Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/seUamkWmCCe8b1mcBmnfAnnbnxw.roa
File: seUamkWmCCe8b1mcBmnfAnnbnxw.roa (raw, json)
Hash identifier: mTcgq5jtMNkrunzETh5O//vpYtJLz4lOulJQdFAJWNs=
Subject key identifier: B1:E5:1A:9A:45:A6:08:27:BC:6F:59:9C:06:69:DF:02:79:DB:9F:1C
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881EF5DFAE487779FAC33DE5308D28DB70
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/seUamkWmCCe8b1mcBmnfAnnbnxw.roa
Signing time: Mon 15 May 2023 10:30:09 +0000
ROA not before: Mon 15 May 2023 10:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399989
IP address blocks: 46.3.157.0/24 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.188.0/22 maxlen: 24
46.3.96.0/20 maxlen: 20
46.3.120.0/21 maxlen: 21
46.3.135.0/24 maxlen: 24
46.232.64.0/21 maxlen: 24
149.126.251.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.255.0/24 maxlen: 24
149.126.254.0/24 maxlen: 24
46.3.80.0/21 maxlen: 21
149.126.200.0/24 maxlen: 24
149.126.203.0/24 maxlen: 24
46.3.216.0/21 maxlen: 21
46.3.224.0/21 maxlen: 21
46.3.224.0/22 maxlen: 24
149.126.215.0/24 maxlen: 24
46.3.32.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f5:df:ae:48:77:79:fa:c3:3d:e5:30:8d:28:db:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 10:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e51a9a45a60827bc6f599c0669df0279db9f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:9c:85:52:4c:b3:17:de:e0:88:57:4e:dc:
97:2b:69:72:a9:f4:af:a5:bd:c3:49:c3:f1:e4:1e:
83:1e:17:79:46:37:38:84:b1:c3:d3:ef:ec:16:3a:
9e:4b:e5:c3:c7:b7:31:33:db:95:3e:50:ff:73:ca:
6c:55:0d:8f:14:72:ed:62:58:5c:d9:21:7f:da:49:
7c:d5:0a:1e:69:ea:58:03:17:6d:d1:61:6a:8e:fa:
8a:04:29:f3:f1:cf:2d:3c:d7:f2:ff:6d:c9:6f:d2:
7a:74:fb:c2:c8:86:49:39:b3:4a:40:d6:09:d1:86:
1e:3f:3a:40:04:0d:89:c2:84:c2:4d:42:81:03:66:
55:3c:5a:1b:ce:e4:c5:5f:0e:a1:53:18:1d:ff:c3:
34:6e:1c:9f:eb:49:46:45:e9:b9:25:db:c8:b6:1f:
a2:3f:b9:c8:8b:62:68:06:11:74:82:97:30:86:c7:
ae:7e:8c:35:ea:02:a9:cd:1c:a2:2e:4a:30:7b:ec:
cf:a8:1d:38:d2:a3:39:8b:ba:87:7e:7c:06:ee:97:
e4:60:71:7b:9c:3e:34:dc:4a:ad:02:97:44:10:83:
f9:db:b9:31:63:f9:5f:cb:f3:a9:fb:05:44:cc:e4:
1c:b5:1e:00:28:7c:82:df:42:8b:cf:28:14:72:10:
53:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E5:1A:9A:45:A6:08:27:BC:6F:59:9C:06:69:DF:02:79:DB:9F:1C
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/seUamkWmCCe8b1mcBmnfAnnbnxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.32.0/20
46.3.80.0/21
46.3.96.0/20
46.3.120.0/21
46.3.135.0/24
46.3.156.0/23
46.3.188.0/22
46.3.216.0-46.3.231.255
46.232.64.0/21
149.126.200.0/24
149.126.203.0/24
149.126.215.0/24
149.126.251.0/24
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
5b:31:1b:6b:ea:d9:fd:42:b8:ce:70:30:0d:95:11:1d:9c:e7:
08:a0:d4:b5:e9:b1:35:d2:71:04:0a:18:0c:f3:1a:7e:83:3d:
f2:f3:77:f8:11:79:52:2d:04:ef:27:52:42:9e:bf:a6:40:db:
46:51:62:e1:cc:80:41:5a:21:65:54:39:de:27:52:64:bc:11:
d9:b4:37:b0:af:15:85:87:1f:50:da:69:6d:e3:3e:0c:75:87:
0a:63:39:85:49:40:ed:97:e7:ee:8a:37:9d:b4:04:ab:fd:8a:
d4:26:9a:84:d0:ca:a3:28:af:bc:aa:b7:b3:68:40:ea:4c:c0:
05:9a:42:2a:43:0c:e7:c3:cc:fa:66:a8:14:82:9a:1e:65:2a:
a2:ee:d8:4b:62:f8:ed:ff:8a:3a:f0:21:0c:2b:08:7f:29:8a:
42:67:b6:07:0d:68:d6:53:13:6e:0d:5e:bd:f6:4e:31:71:ab:
96:59:59:e1:27:7e:fb:44:2a:19:bc:f6:41:31:49:ef:39:02:
54:cb:ea:c0:cb:44:0d:70:75:fc:2b:0e:72:f6:96:88:23:b7:
42:0a:e4:20:18:89:84:53:40:f1:20:73:97:79:dd:63:d8:72:
0d:61:ea:d3:f4:3d:c7:36:d4:b7:ce:00:d1:b2:24:92:61:32:
61:d7:f4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org