Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rf4CnVGdXfcqs_kLGyVADJHD-VI.roa
File: rf4CnVGdXfcqs_kLGyVADJHD-VI.roa (raw, json)
Hash identifier: quz+BRa+j77UurzJ8M5pQzZKP0Nrm5c1zwB04FbW1Ik=
Subject key identifier: AD:FE:02:9D:51:9D:5D:F7:2A:B3:F9:0B:1B:25:40:0C:91:C3:F9:52
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018E1F91C44C4B7EE4729B7A59E0BBAECC6E
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rf4CnVGdXfcqs_kLGyVADJHD-VI.roa
Signing time: Fri 08 Mar 2024 19:37:10 +0000
ROA not before: Fri 08 Mar 2024 19:37:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.134.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 19:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1f:91:c4:4c:4b:7e:e4:72:9b:7a:59:e0:bb:ae:cc:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 8 19:37:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adfe029d519d5df72ab3f90b1b25400c91c3f952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:83:59:1e:3e:22:c3:6b:8b:0b:b8:ae:75:20:
2e:41:03:7c:2a:f2:6a:7b:50:90:52:86:3c:ae:3f:
10:ae:aa:8f:be:cd:9d:2f:8f:8d:94:37:a9:12:dd:
de:5a:e5:a1:b8:a9:70:23:c4:25:6e:0b:1a:96:d0:
43:ff:ca:30:4c:ae:05:56:02:7d:0a:45:aa:1c:2e:
3a:0f:77:5a:07:37:ef:13:5a:13:f0:b6:de:99:6e:
e2:e2:e7:4c:51:35:ef:92:3c:9f:4b:d2:8d:e8:be:
39:5f:84:70:74:27:07:f1:ea:5e:1e:39:6e:e1:c9:
d6:ee:f2:ff:f6:ea:a5:b2:a7:ac:6a:56:fd:ca:3c:
fe:f3:8d:68:25:1e:d2:8a:52:5b:57:e7:d6:db:29:
c8:79:10:50:87:3e:61:7b:ef:1f:93:b7:1c:ef:9f:
6e:94:28:d3:c4:76:3f:22:f9:59:42:3f:68:f8:4e:
7e:88:50:d5:aa:9d:0b:c4:f7:1b:8e:a3:df:19:71:
cb:15:63:f4:8f:97:b1:78:7c:82:69:91:99:17:12:
e4:32:42:45:44:51:bd:a5:57:16:87:9f:a7:b2:21:
11:66:39:c8:7c:63:e3:08:85:45:1c:50:d6:fa:7a:
d3:9e:6f:c7:d7:8e:bb:25:04:e2:26:81:e3:80:90:
45:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FE:02:9D:51:9D:5D:F7:2A:B3:F9:0B:1B:25:40:0C:91:C3:F9:52
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/rf4CnVGdXfcqs_kLGyVADJHD-VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.89.0-46.3.91.255
46.3.134.0/24
46.3.160.0/22
46.3.201.0/24
46.3.248.0/23
46.3.251.0/24
46.3.253.0-46.3.255.255
46.232.64.0/23
149.126.226.0/24
149.126.228.0/24
149.126.231.0/24
149.126.242.0/24
149.126.244.0/23
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5f:b3:88:c2:06:38:11:c0:6c:b4:8c:13:2c:6e:a3:5e:ac:
da:81:ff:a4:e5:00:51:a6:e8:1e:72:38:a0:8d:8d:75:32:b4:
fe:12:48:43:c3:dd:ce:8f:6e:8e:1b:d0:86:ff:0e:52:18:b6:
dc:ce:ba:c1:81:d7:26:48:d6:0d:94:35:80:82:57:57:83:74:
19:e8:85:7f:27:60:e6:8f:4a:cf:d3:2a:5d:1f:6a:fd:a0:93:
58:99:07:d3:f9:1a:ef:19:51:8a:71:e5:a3:1b:af:e2:ef:e1:
6a:9f:f7:22:c9:8d:25:3a:47:47:26:2a:37:20:4f:ef:00:e2:
73:43:20:e6:27:88:3b:72:48:a4:e5:0b:7c:5d:58:dd:14:9d:
6f:51:5b:30:76:8c:c8:6d:56:e9:b2:48:96:41:60:3a:dd:e9:
f5:a9:06:60:8e:eb:f9:3c:17:3c:26:95:c8:03:40:77:be:ce:
d7:6a:78:41:f9:3c:0f:32:e9:e2:60:8e:8e:87:8e:57:94:e9:
fd:d2:32:8a:04:64:a1:9a:8d:ea:c0:06:cb:7e:5f:91:3b:5f:
58:d2:1e:47:cb:ee:a9:d0:c5:5c:82:23:f0:0a:7c:f3:d1:f2:
23:9a:5f:ef:a3:5b:e7:c3:2b:46:8a:67:4d:3f:46:63:50:f8:
90:7f:db:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 13:58:32 2025 by rpki-client