Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/vcdJuo55JVTQvB_fDSxZh_PbCQY.roa
File: vcdJuo55JVTQvB_fDSxZh_PbCQY.roa (raw, json)
Hash identifier: CVV9v3YQYLzJP9iuVNQWCIVaLvAdm79Sdq0Qk5yHdnY=
Subject key identifier: BD:C7:49:BA:8E:79:25:54:D0:BC:1F:DF:0D:2C:59:87:F3:DB:09:06
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018641E629AD03FF06C4E04AEC7B4788F7D8
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/vcdJuo55JVTQvB_fDSxZh_PbCQY.roa
Signing time: Sat 11 Feb 2023 19:14:08 +0000
ROA not before: Sat 11 Feb 2023 19:14:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
149.126.226.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:41:e6:29:ad:03:ff:06:c4:e0:4a:ec:7b:47:88:f7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Feb 11 19:14:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdc749ba8e792554d0bc1fdf0d2c5987f3db0906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:6b:9d:8c:51:e1:55:db:47:90:cb:4f:ba:
e8:be:aa:5e:68:51:74:44:ea:95:ec:41:fe:6d:6d:
16:cc:de:fc:80:a0:6d:5b:e0:69:8c:0a:b3:9c:5d:
3e:8b:1e:b3:49:fc:31:46:55:99:f4:7d:c1:87:86:
7a:c9:32:47:b1:0e:7e:e6:27:4f:33:35:a6:79:0c:
04:64:1a:59:a4:7e:df:2e:36:e3:f3:4a:48:e9:87:
61:24:07:49:23:d1:1a:ea:5b:b5:3e:b0:2e:a0:87:
b6:e1:3d:b5:38:fa:65:0a:6c:08:24:8e:fe:5d:69:
ac:87:5e:60:dd:b4:ba:cb:e6:64:39:1e:51:2c:f2:
a8:58:a5:85:d8:c4:42:ea:d5:85:1f:38:74:d0:b9:
db:d9:74:08:2b:fb:fb:7b:db:05:89:ee:ca:4b:eb:
f5:af:63:ff:fc:30:d4:c9:ad:4d:51:15:54:2b:e0:
d7:00:aa:05:b5:95:eb:c4:f8:5d:79:11:10:a7:84:
61:f8:89:69:61:16:91:7d:81:15:76:fd:84:9e:20:
db:29:8f:99:fe:b9:68:7f:8b:b7:75:90:75:99:fa:
d5:89:3f:88:5f:f4:49:c5:e9:ec:53:c5:ba:82:cd:
0a:d4:ac:24:f5:0d:23:60:57:3f:e2:59:c5:a1:85:
b6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C7:49:BA:8E:79:25:54:D0:BC:1F:DF:0D:2C:59:87:F3:DB:09:06
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/vcdJuo55JVTQvB_fDSxZh_PbCQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.201.0/24
46.3.220.0/23
46.3.230.0/23
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
57:97:62:ba:f1:ee:21:c5:51:86:45:b5:06:d0:dd:b9:9e:6c:
7e:7b:57:b2:28:eb:02:49:ff:3e:32:dd:9c:2f:46:35:1e:fb:
a5:c0:93:7b:0a:76:75:da:ce:dc:79:28:60:9a:ef:2c:e5:c7:
80:74:3f:d2:74:b9:53:9b:c0:77:23:ec:1c:f1:28:06:31:fa:
5c:8a:3e:9c:3b:91:03:4f:cf:1c:66:8d:6b:9c:10:4a:67:46:
8b:c1:6b:2b:b8:ed:b9:d8:d5:4d:f5:6f:32:dd:73:5b:07:78:
34:e7:1e:30:f1:18:a9:0f:c2:6b:ae:b9:d0:40:f3:99:3d:d5:
1e:fc:0b:4f:86:07:63:93:06:0c:f5:5e:0e:35:64:ca:84:bc:
91:82:eb:14:1b:09:aa:1d:92:90:4b:04:ba:91:f3:05:2d:bc:
60:53:fc:ca:8d:3e:06:a2:a4:df:8b:19:18:d5:45:0e:07:ba:
6b:57:69:d1:90:ef:f4:1d:09:6b:a3:d9:b0:ec:8d:97:5b:33:
b1:c8:64:27:26:ea:40:69:2c:8e:16:4d:30:ea:e3:29:85:6f:
25:c9:e7:6d:ba:8e:98:5b:c1:f8:f5:85:23:df:55:47:33:f8:
61:64:b4:93:d6:9b:90:bc:01:7d:d7:19:16:1d:ad:5c:64:82:
1a:1b:95:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org