Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/spVQeSsSsCEKvFDqk9gA47iXC64.roa
File: spVQeSsSsCEKvFDqk9gA47iXC64.roa (raw, json)
Hash identifier: VrUeREZaO/c8ohrNZQXaqwJ3Ru6/vWMV+U+bvZVJ3b4=
Subject key identifier: B2:95:50:79:2B:12:B0:21:0A:BC:50:EA:93:D8:00:E3:B8:97:0B:AE
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0186CD9A66274207430F1DCD37F8F121C6FF
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/spVQeSsSsCEKvFDqk9gA47iXC64.roa
Signing time: Fri 10 Mar 2023 22:18:13 +0000
ROA not before: Fri 10 Mar 2023 22:18:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 46.3.88.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
149.126.226.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:9a:66:27:42:07:43:0f:1d:cd:37:f8:f1:21:c6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 10 22:18:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b29550792b12b0210abc50ea93d800e3b8970bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:83:17:c7:f8:3f:7a:68:ee:0f:f8:a3:b7:b0:
49:a6:0c:b4:b4:6b:14:66:03:93:cd:7a:50:a0:0b:
bc:2e:a4:28:bd:45:1f:ff:52:fd:02:33:9f:d8:ad:
c7:39:01:01:2b:e9:dd:10:aa:31:9e:25:3d:62:cc:
27:b5:83:72:d3:92:70:8e:fa:b9:3e:34:45:a2:c6:
d4:f5:af:e1:d1:83:62:a6:af:76:68:5f:91:15:91:
91:9e:9e:47:12:bb:b7:9c:21:d4:da:18:ea:66:9f:
0a:c6:36:e4:b8:e0:52:b5:4b:ff:cd:b8:d1:97:e3:
70:2c:85:a2:5a:73:a0:eb:8f:f7:9a:c4:8b:a9:bc:
bb:e5:a2:e2:7a:6d:28:3d:e2:61:ff:94:23:16:90:
5b:aa:f3:5a:bc:3f:72:a3:21:05:42:26:c7:5d:53:
50:1f:06:ce:60:6b:a8:8c:87:90:1c:62:51:c2:56:
ba:f4:bd:84:58:33:85:1b:9f:3e:43:d3:4a:fb:66:
01:27:9b:95:2c:97:12:5c:28:25:f2:be:b6:c0:63:
db:5e:53:3e:2c:8b:f2:cc:1e:37:49:2d:a7:2f:76:
03:7f:ff:be:47:f7:35:83:a7:4e:f8:26:b5:73:94:
f4:ad:c6:5b:aa:24:a6:b7:b5:31:21:13:48:5e:eb:
70:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:95:50:79:2B:12:B0:21:0A:BC:50:EA:93:D8:00:E3:B8:97:0B:AE
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/spVQeSsSsCEKvFDqk9gA47iXC64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0-46.3.189.255
46.3.201.0/24
46.3.220.0/23
46.3.230.0/23
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f5:3e:19:12:ef:3c:1b:cd:6b:a1:50:22:fe:6e:63:e9:1e:
32:97:31:b7:4c:70:3b:14:a5:d9:a7:ba:11:d7:89:8f:29:7b:
61:9d:68:25:2c:28:2e:79:b4:35:8d:65:b8:f5:ac:ee:e2:33:
90:8d:8b:12:07:b0:a9:7a:70:af:a9:a4:53:9f:e6:2e:6b:24:
c3:8a:90:2f:2a:84:20:da:c0:c6:3f:83:a1:58:32:fe:dc:09:
ca:99:fb:d0:7c:b3:37:a7:1f:7f:c9:72:e6:66:76:31:ba:c4:
2f:95:2f:05:03:a2:6b:00:3f:be:61:7a:5c:65:7d:ba:ac:e0:
71:d5:b9:82:1d:a2:63:55:8a:a7:08:42:43:2b:7f:eb:14:98:
4e:35:b5:65:c6:ea:dc:85:5a:f1:ab:5f:1b:23:d4:f1:cf:96:
09:ce:bb:5a:94:5c:c4:ef:b9:b4:97:03:d0:10:20:34:4d:82:
29:e9:c5:b2:5f:e0:73:33:86:ac:50:01:8b:43:0d:15:02:bf:
47:e3:07:d6:4e:2c:db:ef:67:15:3d:94:27:dd:15:2f:0d:1b:
e9:66:be:f8:c4:8c:5d:d6:43:b5:25:74:1a:3b:4e:c8:ae:97:
43:b7:95:ec:c3:07:c9:60:45:4e:cb:c6:f0:ef:a9:1c:34:71:
3a:bd:1b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org