Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/svAXH2v1J_F829nohkFlLXHVDMM.roa
File: svAXH2v1J_F829nohkFlLXHVDMM.roa (raw, json)
Hash identifier: eqNOjILk2kc73kzNWPv60F6/bik6mayPISC3iwy3yso=
Subject key identifier: B2:F0:17:1F:6B:F5:27:F1:7C:DB:D9:E8:86:41:65:2D:71:D5:0C:C3
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018814D084522A01A6C3605C9C3E7D02D7FF
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/svAXH2v1J_F829nohkFlLXHVDMM.roa
Signing time: Sat 13 May 2023 11:13:09 +0000
ROA not before: Sat 13 May 2023 11:13:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.232.72.0/21 maxlen: 24
46.232.80.0/20 maxlen: 22
46.232.96.0/20 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.192.0/18 maxlen: 22
149.126.226.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.245.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:14:d0:84:52:2a:01:a6:c3:60:5c:9c:3e:7d:02:d7:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 13 11:13:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2f0171f6bf527f17cdbd9e88641652d71d50cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1c:13:74:16:23:f1:c8:c5:52:12:e7:e4:4f:
f9:73:8f:57:65:2c:8c:75:f3:e3:d9:a8:2e:1d:d2:
38:ac:12:86:46:64:a5:27:92:26:e4:1c:5f:ba:6b:
b5:7b:66:09:71:b6:04:2a:4d:c0:82:ff:e2:0f:57:
2f:22:76:95:38:30:f0:d0:8b:b2:72:d7:fb:ba:88:
9c:ab:f7:0d:5d:c1:bb:f6:8b:2f:df:2e:b4:42:cf:
e5:17:43:15:71:2e:72:02:59:e0:21:20:88:3d:ea:
f8:37:5f:4a:54:09:c6:0a:9b:5a:b1:58:41:8b:27:
ce:50:24:f2:49:f9:0c:e4:da:27:35:5f:e4:d5:33:
2f:60:04:d7:6b:ec:6e:6d:85:79:26:d7:fc:d2:c7:
ad:da:33:52:fd:63:fa:63:84:00:4a:51:22:a4:ea:
44:c3:57:6b:0a:d7:d6:07:e3:06:d9:cd:bb:cc:2a:
7a:01:58:98:e3:8d:c5:5b:24:35:5c:00:87:c8:71:
f3:12:bc:a1:24:75:44:bc:9e:02:0d:b6:84:28:15:
e5:30:f4:fd:bb:82:b0:22:85:ed:15:cf:5c:90:3b:
ad:a5:d4:e1:3e:94:91:68:c1:53:f0:59:46:b7:7a:
61:3c:d1:23:14:50:c8:82:f9:08:53:fd:ba:96:2d:
e9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F0:17:1F:6B:F5:27:F1:7C:DB:D9:E8:86:41:65:2D:71:D5:0C:C3
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/svAXH2v1J_F829nohkFlLXHVDMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0-46.3.202.255
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.245.0-46.3.246.255
46.3.248.0/21
46.232.64.0/18
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
89:0b:8f:23:47:40:d2:d8:61:21:af:11:9e:d9:03:c9:9f:f6:
4e:7e:88:fb:01:6f:a1:39:bf:84:0e:90:4b:9e:99:b4:73:9c:
c0:38:4b:37:58:00:f0:ac:fd:6c:26:ff:5b:2b:3a:19:33:1c:
9f:f2:d1:87:36:9a:e5:40:63:75:46:4a:08:25:9d:6b:d3:73:
57:4b:f5:47:a0:1f:36:94:27:10:0d:84:dc:03:71:c3:4f:d7:
d6:00:57:24:bf:84:b8:1a:c0:6b:e0:70:5f:b1:e5:4b:72:a9:
fe:cf:13:17:25:d9:17:9d:49:05:48:e7:e9:b1:fb:e0:21:3b:
8e:a1:0c:78:fa:0f:68:56:f6:6a:bc:ef:be:44:b4:9b:3e:1e:
e0:f0:ad:69:e8:ad:c6:9d:8e:be:76:52:b5:86:8c:c9:ef:e6:
d7:8d:c3:f1:f7:9e:60:7e:d9:6d:a2:8a:b4:da:f2:3d:f0:16:
89:26:c1:30:ce:ae:6e:83:eb:77:35:c3:ea:78:1d:a1:68:b5:
18:c4:d5:70:3e:da:a3:b8:23:89:e2:f3:b7:55:47:40:36:e5:
5b:39:af:b1:b7:0e:83:94:ea:5e:d7:50:aa:0a:66:ad:38:00:
28:e2:34:b9:39:66:40:cf:b5:de:8b:86:f2:9b:78:e8:ad:6c:
1e:5d:33:41
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYgU0IRSKgGmw2BcnD59Atf/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwNTEzMTExMzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmYwMTcxZjZiZjUyN2YxN2NkYmQ5ZTg4NjQxNjUyZDcxZDUwY2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhwTdBYj8cjFUhLn5E/5c49XZSyM
dfPj2aguHdI4rBKGRmSlJ5Im5Bxfumu1e2YJcbYEKk3Agv/iD1cvInaVODDw0Iuy
ctf7uoicq/cNXcG79osv3y60Qs/lF0MVcS5yAlngISCIPer4N19KVAnGCptasVhB
iyfOUCTySfkM5NonNV/k1TMvYATXa+xubYV5Jtf80set2jNS/WP6Y4QASlEipOpE
w1drCtfWB+MG2c27zCp6AViY443FWyQ1XACHyHHzEryhJHVEvJ4CDbaEKBXlMPT9
u4KwIoXtFc9ckDutpdThPpSRaMFT8FlGt3phPNEjFFDIgvkIU/26li3pLQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFLLwFx9r9SfxfNvZ6IZBZS1x1QzDMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvc3ZBWEgydjFKX0Y4Mjlub2hrRmxMWEhWRE1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAi4DWAME
AC4DZTAMAwQCLgN0AwQHLgMAAwQALgOGAwQCLgOgAwQDLgO4MAwDBAMuA8gDBAAu
A8oDBAMuA9ADBAEuA9wDBAEuA+YwDAMEAC4D9QMEAC4D9gMEAy4D+AMEBi7oQAME
BpV+wDANBgkqhkiG9w0BAQsFAAOCAQEAiQuPI0dA0thhIa8RntkDyZ/2Tn6I+wFv
oTm/hA6QS56ZtHOcwDhLN1gA8Kz9bCb/Wys6GTMcn/LRhzaa5UBjdUZKCCWda9Nz
V0v1R6AfNpQnEA2E3ANxw0/X1gBXJL+EuBrAa+BwX7HlS3Kp/s8TFyXZF51JBUjn
6bH74CE7jqEMePoPaFb2arzvvkS0mz4e4PCtaeitxp2OvnZStYaMye/m143D8fee
YH7ZbaKKtNryPfAWiSbBMM6uboPrdzXD6ngdoWi1GMTVcD7ao7gjieLzt1VHQDbl
WzmvsbcOg5TqXtdQqgpmrTgAKOI0uTlmQM+13ouG8pt46K1sHl0zQQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org