Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_hTXW8tykpUzRLfRxte4uk4d6w4.roa
File: _hTXW8tykpUzRLfRxte4uk4d6w4.roa (raw, json)
Hash identifier: HTOy9yIwxSIeHtaAVaGHi8+ZoANtVIHMO7IVWiDULTs=
Subject key identifier: FE:14:D7:5B:CB:72:92:95:33:44:B7:D1:C6:D7:B8:BA:4E:1D:EB:0E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0186972366757E66B8428648C5D959A00031
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_hTXW8tykpUzRLfRxte4uk4d6w4.roa
Signing time: Tue 28 Feb 2023 08:28:44 +0000
ROA not before: Tue 28 Feb 2023 08:28:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.72.0/21 maxlen: 24
46.232.80.0/20 maxlen: 22
46.232.96.0/20 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
149.126.192.0/18 maxlen: 22
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:23:66:75:7e:66:b8:42:86:48:c5:d9:59:a0:00:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Feb 28 08:28:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe14d75bcb7292953344b7d1c6d7b8ba4e1deb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:af:14:14:6a:1a:da:1a:1f:b6:8e:47:65:0e:
04:50:6e:db:97:df:92:8a:eb:45:0c:5a:4f:2e:70:
97:73:91:c0:ee:68:fa:17:0e:ed:e1:66:d2:42:8e:
e9:81:a2:1f:ad:7c:5f:12:be:12:b1:ff:58:7f:f7:
c1:c3:83:52:a1:42:a2:ab:53:5f:3e:92:2e:50:44:
07:76:41:9f:ff:af:3f:da:37:cc:39:6d:38:6f:75:
e9:64:04:19:08:66:b5:6f:95:3c:f8:ed:e7:7d:ca:
6a:15:4e:99:25:63:0b:dd:87:1a:2c:8e:30:c4:73:
6f:82:8a:e3:3b:19:b6:6d:94:31:a0:01:50:94:6e:
b3:68:8b:fb:bb:a1:54:74:c7:a5:f6:f7:95:7c:61:
49:0f:01:8b:8e:1e:d7:4d:12:e0:be:2d:8e:d0:e2:
eb:bc:dd:fa:d3:71:14:25:fb:5e:1e:43:f0:8e:3f:
c0:b1:d1:99:77:ab:0b:d2:bb:fd:f9:74:75:8c:cc:
6b:13:63:9a:9c:9c:d0:0d:8b:e2:ab:41:c1:8a:b8:
c1:50:01:d3:b9:e7:15:8f:9a:d8:9e:99:d8:9b:18:
6e:6f:1b:5f:4a:70:b3:2c:80:18:ac:93:46:dc:ce:
36:19:a1:22:f2:bc:98:76:4f:fd:de:52:76:18:1c:
12:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:14:D7:5B:CB:72:92:95:33:44:B7:D1:C6:D7:B8:BA:4E:1D:EB:0E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_hTXW8tykpUzRLfRxte4uk4d6w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.201.0/24
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
46.232.72.0-46.232.127.255
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
58:42:cb:a0:68:71:cb:a4:0e:7f:b6:73:98:0e:e1:aa:a7:93:
af:3c:22:83:6b:ee:67:5f:7a:98:bb:6f:5a:04:e4:10:96:9d:
56:85:9a:74:dc:ce:bc:3c:ea:15:0d:41:b9:ae:88:35:95:8d:
c0:d6:82:3c:b7:f0:63:37:c2:33:c6:02:2c:2d:51:11:e7:75:
2f:7d:52:8c:ff:38:b0:75:01:1a:1f:8c:70:ac:36:22:f6:15:
36:bf:b1:ed:1f:64:48:5a:18:a1:3d:dd:69:88:17:cd:1e:17:
e5:86:70:83:ab:bd:c8:c2:85:9b:68:df:21:ac:bd:c4:ad:6d:
e0:4f:5e:da:99:14:fb:0d:91:74:31:6c:10:58:66:ce:60:fa:
75:a4:cb:0d:73:f9:15:c8:09:8c:8a:48:67:0f:18:10:d2:d4:
83:7e:6e:a6:b3:1d:bc:f1:15:84:29:ec:4c:54:64:38:3d:0e:
25:7d:e3:e6:3a:a3:8c:de:30:fa:47:6c:e3:51:f8:ab:68:6a:
f8:c0:7d:ca:2b:7e:eb:2c:b8:77:b7:62:e3:14:50:0a:ee:d9:
bd:a6:a4:e4:69:f7:55:88:e7:9b:45:28:c0:1c:16:ca:dc:05:
6c:94:49:5f:30:5c:54:a8:c8:29:ff:35:5c:ad:22:85:77:70:
51:1e:d8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org