Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dd5WjA-mfo_A3Ub759RgYyRp5kk.roa
File: dd5WjA-mfo_A3Ub759RgYyRp5kk.roa (raw, json)
Hash identifier: 120sgO2v+u3RQKrhK0znP7xgQmM7mhAOToa/knaRNtM=
Subject key identifier: 75:DE:56:8C:0F:A6:7E:8F:C0:DD:46:FB:E7:D4:60:63:24:69:E6:49
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018CC94E70F49F28F6324AD421B5E1C7DCD0
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dd5WjA-mfo_A3Ub759RgYyRp5kk.roa
Signing time: Tue 02 Jan 2024 08:33:30 +0000
ROA not before: Tue 02 Jan 2024 08:33:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 393427
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 08:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:70:f4:9f:28:f6:32:4a:d4:21:b5:e1:c7:dc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:33:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75de568c0fa67e8fc0dd46fbe7d460632469e649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:03:e7:85:c1:48:2c:04:a1:c9:12:0d:bc:ea:
6a:28:d9:ae:2d:d6:d8:43:2c:17:0d:fe:65:ed:50:
df:80:12:1c:6c:0f:c1:e5:63:75:2a:64:7b:b1:60:
c2:79:60:d1:d4:d0:13:f8:ba:54:a1:bd:20:c7:1d:
6d:2a:27:ad:b5:49:af:e4:b3:b4:ec:cf:63:aa:e9:
c3:85:eb:af:c9:43:1c:48:64:9b:6a:ed:20:69:e4:
8d:1f:5f:c5:a5:05:9e:20:9c:ca:56:75:21:de:67:
b9:91:3e:c9:42:89:3a:7a:0c:44:49:5c:bf:61:ea:
68:32:db:29:3e:5b:85:75:e8:42:08:07:9a:25:71:
3c:be:d7:a0:71:bc:af:75:98:85:3c:b4:91:04:4a:
db:f4:e5:83:0e:d9:34:e4:6d:58:82:fe:a7:2d:de:
9a:b0:91:45:78:9e:ed:bd:46:ce:01:a3:e0:ec:f4:
03:c4:f1:2e:dc:a5:f4:cb:6a:8b:7a:b4:15:2d:fa:
a2:02:82:61:f7:91:ab:18:6f:1c:bd:55:cd:c7:9c:
f9:3b:ba:ad:01:ac:e6:79:d3:da:9a:d5:e9:03:60:
83:b3:e3:5c:ee:57:a3:dd:db:c3:4a:4d:5e:ad:18:
34:8d:9b:44:03:5c:e6:05:3d:b7:3a:80:29:e5:d4:
3f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DE:56:8C:0F:A6:7E:8F:C0:DD:46:FB:E7:D4:60:63:24:69:E6:49
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dd5WjA-mfo_A3Ub759RgYyRp5kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.160.0/22
46.3.188.0/24
46.3.190.0/23
46.3.200.0/24
46.3.245.0-46.3.246.255
46.3.250.0/24
46.3.252.0/24
46.232.64.0-46.232.72.255
Signature Algorithm: sha256WithRSAEncryption
61:3d:39:45:5e:99:17:ee:61:2c:3d:78:ed:be:d5:28:7d:a2:
53:df:29:d8:11:43:8a:a2:11:a3:a6:ac:f4:25:22:1b:86:30:
25:f3:33:80:53:58:91:45:03:b9:ca:bf:b0:50:cb:9a:d6:dc:
8e:2c:a6:ee:1d:db:17:84:3a:0c:b8:0b:fc:cf:91:81:64:72:
c2:06:db:d6:68:cd:60:ba:65:63:6e:fe:c0:c9:04:13:a7:96:
fb:f3:9f:c7:cf:ab:90:3d:f0:20:61:02:cc:58:8e:de:1e:9d:
c2:7a:14:96:2a:44:e1:21:01:3f:16:1c:8b:57:10:c5:82:41:
4f:3b:81:f7:6d:e6:5c:92:b5:bc:4d:86:c1:57:8a:af:8c:41:
e9:7c:d0:3f:a3:37:21:13:dd:93:9a:29:4b:7c:b4:e1:aa:9e:
5a:65:8a:8b:37:be:60:36:13:bd:63:b7:d1:2a:2e:e7:8c:95:
a6:10:ec:27:7c:2f:99:6e:80:e4:0c:58:e4:2b:63:65:ae:8a:
05:5d:d2:0e:5f:0d:32:ba:a8:93:85:f7:65:cd:ed:17:35:62:
c2:1d:e6:d1:a2:08:78:49:d5:fc:5e:17:d6:c5:62:b2:46:ab:
92:ea:b2:25:ce:98:52:b6:f5:e0:2d:6b:9d:78:f1:93:6d:ad:
f0:fb:0d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 11:37:09 2024 by rpki-client on console-fra.rpki-client.org