Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/fATaVHH5VzF0zT9NL5ldVWkcPQE.roa
File: fATaVHH5VzF0zT9NL5ldVWkcPQE.roa (raw, json)
Hash identifier: nnZz99f9Zdp6iOJ3daabrFrKWNC88g1FmRa/7on7QNQ=
Subject key identifier: 7C:04:DA:54:71:F9:57:31:74:CD:3F:4D:2F:99:5D:55:69:1C:3D:01
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881FD0B2A83630D1D11B92E7BDCC69E291
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/fATaVHH5VzF0zT9NL5ldVWkcPQE.roa
Signing time: Mon 15 May 2023 14:29:10 +0000
ROA not before: Mon 15 May 2023 14:29:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.232.72.0/21 maxlen: 24
46.232.96.0/20 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.192.0/18 maxlen: 22
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.243.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:d0:b2:a8:36:30:d1:d1:1b:92:e7:bd:cc:69:e2:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 14:29:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c04da5471f9573174cd3f4d2f995d55691c3d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8d:38:dd:75:75:c7:6d:a6:ea:b5:8e:72:69:
6b:41:c8:be:35:fe:bf:6d:0f:f2:c5:9a:ea:4a:bc:
71:7a:09:19:77:d7:cd:3c:1c:92:e3:51:9f:5e:be:
73:ed:9d:f7:2f:71:e1:4c:fd:aa:b3:8f:84:c5:bb:
9d:e8:c5:ff:6d:ab:52:e4:cc:96:56:ff:06:ff:65:
b7:0b:71:9e:65:6b:cb:a7:b6:2f:89:2c:f9:df:19:
24:7c:9c:38:6b:68:ab:07:ff:91:47:00:29:62:0a:
07:c5:ea:41:a8:93:21:f7:8a:c0:cb:ba:cb:e4:21:
e2:a3:cb:bd:21:39:27:03:c0:92:47:bb:cb:bb:cf:
2d:e5:86:82:1c:7b:2a:df:f1:f1:c3:99:3c:09:23:
7a:3d:9c:e6:b2:8b:54:9f:e0:f3:c9:af:1f:32:69:
28:e2:69:f1:95:c1:ef:3a:60:24:47:54:0d:e0:47:
89:46:25:cc:79:5e:21:8d:46:0d:6c:8f:c1:2a:b8:
0f:b6:df:04:a3:03:eb:f0:ba:27:03:0b:dd:7c:79:
ca:c4:2b:08:e8:0f:a6:77:3c:b1:31:39:89:a4:cf:
bd:47:01:a0:57:d9:db:e6:8e:03:77:46:12:03:32:
eb:30:56:6f:34:64:57:bf:3d:4a:9c:98:e0:9a:1f:
48:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:04:DA:54:71:F9:57:31:74:CD:3F:4D:2F:99:5D:55:69:1C:3D:01
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/fATaVHH5VzF0zT9NL5ldVWkcPQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0-46.3.202.255
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.243.0/24
46.3.245.0-46.3.246.255
46.3.248.0/21
46.232.64.0/20
46.232.96.0/19
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8c:d8:fd:ce:77:4b:e2:f8:db:ab:de:58:58:ff:c6:c5:c6:53:
05:aa:a5:c4:68:6a:05:8c:b6:f1:8d:ae:bb:29:40:97:91:34:
9f:ae:35:7d:d6:68:51:43:5b:ef:64:2e:52:e7:4c:91:33:ea:
ae:1a:88:70:c0:21:00:b4:5b:0d:c8:0f:ff:72:1f:9e:46:49:
14:80:1f:b6:8e:38:15:d3:04:0c:3f:32:24:13:0f:74:21:b8:
c2:22:20:af:ac:62:34:83:cc:4c:98:d0:2e:84:a7:de:91:e6:
9c:47:48:83:21:97:91:60:e6:a8:4d:c9:eb:a0:8a:10:77:8e:
c5:e4:0f:8f:83:6e:5f:f2:72:4f:7f:a4:1b:97:79:32:0c:6d:
fa:cf:b2:f3:98:55:91:7a:33:ba:d0:ee:18:6d:55:61:44:ad:
8a:11:33:8b:e1:33:03:2a:d3:0c:73:ad:9f:33:df:00:66:7a:
fe:65:db:7b:7f:aa:15:c7:b8:db:44:6e:9b:52:0b:a2:e7:cf:
24:e2:5a:03:be:3d:bd:4d:20:79:10:d4:4e:c9:41:c8:c0:a1:
df:9b:b6:92:11:65:aa:8c:e6:40:a9:05:e3:ed:c1:8a:ca:11:
8e:20:79:60:e5:e4:b9:47:1f:fe:d9:39:5b:5c:90:52:3a:81:
62:fe:99:bf
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAYgf0LKoNjDR0RuS573MaeKRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwNTE1MTQyOTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzA0ZGE1NDcxZjk1NzMxNzRjZDNmNGQyZjk5NWQ1NTY5MWMzZDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwo043XV1x22m6rWOcmlrQci+Nf6/
bQ/yxZrqSrxxegkZd9fNPByS41GfXr5z7Z33L3HhTP2qs4+Exbud6MX/batS5MyW
Vv8G/2W3C3GeZWvLp7YviSz53xkkfJw4a2irB/+RRwApYgoHxepBqJMh94rAy7rL
5CHio8u9ITknA8CSR7vLu88t5YaCHHsq3/Hxw5k8CSN6PZzmsotUn+Dzya8fMmko
4mnxlcHvOmAkR1QN4EeJRiXMeV4hjUYNbI/BKrgPtt8EowPr8LonAwvdfHnKxCsI
6A+mdzyxMTmJpM+9RwGgV9nb5o4Dd0YSAzLrMFZvNGRXvz1KnJjgmh9IjQIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFHwE2lRx+VcxdM0/TS+ZXVVpHD0BMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvZkFUYVZISDVWekYwelQ5Tkw1bGRWV2tjUFFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDB+BAIAATB4AwQCLgNY
AwQALgNlMAwDBAIuA3QDBAcuAwADBAAuA4YDBAIuA6ADBAMuA7gwDAMEAy4DyAME
AC4DygMEAy4D0AMEAS4D3AMEAS4D5gMEAC4D8zAMAwQALgP1AwQALgP2AwQDLgP4
AwQELuhAAwQFLuhgAwQGlX7AMA0GCSqGSIb3DQEBCwUAA4IBAQCM2P3Od0vi+Nur
3lhY/8bFxlMFqqXEaGoFjLbxja67KUCXkTSfrjV91mhRQ1vvZC5S50yRM+quGohw
wCEAtFsNyA//ch+eRkkUgB+2jjgV0wQMPzIkEw90IbjCIiCvrGI0g8xMmNAuhKfe
keacR0iDIZeRYOaoTcnroIoQd47F5A+Pg25f8nJPf6Qbl3kyDG36z7LzmFWRejO6
0O4YbVVhRK2KETOL4TMDKtMMc62fM98AZnr+Zdt7f6oVx7jbRG6bUgui588k4loD
vj29TSB5ENROyUHIwKHfm7aSEWWqjOZAqQXj7cGKyhGOIHlg5eS5Rx/+2TlbXJBS
OoFi/pm/
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org