Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bLn0iyHv87F-oyRSGVV6Du_W1Nw.roa
File: bLn0iyHv87F-oyRSGVV6Du_W1Nw.roa (raw, json)
Hash identifier: AH+fNS4J7Onx4QNKwGQGEZvgm6i9W3+2aQNB6AQzM54=
Subject key identifier: 6C:B9:F4:8B:21:EF:F3:B1:7E:A3:24:52:19:55:7A:0E:EF:D6:D4:DC
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018B852F115B2320D48CE95F4DC1F1E199B6
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bLn0iyHv87F-oyRSGVV6Du_W1Nw.roa
Signing time: Tue 31 Oct 2023 10:02:16 +0000
ROA not before: Tue 31 Oct 2023 10:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:2f:11:5b:23:20:d4:8c:e9:5f:4d:c1:f1:e1:99:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Oct 31 10:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cb9f48b21eff3b17ea3245219557a0eefd6d4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4d:45:95:a5:0d:b7:b2:bc:94:3f:c0:01:d8:
a9:9a:49:39:00:b7:83:49:0b:c7:75:b1:90:b8:a5:
6f:19:75:c3:ba:01:fe:2a:42:6c:ac:a5:8c:89:ac:
82:da:09:3a:b9:f3:fc:af:98:50:1f:67:81:9a:3b:
4a:bb:be:41:10:ed:69:cf:f2:1a:6c:63:7d:87:9a:
11:bd:ee:07:47:30:61:d6:bd:5c:76:13:0f:63:3f:
bc:a3:4a:62:8b:55:8a:1d:24:e0:3d:79:d0:07:0e:
e8:d3:50:66:52:67:4e:17:34:b6:ad:3f:9c:2d:c5:
00:0a:02:eb:70:84:1f:4d:4e:1d:0b:f5:0b:6e:3a:
d1:de:9e:8b:ae:50:de:30:45:31:06:04:3a:20:c6:
5d:2f:c5:f7:33:72:58:df:d4:cb:b7:44:71:86:d2:
00:7f:69:11:18:6b:d0:51:64:5f:8a:3a:f5:bd:d8:
7f:63:9a:c5:7c:40:81:6a:dd:df:df:72:a3:fe:18:
63:26:6e:92:9e:ea:eb:35:39:cd:e5:17:4e:f5:85:
f4:e0:4d:14:ff:3e:1e:c5:f5:ab:74:be:dd:48:ae:
ff:20:09:87:d0:f0:54:21:ba:4e:dd:81:16:87:9d:
2c:cc:f4:d8:06:28:8b:4e:5b:c7:0e:01:c5:87:34:
c0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B9:F4:8B:21:EF:F3:B1:7E:A3:24:52:19:55:7A:0E:EF:D6:D4:DC
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/bLn0iyHv87F-oyRSGVV6Du_W1Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.160.0/22
46.3.188.0/24
46.3.190.0/23
46.3.200.0/24
46.3.245.0-46.3.246.255
46.3.250.0/24
46.3.252.0/24
46.232.64.0-46.232.72.255
Signature Algorithm: sha256WithRSAEncryption
22:49:68:90:78:78:aa:2f:ef:ee:59:be:7d:34:95:0d:bf:cb:
12:21:74:95:9f:62:96:17:d1:8c:f5:2b:0f:e1:ac:c2:11:bc:
2c:a3:52:44:af:dc:25:c5:8d:c6:0d:63:cc:58:83:79:89:4d:
c4:92:7d:f5:53:2f:7d:da:15:0d:27:73:bc:d7:9f:3c:f3:da:
c8:6b:dd:c7:45:1b:aa:3c:1a:e1:78:91:de:be:39:de:8f:97:
88:17:cb:cb:30:36:ed:05:e4:6c:c3:c7:ef:2d:28:61:62:f7:
ad:45:4d:19:f7:59:3e:a0:5a:5f:db:30:e4:22:95:c5:7e:aa:
bb:38:c6:8f:1c:cc:e5:c8:55:15:fc:93:5c:82:00:66:49:0c:
82:aa:cc:82:fa:d1:53:a4:5a:ed:a4:61:96:2f:0e:b8:0c:f1:
15:4f:28:7a:99:d0:6c:2c:ca:68:86:11:9f:42:79:96:0b:24:
89:b6:a1:35:f3:55:d4:c4:7f:c8:a4:e6:bf:2f:02:91:a4:83:
b9:27:d3:27:ff:9b:c4:46:e1:79:49:1d:a6:29:b5:70:6b:93:
d5:6e:01:5f:1a:fe:f1:6c:d4:d6:22:65:48:14:0a:4f:6f:f5:
a7:97:de:68:2c:ff:26:0b:c9:a0:36:32:12:b4:45:27:bb:4f:
58:60:a3:70
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAYuFLxFbIyDUjOlfTcHx4Zm2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMxMDMxMTAwMjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2I5ZjQ4YjIxZWZmM2IxN2VhMzI0NTIxOTU1N2EwZWVmZDZkNGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjE1FlaUNt7K8lD/AAdipmkk5ALeD
SQvHdbGQuKVvGXXDugH+KkJsrKWMiayC2gk6ufP8r5hQH2eBmjtKu75BEO1pz/Ia
bGN9h5oRve4HRzBh1r1cdhMPYz+8o0pii1WKHSTgPXnQBw7o01BmUmdOFzS2rT+c
LcUACgLrcIQfTU4dC/ULbjrR3p6LrlDeMEUxBgQ6IMZdL8X3M3JY39TLt0RxhtIA
f2kRGGvQUWRfijr1vdh/Y5rFfECBat3f33Kj/hhjJm6SnurrNTnN5RdO9YX04E0U
/z4exfWrdL7dSK7/IAmH0PBUIbpO3YEWh50szPTYBiiLTlvHDgHFhzTANwIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFGy59Ish7/OxfqMkUhlVeg7v1tTcMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvYkxuMGl5SHY4N0Ytb3lSU0dWVjZEdV9XMU53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjBMBAIAATBGAwQCLgNYAwQC
LgOgAwQALgO8AwQBLgO+AwQALgPIMAwDBAAuA/UDBAAuA/YDBAAuA/oDBAAuA/ww
DAMEBi7oQAMEAC7oSDANBgkqhkiG9w0BAQsFAAOCAQEAIklokHh4qi/v7lm+fTSV
Db/LEiF0lZ9ilhfRjPUrD+GswhG8LKNSRK/cJcWNxg1jzFiDeYlNxJJ99VMvfdoV
DSdzvNefPPPayGvdx0Ubqjwa4XiR3r453o+XiBfLyzA27QXkbMPH7y0oYWL3rUVN
GfdZPqBaX9sw5CKVxX6quzjGjxzM5chVFfyTXIIAZkkMgqrMgvrRU6Ra7aRhli8O
uAzxFU8oepnQbCzKaIYRn0J5lgskibahNfNV1MR/yKTmvy8CkaSDuSfTJ/+bxEbh
eUkdpim1cGuT1W4BXxr+8WzU1iJlSBQKT2/1p5feaCz/JgvJoDYyErRFJ7tPWGCj
cA==
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org