: 24
46.232.81.0/24 maxlen: 24
46.3.65.0/24 maxlen: 24
46.232.85.0/24 maxlen: 24
46.3.66.0/24 maxlen: 24
46.3.68.0/24 maxlen: 24
46.3.70.0/24 maxlen: 24
46.232.83.0/24 maxlen: 24
46.3.73.0/24 maxlen: 24
46.232.86.0/24 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.78.0/24 maxlen: 24
46.232.90.0/24 maxlen: 24
46.232.89.0/24 maxlen: 24
46.232.91.0/24 maxlen: 24
46.3.75.0/24 maxlen: 24
46.232.88.0/24 maxlen: 24
46.3.74.0/24 maxlen: 24
46.232.87.0/24 maxlen: 24
46.3.72.0/24 maxlen: 24
46.232.94.0/24 maxlen: 24
46.3.79.0/24 maxlen: 24
46.232.92.0/24 maxlen: 24
46.232.95.0/24 maxlen: 24
46.232.93.0/24 maxlen: 24
46.3.4.0/24 maxlen: 24
46.3.6.0/24 maxlen: 24
46.3.7.0/24 maxlen: 24
46.3.5.0/24 maxlen: 24
46.232.24.0/24 maxlen: 24
46.232.31.0/24 maxlen: 24
46.232.27.0/24 maxlen: 24
46.3.16.0/24 maxlen: 24
46.232.29.0/24 maxlen: 24
46.232.25.0/24 maxlen: 24
46.232.28.0/24 maxlen: 24
46.232.26.0/24 maxlen: 24
46.3.17.0/24 maxlen: 24
46.232.30.0/24 maxlen: 24
46.232.38.0/24 maxlen: 24
46.232.35.0/24 maxlen: 24
46.3.18.0/24 maxlen: 24
46.232.33.0/24 maxlen: 24
46.3.24.0/24 maxlen: 24
46.232.37.0/24 maxlen: 24
46.232.36.0/24 maxlen: 24
46.232.32.0/24 maxlen: 24
46.232.34.0/24 maxlen: 24
46.3.19.0/24 maxlen: 24
46.3.26.0/24 maxlen: 24
46.232.41.0/24 maxlen: 24
46.3.30.0/24 maxlen: 24
46.232.43.0/24 maxlen: 24
46.232.39.0/24 maxlen: 24
46.232.42.0/24 maxlen: 24
46.3.27.0/24 maxlen: 24
46.232.40.0/24 maxlen: 24
46.232.44.0/24 maxlen: 24
46.3.35.0/24 maxlen: 24
46.3.33.0/24 maxlen: 24
46.3.37.0/24 maxlen: 24
46.232.45.0/24 maxlen: 24
46.3.34.0/24 maxlen: 24
46.232.47.0/24 maxlen: 24
46.3.38.0/24 maxlen: 24
46.232.46.0/24 maxlen: 24
149.126.192.0/24 maxlen: 24
149.126.197.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.150.0/24 maxlen: 24
46.3.148.0/24 maxlen: 24
46.3.151.0/24 maxlen: 24
46.3.149.0/24 maxlen: 24
46.3.95.0/24 maxlen: 24
46.3.93.0/24 maxlen: 24
46.3.94.0/24 maxlen: 24
46.3.204.0/24 maxlen: 24
46.3.226.0/24 maxlen: 24
46.3.224.0/24 maxlen: 24
46.3.225.0/24 maxlen: 24
46.3.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:de:27:8d:0d:8e:21:a2:a0:1a:73:58:04:e6:77:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 24 13:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c5262678a16da84983e65b31ac5ccd45d262281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:00:fa:cd:0c:e1:b5:78:9f:79:16:98:70:cd:
9d:f1:e4:3a:dc:90:50:9a:a7:e7:48:3b:3c:ff:97:
70:af:71:a9:b4:ec:82:af:08:58:59:31:f8:e2:d1:
5a:22:6c:72:75:2c:c5:a3:74:d4:93:4c:c5:3b:71:
42:34:be:67:94:f0:d0:a4:69:94:dd:d5:f9:0b:a5:
56:6b:35:2d:95:ec:a9:80:c2:04:eb:7d:dd:90:f4:
6e:97:7f:98:e9:a1:39:50:ec:e1:b6:94:28:77:de:
9c:12:3e:e7:ea:6c:9b:15:15:be:41:ce:73:f3:33:
24:61:9b:03:5b:55:9e:57:a1:98:1e:1a:12:5c:ed:
b6:65:78:48:fa:02:e1:6d:69:b2:33:4c:9d:0c:0c:
51:6d:72:36:7c:28:35:bb:2e:f7:e4:38:95:6c:32:
c2:6c:71:ce:3f:34:ca:95:69:ac:7d:dd:d5:b2:3d:
ed:57:2b:9f:ac:af:53:7f:3d:85:d6:84:88:86:19:
88:d9:e3:89:c6:13:10:23:43:06:59:d8:a8:cf:4b:
07:3c:4d:14:10:e0:88:43:78:a4:8c:9d:13:8b:58:
ee:46:54:47:00:72:38:43:a4:5a:42:84:22:72:dc:
d2:8e:cd:c8:9a:7f:80:8d:22:98:bb:9f:58:be:92:
eb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:52:62:67:8A:16:DA:84:98:3E:65:B3:1A:C5:CC:D4:5D:26:22:81
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/TFJiZ4oW2oSYPmWzGsXM1F0mIoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/24
46.3.26.0/23
46.3.30.0/24
46.3.33.0-46.3.35.255
46.3.37.0-46.3.39.255
46.3.64.0/20
46.3.93.0-46.3.95.255
46.3.148.0/22
46.3.204.0/24
46.3.224.0/22
46.232.24.0-46.232.47.255
46.232.80.0/20
149.126.192.0/24
149.126.197.0/24
149.126.200.0/24
149.126.215.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:94:e8:80:0b:8b:72:28:b4:1e:3d:84:ec:de:c9:74:0b:94:
5e:00:bd:ef:15:2f:e7:cf:fe:c9:bc:97:71:22:43:59:54:7e:
3d:b2:44:d6:7c:36:15:16:16:a7:0a:8d:b8:9d:f3:ab:4a:27:
79:4a:a1:f7:42:44:76:de:82:09:b8:82:c5:f8:c2:ce:81:9a:
86:4e:ea:00:10:29:3b:a0:a6:e9:76:69:71:26:07:35:82:41:
e6:0d:02:d5:50:6c:66:42:e6:d5:ea:82:6e:a5:5e:9a:e3:13:
10:93:d6:94:21:06:c0:10:2d:c6:dc:65:69:26:3d:32:38:1b:
b1:d8:af:e5:66:4a:39:ea:d0:98:74:fd:73:cf:7c:25:da:4a:
6b:f3:9d:3a:5f:f0:20:ae:1c:82:17:58:c2:6b:46:aa:1b:91:
b0:61:c4:bd:3d:6b:1f:a4:02:82:0e:52:22:8a:35:49:25:0d:
95:49:ba:01:a8:28:5d:d3:9b:de:46:90:6a:9d:2e:f7:d2:75:
de:8a:cc:b6:f2:da:64:08:97:53:ed:df:da:dc:cd:92:fa:87:
a2:84:f6:da:5f:04:6c:7a:78:23:7c:76:fc:fd:f2:d9:1e:c2:
ac:50:6f:c9:e0:c7:53:18:4b:5c:db:b4:3f:bb:62:f9:45:49:
56:9e:fd:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org