Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tghQlxFifk_HuBUBaycbeqcVRTw.roa
File: tghQlxFifk_HuBUBaycbeqcVRTw.roa (raw, json)
Hash identifier: 28ErGiNrzrxK7UIUxbg9ta7qUKyk4oKXQCUyUVHbHT4=
Subject key identifier: B6:08:50:97:11:62:7E:4F:C7:B8:15:01:6B:27:1B:7A:A7:15:45:3C
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881E14A4F587AAEFC7C40720E04E678554
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tghQlxFifk_HuBUBaycbeqcVRTw.roa
Signing time: Mon 15 May 2023 06:24:09 +0000
ROA not before: Mon 15 May 2023 06:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.243.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:14:a4:f5:87:aa:ef:c7:c4:07:20:e0:4e:67:85:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 06:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b608509711627e4fc7b815016b271b7aa715453c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f2:7f:97:ed:f9:17:7b:39:ec:63:b0:af:57:
79:eb:87:1f:96:e5:16:db:02:ae:7e:23:88:d0:36:
c8:22:a6:cd:17:47:62:29:49:24:3a:10:f4:f5:83:
df:45:7d:a8:c4:7e:a8:0d:c3:5b:26:cc:0b:cb:a5:
47:46:cc:5b:d7:53:6f:5a:e2:1d:ac:58:30:b3:6e:
45:ef:10:d5:2a:0c:01:e0:d5:17:51:a3:87:07:4b:
03:37:47:d5:59:2f:ec:ed:8d:be:0b:d5:4c:d4:85:
6b:48:05:ad:ce:01:54:59:4c:41:13:a6:f0:83:5f:
27:ed:94:fe:95:7e:b1:34:96:50:16:17:9d:b9:42:
05:97:c9:6a:ea:e9:7e:a0:47:b5:81:2d:9e:2e:7e:
ef:d7:2a:c3:f7:b0:35:38:26:4f:be:e8:5e:a9:66:
58:0b:1b:d1:78:d9:71:93:db:54:4e:ce:b7:3c:87:
9e:16:ef:87:e8:6e:94:88:2a:e5:36:e8:c7:a5:d4:
83:9a:05:66:e8:e8:f7:64:a9:2b:ff:b1:66:84:c2:
15:55:59:a4:66:87:cb:79:bb:af:1e:07:a6:1e:f4:
8f:ba:93:fb:1e:95:0f:47:d0:d4:5e:88:dd:a8:02:
95:d5:8b:e3:9a:45:7f:ca:2d:3a:95:ea:1f:c5:00:
52:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:08:50:97:11:62:7E:4F:C7:B8:15:01:6B:27:1B:7A:A7:15:45:3C
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/tghQlxFifk_HuBUBaycbeqcVRTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0-46.3.202.255
46.3.220.0/23
46.3.230.0/23
46.3.243.0/24
46.3.245.0-46.3.246.255
46.3.248.0/21
46.232.64.0-46.232.72.255
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a0:39:2a:3b:d0:44:e6:0d:ee:31:08:40:09:1e:09:77:3b:
af:c6:7a:fc:2d:45:36:4f:0a:ed:87:76:76:48:ec:00:85:d6:
10:8f:47:2f:c4:56:64:2e:5e:c8:19:ae:a8:ce:38:16:84:6f:
87:a7:0e:3e:9c:ab:af:c1:02:fc:33:47:22:01:d6:e4:8e:77:
9a:17:48:a3:fb:34:73:9f:2c:52:66:a5:f7:65:df:1c:cf:f9:
f6:f0:e3:75:e3:6f:32:9b:d3:cd:2e:8b:16:26:1d:81:93:8c:
f8:98:6a:a7:92:f2:6e:01:14:74:dc:4c:61:03:2f:9e:99:aa:
bf:59:49:48:96:c4:63:01:13:b7:e2:03:57:23:33:2d:be:71:
20:62:b1:fa:1e:a0:fd:4b:06:e3:0f:a6:9a:2b:61:ab:69:5c:
fe:36:12:22:6c:33:f1:21:8e:a8:0c:83:12:e5:92:2d:88:07:
3a:ac:c9:17:20:5b:75:21:02:29:66:3a:c5:82:d1:2f:73:50:
69:b8:f7:c3:4f:7e:ec:50:b1:a0:ac:57:dd:06:ee:c9:a3:56:
04:bd:17:83:14:af:55:2c:89:11:04:27:af:0a:69:73:24:43:
b9:c8:fa:f8:c3:75:aa:86:bf:9f:f4:23:23:23:7b:90:53:b1:
27:4f:dd:a5
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYgeFKT1h6rvx8QHIOBOZ4VUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwNTE1MDYyNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjA4NTA5NzExNjI3ZTRmYzdiODE1MDE2YjI3MWI3YWE3MTU0NTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8vJ/l+35F3s57GOwr1d564cfluUW
2wKufiOI0DbIIqbNF0diKUkkOhD09YPfRX2oxH6oDcNbJswLy6VHRsxb11NvWuId
rFgws25F7xDVKgwB4NUXUaOHB0sDN0fVWS/s7Y2+C9VM1IVrSAWtzgFUWUxBE6bw
g18n7ZT+lX6xNJZQFheduUIFl8lq6ul+oEe1gS2eLn7v1yrD97A1OCZPvuheqWZY
CxvReNlxk9tUTs63PIeeFu+H6G6UiCrlNujHpdSDmgVm6Oj3ZKkr/7FmhMIVVVmk
ZofLebuvHgemHvSPupP7HpUPR9DUXojdqAKV1YvjmkV/yi06leofxQBSKQIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFLYIUJcRYn5Px7gVAWsnG3qnFUU8MB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvdGdoUWx4Rmlma19IdUJVQmF5Y2JlcWNWUlR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDCBoQQCAAEwgZoDBAIu
A1gDBAAuA2UwDAMEAi4DdAMEBy4DAAMEAC4DhgMEAi4DoAMEAy4DuDAMAwQDLgPI
AwQALgPKAwQBLgPcAwQBLgPmAwQALgPzMAwDBAAuA/UDBAAuA/YDBAMuA/gwDAME
Bi7oQAMEAC7oSAMEAJV+4gMEAJV+5AMEAJV+5wMEAJV+8jAMAwQClX70AwQAlX76
AwQAlX78MA0GCSqGSIb3DQEBCwUAA4IBAQBpoDkqO9BE5g3uMQhACR4Jdzuvxnr8
LUU2Twrth3Z2SOwAhdYQj0cvxFZkLl7IGa6ozjgWhG+Hpw4+nKuvwQL8M0ciAdbk
jneaF0ij+zRznyxSZqX3Zd8cz/n28ON1428ym9PNLosWJh2Bk4z4mGqnkvJuARR0
3ExhAy+emaq/WUlIlsRjARO34gNXIzMtvnEgYrH6HqD9SwbjD6aaK2GraVz+NhIi
bDPxIY6oDIMS5ZItiAc6rMkXIFt1IQIpZjrFgtEvc1BpuPfDT37sULGgrFfdBu7J
o1YEvReDFK9VLIkRBCevCmlzJEO5yPr4w3Wqhr+f9CMjI3uQU7EnT92l
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org