Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Znu8uJmqVdYlbQRVjVEnxXRadNg.roa
File: Znu8uJmqVdYlbQRVjVEnxXRadNg.roa (raw, json)
Hash identifier: sOnIpjTctBo4tQ8Zr/7xvbcXieAi8p6t8s2/B/Qpcx0=
Subject key identifier: 66:7B:BC:B8:99:AA:55:D6:25:6D:04:55:8D:51:27:C5:74:5A:74:D8
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01859C37291466FD8441D7EDFD8534DFF525
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Znu8uJmqVdYlbQRVjVEnxXRadNg.roa
Signing time: Tue 10 Jan 2023 15:05:38 +0000
ROA not before: Tue 10 Jan 2023 15:05:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57494
IP address blocks: 46.3.168.0/22 maxlen: 22
46.3.172.0/22 maxlen: 22
46.3.176.0/22 maxlen: 22
46.3.180.0/22 maxlen: 22
46.3.184.0/22 maxlen: 22
46.3.188.0/24 maxlen: 24
46.3.192.0/22 maxlen: 22
46.3.192.0/23 maxlen: 23
46.3.196.0/22 maxlen: 22
80.243.128.0/22 maxlen: 22
80.243.136.0/23 maxlen: 23
46.3.140.0/22 maxlen: 22
80.243.140.0/23 maxlen: 23
46.232.2.0/23 maxlen: 23
46.232.4.0/22 maxlen: 22
46.3.206.0/23 maxlen: 23
46.3.223.0/24 maxlen: 24
46.3.228.0/23 maxlen: 23
149.126.216.0/22 maxlen: 22
149.126.220.0/22 maxlen: 22
149.126.232.0/22 maxlen: 22
149.126.236.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9c:37:29:14:66:fd:84:41:d7:ed:fd:85:34:df:f5:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 10 15:05:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667bbcb899aa55d6256d04558d5127c5745a74d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:a5:32:5e:86:f8:ee:8d:4f:7b:8f:44:69:
8e:0f:3c:68:39:d9:37:fc:b0:11:8f:31:4a:cb:99:
72:06:da:b9:76:d1:14:98:b4:df:99:10:16:83:d2:
0e:aa:44:57:d6:23:b5:c2:6a:0d:a8:43:52:3b:ca:
58:9c:92:d8:65:a6:86:d2:87:50:ee:11:7b:ef:f9:
41:fd:54:b1:a9:ad:da:f5:a7:b9:da:b7:bc:e6:38:
92:98:b3:9a:10:18:85:d9:bf:be:18:fd:ce:f8:0d:
f7:62:d4:41:33:a4:a0:a6:df:df:9d:e3:be:d6:09:
7e:26:c7:31:f6:54:a7:dc:71:65:2f:4f:84:7d:e9:
21:85:f3:e1:52:f4:1e:d7:8f:36:ff:49:d1:b4:67:
1e:c8:fd:a7:f2:40:c8:f5:a9:61:f8:e5:15:fb:a8:
bf:b2:f2:4c:48:ab:09:c0:42:9b:cc:b5:12:9e:60:
b2:a0:a8:b7:e5:8c:39:82:6b:7a:58:c1:e2:b8:10:
ac:3c:50:43:4f:90:08:43:0f:0f:a1:ed:b8:28:92:
96:7b:56:ce:92:ef:34:56:f9:ed:df:de:15:d1:a1:
7d:e6:a4:b8:55:77:2d:e7:5a:89:0a:14:4e:fc:1c:
2c:26:0a:eb:ed:4b:cb:bf:81:e0:45:73:5c:94:4a:
6b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7B:BC:B8:99:AA:55:D6:25:6D:04:55:8D:51:27:C5:74:5A:74:D8
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Znu8uJmqVdYlbQRVjVEnxXRadNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.140.0/22
46.3.168.0-46.3.188.255
46.3.192.0/21
46.3.206.0/23
46.3.223.0/24
46.3.228.0/23
46.232.2.0-46.232.7.255
80.243.128.0/22
80.243.136.0/23
80.243.140.0/23
149.126.216.0/21
149.126.232.0/21
Signature Algorithm: sha256WithRSAEncryption
90:f8:f3:8c:bd:e5:a9:0c:ed:6e:9c:4c:58:50:eb:a1:51:2b:
26:65:27:b3:f8:9a:ce:8c:ec:99:4a:ac:ac:9e:55:5f:b2:ff:
8e:3a:0a:05:a8:11:5d:3d:aa:ce:28:54:00:91:a4:bb:14:02:
04:c4:ac:c0:dd:88:0a:7a:a1:6a:f0:f7:60:29:f9:0d:a2:52:
65:7d:ef:24:d0:85:ed:1a:d9:1f:59:5e:19:b5:1f:ed:6c:e2:
d8:07:ab:33:a4:9c:86:e2:7c:96:cc:3a:7a:ca:39:91:4b:22:
a9:5e:6e:ca:93:93:29:16:fe:3a:3c:61:0f:7d:05:4d:55:b1:
c1:86:6c:9c:68:f3:5c:d1:aa:90:44:4b:5f:95:39:00:de:77:
e2:5a:a0:6e:4c:ee:c2:91:d7:ea:bd:94:ff:8e:44:f5:2e:1f:
9e:d5:2e:4a:96:38:35:be:0e:08:1e:9f:89:46:6c:42:79:c1:
a4:89:81:89:97:4a:fa:fc:f9:ef:ff:42:b8:97:00:de:48:8a:
40:3b:01:db:35:dd:25:a9:96:26:07:e8:cf:9d:0a:83:41:a7:
9a:5f:66:96:14:6a:df:66:c8:0f:6d:be:0d:de:37:e9:ca:b3:
3a:ff:1f:c1:21:82:3f:84:2a:3c:c3:1e:1f:0c:5a:68:87:ea:
a8:7e:c1:8d
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYWcNykUZv2EQdft/YU03/UlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwMTEwMTUwNTM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjdiYmNiODk5YWE1NWQ2MjU2ZDA0NTU4ZDUxMjdjNTc0NWE3NGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHClMl6G+O6NT3uPRGmODzxoOdk3
/LARjzFKy5lyBtq5dtEUmLTfmRAWg9IOqkRX1iO1wmoNqENSO8pYnJLYZaaG0odQ
7hF77/lB/VSxqa3a9ae52re85jiSmLOaEBiF2b++GP3O+A33YtRBM6Sgpt/fneO+
1gl+Jscx9lSn3HFlL0+EfekhhfPhUvQe1482/0nRtGceyP2n8kDI9alh+OUV+6i/
svJMSKsJwEKbzLUSnmCyoKi35Yw5gmt6WMHiuBCsPFBDT5AIQw8Poe24KJKWe1bO
ku80Vvnt394V0aF95qS4VXct51qJChRO/BwsJgrr7UvLv4HgRXNclEprPwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFGZ7vLiZqlXWJW0EVY1RJ8V0WnTYMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvWm51OHVKbXFWZFlsYlFSVmpWRW54WFJhZE5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQCLgOMMAwD
BAMuA6gDBAAuA7wDBAMuA8ADBAEuA84DBAAuA98DBAEuA+QwDAMEAS7oAgMEAy7o
AAMEAlDzgAMEAVDziAMEAVDzjAMEA5V+2AMEA5V+6DANBgkqhkiG9w0BAQsFAAOC
AQEAkPjzjL3lqQztbpxMWFDroVErJmUns/iazozsmUqsrJ5VX7L/jjoKBagRXT2q
zihUAJGkuxQCBMSswN2ICnqhavD3YCn5DaJSZX3vJNCF7RrZH1leGbUf7Wzi2Aer
M6SchuJ8lsw6eso5kUsiqV5uypOTKRb+OjxhD30FTVWxwYZsnGjzXNGqkERLX5U5
AN534lqgbkzuwpHX6r2U/45E9S4fntUuSpY4Nb4OCB6fiUZsQnnBpImBiZdK+vz5
7/9CuJcA3kiKQDsB2zXdJamWJgfoz50Kg0Gnml9mlhRq32bID22+Dd436cqzOv8f
wSGCP4QqPMMeHwxaaIfqqH7BjQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org