Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/W5Mvy5tT2ZklU4iqDfWGqMCJdXg.roa
File: W5Mvy5tT2ZklU4iqDfWGqMCJdXg.roa (raw, json)
Hash identifier: GQC/VUr959+kTghuz/aWG90KEbMeOA85NRVJbjiz6GQ=
Subject key identifier: 5B:93:2F:CB:9B:53:D9:99:25:53:88:AA:0D:F5:86:A8:C0:89:75:78
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0185719558CA0CB6A5B67666CA340ADBD3BA
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/W5Mvy5tT2ZklU4iqDfWGqMCJdXg.roa
Signing time: Mon 02 Jan 2023 08:24:50 +0000
ROA not before: Mon 02 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 46.232.64.0/21 maxlen: 24
46.3.64.0/22 maxlen: 24
46.232.80.0/20 maxlen: 24
46.3.68.0/22 maxlen: 24
46.3.4.0/22 maxlen: 24
46.232.24.0/21 maxlen: 24
46.3.16.0/22 maxlen: 24
46.232.32.0/20 maxlen: 24
46.3.24.0/22 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.92.0/22 maxlen: 24
46.3.135.0/24 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
149.126.203.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
46.3.224.0/22 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:58:ca:0c:b6:a5:b6:76:66:ca:34:0a:db:d3:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b932fcb9b53d999255388aa0df586a8c0897578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:0a:50:31:cc:8c:26:cf:0c:32:b9:59:e8:
44:5c:ad:75:53:b7:18:e7:f1:e6:50:69:8d:59:81:
c2:e0:8b:fd:70:bd:e5:5b:35:55:9e:b4:1a:60:ed:
ac:61:b8:19:2b:93:6b:f8:ee:cd:ea:98:d8:3a:ea:
a9:46:9e:f5:cd:96:d8:ad:79:ef:75:e3:af:ea:a8:
6b:90:21:e5:b8:7e:8c:9f:80:00:25:b2:9d:79:f7:
11:62:0d:6d:ec:db:9e:b1:4b:64:f9:81:42:50:11:
04:ba:81:61:8d:dd:3b:f1:b1:23:f1:45:0e:d0:b9:
12:f9:33:1c:d4:2d:19:6f:f8:a8:2f:73:a2:f3:53:
ef:17:db:8b:f3:da:04:d5:87:4c:c5:5a:8e:e4:a9:
70:19:29:fc:e2:ce:1f:bb:5d:91:8f:7c:06:41:59:
57:d9:9e:16:84:de:2c:3f:99:69:44:0b:e3:d1:b0:
5e:08:18:dd:aa:ff:b5:51:ca:78:09:85:d5:ce:0b:
a6:6c:73:45:b2:8f:77:53:d1:25:b5:61:32:0e:d6:
23:91:8d:8c:45:dc:85:b5:3b:1d:e3:fd:66:f1:9e:
ce:b7:36:08:ef:3a:a9:07:f7:14:7c:c9:99:04:4b:
63:65:5c:fd:86:66:2e:6e:f8:42:88:80:16:5c:1a:
94:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:93:2F:CB:9B:53:D9:99:25:53:88:AA:0D:F5:86:A8:C0:89:75:78
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/W5Mvy5tT2ZklU4iqDfWGqMCJdXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.64.0/21
46.3.92.0/22
46.3.135.0/24
46.3.156.0/23
46.3.188.0/22
46.3.200.0/24
46.3.208.0/21
46.3.224.0/22
46.3.250.0/24
46.3.252.0/24
46.232.24.0-46.232.47.255
46.232.64.0/21
46.232.80.0/20
149.126.200.0/24
149.126.203.0/24
149.126.215.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
79:6f:75:bd:54:cb:9d:a3:73:42:e5:2d:23:d8:bb:9c:e3:a3:
65:f8:4c:57:94:d6:8b:56:9c:69:f2:5d:c8:eb:67:0b:bc:1e:
9e:57:b2:5f:14:24:48:bc:09:d3:0a:d4:6d:f2:87:67:c7:a0:
f1:ad:54:16:8f:d2:b7:71:bb:7f:16:e9:38:8a:da:28:a6:b3:
d3:ca:34:fb:23:63:c7:6d:00:82:ff:aa:c1:00:8f:fb:81:4f:
ca:d0:1f:d7:75:0b:90:57:fc:88:45:94:6f:11:0a:10:9a:8e:
30:88:3c:67:27:27:eb:26:24:86:5a:2a:fc:ca:fe:2f:94:7a:
89:ff:66:2f:45:af:22:d2:7d:c1:d7:27:80:9d:e5:cd:7d:a8:
90:a2:e2:aa:4a:3d:3d:92:68:83:09:cd:3f:e4:38:d4:51:ff:
3e:f7:c4:e0:d1:c5:d8:f1:d3:9d:6d:e2:34:72:fc:79:3f:be:
2c:d7:17:af:ca:67:16:33:ea:6a:12:34:25:56:37:27:0c:c5:
7c:cb:67:44:17:4c:47:2d:42:ca:c4:ff:84:c0:ab:65:65:b5:
02:c8:fe:63:ae:48:53:f6:cb:90:4f:2d:cc:e7:80:08:ac:4f:
16:43:de:3f:b6:30:9b:2e:25:cf:be:9c:d5:95:9a:c2:83:ed:
f4:0a:39:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org