Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/mDDlOasvblg-4YLuRsBAutPrI-Q.roa
File: mDDlOasvblg-4YLuRsBAutPrI-Q.roa (raw, json)
Hash identifier: v4Vvz6eD87Fhfq8L58pCIJeg4ppktQNuu/9hKTjT2YU=
Subject key identifier: 98:30:E5:39:AB:2F:6E:58:3E:E1:82:EE:46:C0:40:BA:D3:EB:23:E4
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0186CD8BBF8C3529C722F327466B8F6C4397
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/mDDlOasvblg-4YLuRsBAutPrI-Q.roa
Signing time: Fri 10 Mar 2023 22:02:13 +0000
ROA not before: Fri 10 Mar 2023 22:02:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.72.0/21 maxlen: 24
46.232.80.0/20 maxlen: 22
46.232.96.0/20 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
149.126.192.0/18 maxlen: 22
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:8b:bf:8c:35:29:c7:22:f3:27:46:6b:8f:6c:43:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 10 22:02:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9830e539ab2f6e583ee182ee46c040bad3eb23e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:39:cb:a8:07:ce:c3:c8:af:d6:6b:03:55:d9:
8e:30:6d:07:0b:a8:7b:fd:d0:d4:e7:74:54:9e:4c:
1c:ec:08:93:a7:46:4f:90:8d:27:98:a0:48:66:0e:
f1:cd:ca:f5:93:2e:10:f0:52:d6:65:49:18:b9:fe:
1d:9b:82:71:f0:93:f1:74:d0:5a:af:f6:62:22:18:
2b:4e:e4:24:39:3c:27:d2:db:c5:4d:96:b5:96:9a:
c8:47:c6:d1:d5:0e:02:90:f8:e4:21:99:fb:b2:bc:
5b:4b:f9:27:d9:da:a3:53:69:47:0c:16:1c:11:8b:
9b:27:74:24:d9:86:bd:97:c7:30:aa:03:3a:97:32:
bc:f5:72:48:db:c7:80:8d:4b:cb:8b:97:ff:2b:77:
0a:a9:e5:c0:3a:c4:eb:96:5b:3d:23:85:60:9c:7d:
0a:ab:be:1e:bc:f5:e8:82:70:61:36:b7:27:3c:9e:
33:9b:be:32:3b:1c:e8:57:22:4d:05:57:aa:2a:11:
2e:2c:80:7f:b5:bf:ec:00:82:09:b0:01:e6:d6:1d:
ad:38:21:39:ed:06:62:8b:74:fa:61:2c:2d:17:9b:
e6:ca:d2:11:fd:45:4d:c7:3a:57:3c:f5:6e:94:b9:
e7:d1:25:7b:81:ad:71:ee:90:9c:4a:58:38:82:f3:
87:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:30:E5:39:AB:2F:6E:58:3E:E1:82:EE:46:C0:40:BA:D3:EB:23:E4
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/mDDlOasvblg-4YLuRsBAutPrI-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0-46.3.90.255
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.201.0/24
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
46.232.72.0-46.232.127.255
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:51:52:64:88:1e:f6:fb:4c:de:53:52:35:58:f5:5f:7b:d4:
6a:52:88:60:c0:3e:2e:45:d1:9a:05:88:20:cd:be:8e:08:77:
dc:a7:3c:0c:e9:0e:1d:69:bf:26:de:71:92:a3:a7:70:10:ee:
8c:d2:7e:50:4f:99:b6:c6:d1:70:ee:23:73:bd:62:d0:0f:b1:
8f:33:74:4a:52:11:b7:ed:08:30:f0:a1:8b:0e:a7:e4:20:f9:
30:07:43:e0:48:90:4c:98:c4:74:3a:98:31:43:0d:08:55:0f:
a4:d0:95:91:9f:08:83:73:d1:a6:50:56:fa:4b:d6:57:44:5f:
cc:98:49:50:17:ed:bc:b4:00:66:34:5a:d6:51:da:d5:40:3a:
33:cd:4c:d4:dc:2a:7c:cf:bb:8b:7d:d1:da:b7:bd:6c:14:53:
0e:19:16:d0:fd:02:0b:67:c6:b6:e0:66:dc:0e:a9:e1:92:33:
15:db:21:70:b9:65:3e:db:b0:ce:29:c7:3b:82:6a:c0:83:e1:
25:d7:f2:9c:ff:5d:4f:33:e3:cc:02:38:19:ef:33:a0:07:f2:
11:d5:4a:13:0a:17:6a:9c:f0:84:c6:ba:a6:3d:99:21:40:bc:
f0:af:40:88:3d:a3:30:1c:c5:9b:ee:b7:d6:d2:da:5f:90:76:
7f:cf:88:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:57 2023 by rpki-client on console.sobornost.net