Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_j09OTH3gz3AvAU5T6dnhZNSeig.roa
File: _j09OTH3gz3AvAU5T6dnhZNSeig.roa (raw, json)
Hash identifier: Ml0NxMTLqFEgE0BV/qIbUzeEv3vRsyd8tS/E6y7AP28=
Subject key identifier: FE:3D:3D:39:31:F7:83:3D:C0:BC:05:39:4F:A7:67:85:93:52:7A:28
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CC94E676B4D03661A1DB54010BDB819A0
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_j09OTH3gz3AvAU5T6dnhZNSeig.roa
Signing time: Tue 02 Jan 2024 08:33:27 +0000
ROA not before: Tue 02 Jan 2024 08:33:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 46.232.72.0/21 maxlen: 21
46.232.96.0/20 maxlen: 20
46.3.86.0/23 maxlen: 23
46.232.4.0/23 maxlen: 23
149.126.196.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.206.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
46.232.20.0/22 maxlen: 22
149.126.210.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:67:6b:4d:03:66:1a:1d:b5:40:10:bd:b8:19:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:33:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe3d3d3931f7833dc0bc05394fa7678593527a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:a6:4b:db:86:a6:74:00:0b:b6:1e:58:cc:
cc:1e:fe:98:28:2e:42:63:70:d0:74:ad:b4:59:63:
20:00:e0:57:35:75:37:81:09:55:24:e1:87:ba:57:
52:4f:78:35:e5:48:0c:74:61:d8:48:42:e3:a3:c0:
d9:52:ed:ec:1b:6d:c6:36:9c:79:3e:6d:ab:8a:88:
b4:f7:53:c1:61:be:48:55:61:ff:53:b5:44:da:11:
55:e2:bf:44:50:e5:e0:28:c0:46:df:c1:e3:97:af:
98:c8:c1:d1:a2:90:fc:a5:dc:56:a9:00:e5:0a:09:
25:8e:df:79:5a:45:bf:3e:9f:73:17:5e:20:e5:c1:
55:f0:7e:d8:58:a7:ac:7d:df:6e:05:6e:48:2d:e1:
bd:7a:2d:5c:cd:77:fd:8e:ae:18:7b:7c:ab:c4:86:
45:3b:65:9e:38:51:fa:b1:c8:a5:17:41:b9:b8:4a:
ee:3b:17:74:58:05:df:d2:bf:ab:db:f9:18:a7:28:
fc:01:78:3c:e2:17:d1:e2:7f:73:db:66:2c:cc:69:
6a:ae:79:df:29:26:d1:67:b4:25:93:aa:a8:10:29:
7e:4d:41:a1:44:82:7d:bd:9d:8d:5f:2e:7e:90:25:
eb:1b:1d:ed:78:1a:20:03:bd:16:82:3e:14:88:a8:
3d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3D:3D:39:31:F7:83:3D:C0:BC:05:39:4F:A7:67:85:93:52:7A:28
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/_j09OTH3gz3AvAU5T6dnhZNSeig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.86.0/23
46.232.4.0/23
46.232.20.0/22
46.232.72.0/21
46.232.96.0/20
149.126.193.0/24
149.126.195.0-149.126.196.255
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0-149.126.206.255
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.224.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:b2:27:0e:59:3a:e1:9e:f9:c9:75:23:06:b4:66:84:e2:42:
47:88:77:f1:a4:10:d5:28:28:fe:11:a4:d8:41:2a:7e:e3:21:
e2:d1:1c:8d:60:4e:8b:fb:e0:be:95:f6:2e:c8:31:ed:55:84:
ed:2c:55:9b:15:52:09:53:5d:1b:0a:21:d6:e6:f0:d0:44:fe:
9e:cf:9d:01:52:ce:db:32:20:73:30:fa:79:8f:d6:e0:3a:58:
2f:84:ee:2b:97:ca:3b:20:e4:45:80:4f:08:c4:07:3b:a2:20:
1f:87:e7:3a:41:03:aa:41:a7:8a:b2:82:61:73:93:d1:67:2f:
75:c2:ee:e9:17:34:d7:78:24:04:6f:41:c8:5b:d8:15:e0:75:
da:b0:a1:60:86:6b:c6:e9:b8:60:f8:99:ca:20:b9:5b:7e:73:
f1:18:31:69:28:fe:0c:bd:88:50:88:ce:7f:d6:94:60:db:c8:
39:ff:71:cf:01:96:82:59:5a:67:bc:2d:70:1a:2a:0a:90:6f:
0b:a6:2a:83:05:a5:99:b0:85:ac:12:fa:10:ac:4c:e3:a9:a0:
19:8d:08:5a:ef:8b:89:29:1e:2d:49:2e:08:48:0a:95:96:39:
f5:d4:26:e2:b6:5c:fc:88:bc:fb:bd:f9:df:4e:73:93:8b:3d:
3e:b7:66:10
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYzJTmdrTQNmGh21QBC9uBmgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjQwMTAyMDgzMzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTNkM2QzOTMxZjc4MzNkYzBiYzA1Mzk0ZmE3Njc4NTkzNTI3YTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtICmS9uGpnQAC7YeWMzMHv6YKC5C
Y3DQdK20WWMgAOBXNXU3gQlVJOGHuldST3g15UgMdGHYSELjo8DZUu3sG23GNpx5
Pm2rioi091PBYb5IVWH/U7VE2hFV4r9EUOXgKMBG38Hjl6+YyMHRopD8pdxWqQDl
Cgkljt95WkW/Pp9zF14g5cFV8H7YWKesfd9uBW5ILeG9ei1czXf9jq4Ye3yrxIZF
O2WeOFH6scilF0G5uEruOxd0WAXf0r+r2/kYpyj8AXg84hfR4n9z22YszGlqrnnf
KSbRZ7Qlk6qoECl+TUGhRIJ9vZ2NXy5+kCXrGx3teBogA70Wgj4UiKg9vQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFP49PTkx94M9wLwFOU+nZ4WTUnooMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvX2owOU9USDNnejNBdkFVNVQ2ZG5oWk5TZWlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAS4DVgME
AS7oBAMEAi7oFAMEAy7oSAMEBC7oYAMEAJV+wTAMAwQAlX7DAwQAlX7EAwQAlX7G
MAwDBACVfskDBACVfsowDAMEApV+zAMEAJV+zgMEAJV+0AMEAJV+0gMEAJV+1gME
AZV+4DANBgkqhkiG9w0BAQsFAAOCAQEAX7InDlk64Z75yXUjBrRmhOJCR4h38aQQ
1Sgo/hGk2EEqfuMh4tEcjWBOi/vgvpX2Lsgx7VWE7SxVmxVSCVNdGwoh1ubw0ET+
ns+dAVLO2zIgczD6eY/W4DpYL4TuK5fKOyDkRYBPCMQHO6IgH4fnOkEDqkGnirKC
YXOT0WcvdcLu6Rc013gkBG9ByFvYFeB12rChYIZrxum4YPiZyiC5W35z8RgxaSj+
DL2IUIjOf9aUYNvIOf9xzwGWgllaZ7wtcBoqCpBvC6YqgwWlmbCFrBL6EKxM46mg
GY0IWu+LiSkeLUkuCEgKlZY59dQm4rZc/Ii8+735305zk4s9PrdmEA==
Generated at Thu Jan 4 18:44:07 2024 by rpki-client on console-fra.rpki-client.org