Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/arhOVDmFNs_G7i-PmHdK1z144Ng.roa
File: arhOVDmFNs_G7i-PmHdK1z144Ng.roa (raw, json)
Hash identifier: asQSgGOjHLxEJdnGBJ6wSzOEa8vckAhMcy6e+qByi+g=
Subject key identifier: 6A:B8:4E:54:39:85:36:CF:C6:EE:2F:8F:98:77:4A:D7:3D:78:E0:D8
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018896622032AB6F03A78E61951A04817C7A
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/arhOVDmFNs_G7i-PmHdK1z144Ng.roa
Signing time: Wed 07 Jun 2023 15:03:13 +0000
ROA not before: Wed 07 Jun 2023 15:03:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 46.3.39.0/24 maxlen: 24
46.3.64.0/24 maxlen: 24
46.3.67.0/24 maxlen: 24
46.232.84.0/24 maxlen: 24
46.3.69.0/24 maxlen: 24
46.232.82.0/24 maxlen: 24
46.3.71.0/24 maxlen: 24
46.232.80.0/24 maxlen: 24
46.232.81.0/24 maxlen: 24
46.3.65.0/24 maxlen: 24
46.232.85.0/24 maxlen: 24
46.3.66.0/24 maxlen: 24
46.3.68.0/24 maxlen: 24
46.3.70.0/24 maxlen: 24
46.232.83.0/24 maxlen: 24
46.3.73.0/24 maxlen: 24
46.232.86.0/24 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.76.0/24 maxlen: 24
46.3.78.0/24 maxlen: 24
46.232.90.0/24 maxlen: 24
46.232.89.0/24 maxlen: 24
46.232.91.0/24 maxlen: 24
46.3.75.0/24 maxlen: 24
46.232.88.0/24 maxlen: 24
46.3.74.0/24 maxlen: 24
46.232.87.0/24 maxlen: 24
46.3.72.0/24 maxlen: 24
46.232.94.0/24 maxlen: 24
46.3.79.0/24 maxlen: 24
46.232.92.0/24 maxlen: 24
46.232.95.0/24 maxlen: 24
46.232.93.0/24 maxlen: 24
46.3.4.0/24 maxlen: 24
46.3.6.0/24 maxlen: 24
46.3.7.0/24 maxlen: 24
46.3.5.0/24 maxlen: 24
46.232.24.0/24 maxlen: 24
46.232.31.0/24 maxlen: 24
46.232.27.0/24 maxlen: 24
46.3.16.0/24 maxlen: 24
46.232.29.0/24 maxlen: 24
46.232.25.0/24 maxlen: 24
46.232.28.0/24 maxlen: 24
46.232.26.0/24 maxlen: 24
46.3.17.0/24 maxlen: 24
46.232.30.0/24 maxlen: 24
46.232.38.0/24 maxlen: 24
46.232.35.0/24 maxlen: 24
46.3.18.0/24 maxlen: 24
46.232.33.0/24 maxlen: 24
46.3.24.0/24 maxlen: 24
46.232.37.0/24 maxlen: 24
46.232.36.0/24 maxlen: 24
46.232.32.0/24 maxlen: 24
46.232.34.0/24 maxlen: 24
46.3.19.0/24 maxlen: 24
46.3.26.0/24 maxlen: 24
46.232.41.0/24 maxlen: 24
46.3.30.0/24 maxlen: 24
46.232.43.0/24 maxlen: 24
46.232.39.0/24 maxlen: 24
46.232.42.0/24 maxlen: 24
46.3.27.0/24 maxlen: 24
46.3.25.0/24 maxlen: 24
46.232.40.0/24 maxlen: 24
46.232.44.0/24 maxlen: 24
46.3.35.0/24 maxlen: 24
46.3.33.0/24 maxlen: 24
46.3.37.0/24 maxlen: 24
46.232.45.0/24 maxlen: 24
46.3.34.0/24 maxlen: 24
46.232.47.0/24 maxlen: 24
46.3.38.0/24 maxlen: 24
46.232.46.0/24 maxlen: 24
149.126.192.0/24 maxlen: 24
149.126.197.0/24 maxlen: 24
149.126.200.0/24 maxlen: 24
149.126.207.0/24 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.150.0/24 maxlen: 24
46.3.148.0/24 maxlen: 24
46.3.151.0/24 maxlen: 24
46.3.149.0/24 maxlen: 24
46.3.95.0/24 maxlen: 24
46.3.93.0/24 maxlen: 24
46.3.94.0/24 maxlen: 24
46.3.204.0/24 maxlen: 24
46.3.226.0/24 maxlen: 24
46.3.224.0/24 maxlen: 24
46.3.225.0/24 maxlen: 24
46.3.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:62:20:32:ab:6f:03:a7:8e:61:95:1a:04:81:7c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jun 7 15:03:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ab84e54398536cfc6ee2f8f98774ad73d78e0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c6:0b:9a:75:d8:e6:a4:64:64:90:f8:df:00:
f7:98:b4:5f:0e:dd:9b:23:f4:52:1e:08:ac:3f:36:
12:cb:8d:98:1f:f5:e5:14:24:12:9a:89:6b:da:32:
d4:7f:7f:54:03:57:95:f2:5c:f1:47:c4:d6:96:b4:
4d:20:2c:d0:68:ad:6d:18:3e:64:77:a3:6d:e3:9f:
04:15:50:f3:e5:89:8d:43:91:50:1a:e1:8c:1a:7f:
8d:88:5b:97:5b:3e:04:11:f5:8a:13:af:65:64:46:
e5:df:7b:22:cb:1d:7c:e8:b3:27:ce:42:ee:bc:48:
4b:e2:08:3a:b3:80:66:c8:13:02:ee:a8:1b:49:43:
28:3f:a4:6b:3f:e5:57:9a:e4:78:fb:5b:c4:0b:eb:
6a:f2:68:0a:a5:8d:a5:2f:5a:77:d5:59:0b:8f:9e:
32:18:01:5b:88:78:bd:96:b0:f2:a1:31:51:fe:58:
01:66:42:18:ad:28:3c:01:dd:94:a9:9f:d3:2d:a9:
c5:3c:ff:9e:66:03:d8:17:2c:60:c6:93:bf:5c:e5:
42:b3:55:51:cb:52:81:0a:11:b3:32:37:ee:db:f0:
5d:11:be:8a:15:b7:76:ca:0e:08:97:5e:62:4e:11:
b0:3e:d1:72:4f:bc:ca:ec:17:9b:0f:89:b4:e4:73:
6d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B8:4E:54:39:85:36:CF:C6:EE:2F:8F:98:77:4A:D7:3D:78:E0:D8
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/arhOVDmFNs_G7i-PmHdK1z144Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.4.0/22
46.3.16.0/22
46.3.24.0/22
46.3.30.0/24
46.3.33.0-46.3.35.255
46.3.37.0-46.3.39.255
46.3.64.0/20
46.3.93.0-46.3.95.255
46.3.148.0/22
46.3.204.0/24
46.3.224.0/22
46.232.24.0-46.232.47.255
46.232.80.0/20
149.126.192.0/24
149.126.197.0/24
149.126.200.0/24
149.126.207.0/24
149.126.215.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d6:b2:80:0b:db:04:ee:54:ef:23:fb:ed:a7:7f:36:cc:c5:
05:1d:01:91:7c:f4:04:6d:f2:da:1d:a7:59:76:2a:29:60:ce:
59:fa:ff:cb:89:8d:39:ec:9b:09:dc:94:af:92:78:a2:99:61:
84:72:8a:bc:c1:bf:f1:b4:54:03:b1:23:3b:31:6f:df:cb:d2:
18:c6:be:f1:e6:1b:7c:38:a5:95:d6:5b:ab:ac:82:71:b6:9a:
d5:75:79:82:a4:66:42:9e:31:7c:b9:67:02:07:4f:01:99:c2:
62:5e:c5:f5:ab:ee:58:16:f9:28:52:d0:8d:33:8f:ae:41:97:
fa:02:b2:db:bc:56:40:61:c7:f4:cd:98:2c:27:37:d2:13:3b:
d0:7d:3a:fe:2f:a5:92:cb:5d:1f:6e:39:b3:f5:e8:a2:81:d2:
3d:c6:35:d0:e5:76:23:da:4a:25:e4:09:6f:a4:22:de:83:33:
d1:cb:f2:ce:ac:41:16:d9:42:8a:68:8b:35:6c:3f:b6:8e:2a:
5c:f4:60:96:6a:f6:ea:4f:f0:ea:a6:db:64:87:de:65:58:60:
7c:b8:4f:61:24:68:9f:bb:87:9f:37:34:7c:6c:d2:6f:b3:51:
cd:0e:dd:11:d3:3d:7c:2c:22:db:d5:8f:c8:fa:55:1b:aa:44:
30:c4:39:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org