Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iWNJRd_H3L-mSae7vWtbXm9dRFs.roa
File: iWNJRd_H3L-mSae7vWtbXm9dRFs.roa (raw, json)
Hash identifier: x4oyUY+OGGfP3z9p9g2ACiL+tqFb+oB508LQikgXjQ8=
Subject key identifier: 89:63:49:45:DF:C7:DC:BF:A6:49:A7:BB:BD:6B:5B:5E:6F:5D:44:5B
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881EF5DDC390702BFF391B4128048E4592
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iWNJRd_H3L-mSae7vWtbXm9dRFs.roa
Signing time: Mon 15 May 2023 10:30:09 +0000
ROA not before: Mon 15 May 2023 10:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 46.3.160.0/20 maxlen: 20
46.3.176.0/20 maxlen: 20
46.3.96.0/19 maxlen: 19
46.3.128.0/23 maxlen: 23
46.232.64.0/19 maxlen: 19
46.232.64.0/18 maxlen: 18
46.3.64.0/20 maxlen: 20
46.3.80.0/22 maxlen: 22
46.3.80.0/20 maxlen: 20
46.232.96.0/19 maxlen: 19
46.232.0.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.232.16.0/22 maxlen: 22
46.3.224.0/22 maxlen: 22
46.3.12.0/22 maxlen: 22
46.232.32.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f5:dd:c3:90:70:2b:ff:39:1b:41:28:04:8e:45:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 10:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89634945dfc7dcbfa649a7bbbd6b5b5e6f5d445b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0f:70:12:5d:1d:0c:70:1f:8c:f4:7f:3b:9c:
29:40:ed:d2:b6:08:41:48:72:99:9b:6a:24:e2:fa:
c7:41:78:1c:9a:15:1a:7a:ce:91:e9:4b:8a:de:4b:
3b:8b:96:e9:48:71:de:b7:4e:1e:3e:29:28:44:80:
25:85:3c:40:d0:44:b0:c9:98:23:9d:47:01:bc:12:
64:99:7b:4d:57:db:e6:d2:6c:48:29:df:9d:21:bf:
ef:24:d9:85:ed:fc:22:fb:e3:ac:18:20:f4:9b:28:
a1:8c:10:77:b1:4c:29:cc:2d:72:0c:20:e5:e3:e2:
47:14:d6:25:8f:bc:ec:59:17:af:d1:e2:9d:bd:fb:
a2:7c:68:bb:90:ba:6b:b5:b7:68:c5:fd:77:f4:83:
94:cf:09:f5:b4:e5:d9:7d:b5:b1:f8:85:ff:47:8e:
02:0d:bc:98:62:db:de:b6:95:a7:83:f9:6b:06:05:
9b:4f:d0:bc:0e:3a:ab:ee:e2:35:7a:89:3e:14:0c:
78:ed:a7:75:89:8c:9d:80:7d:0c:ff:bf:2b:2e:1b:
04:05:01:8a:f9:b9:02:b4:51:cb:6c:bb:e5:83:4c:
49:9c:72:16:fe:69:c2:35:d1:99:9b:37:b4:79:d0:
fc:39:7c:e8:cf:d8:e1:36:7f:72:5b:63:0b:45:73:
c1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:63:49:45:DF:C7:DC:BF:A6:49:A7:BB:BD:6B:5B:5E:6F:5D:44:5B
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/iWNJRd_H3L-mSae7vWtbXm9dRFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.12.0/22
46.3.64.0-46.3.129.255
46.3.160.0/19
46.3.216.0-46.3.227.255
46.232.0.0/24
46.232.16.0/22
46.232.32.0-46.232.127.255
Signature Algorithm: sha256WithRSAEncryption
14:db:53:f0:6a:dc:20:68:90:2b:3f:10:19:ec:b0:8d:39:2c:
0b:95:b6:7d:be:3a:6c:54:b8:8d:75:72:df:36:fe:d8:b0:6e:
2e:35:46:17:ad:0b:a8:c1:0f:b2:91:23:80:9f:25:19:dd:ac:
3d:f9:f6:7b:68:ba:27:bd:49:06:48:55:85:47:f2:eb:ad:f6:
76:15:7e:5a:1a:f8:1f:dd:ed:f1:cc:94:af:b0:de:3d:bf:b7:
ad:a8:dc:ab:ff:d7:03:cd:60:dc:a8:57:82:4f:ec:d6:7d:1d:
b1:da:cd:30:d1:63:5d:56:79:ac:60:1b:59:b5:c5:dc:eb:9e:
68:f4:16:82:da:21:2e:8f:79:17:a3:76:b9:74:e8:71:53:3a:
68:b4:0d:b4:3e:ef:8f:e4:65:fd:bf:c7:79:a8:8c:9d:3a:59:
0b:64:24:39:64:9c:72:5f:88:02:2f:81:26:9c:71:77:06:43:
6c:02:3a:e0:36:c4:10:35:9c:09:52:73:3a:11:eb:8e:4a:58:
d9:34:87:09:ed:41:d1:ca:3b:e4:a6:64:1c:bf:d6:3a:80:07:
08:8f:f2:6b:fb:bd:ab:cd:d7:72:42:3a:8b:77:77:80:86:2a:
02:34:3b:dd:7f:6d:56:40:fe:30:61:b0:fb:ca:e4:7a:55:1a:
1d:cf:a6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org