Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VG4SDSoTF9ilcYhM52bfVAQMfwA.roa
File: VG4SDSoTF9ilcYhM52bfVAQMfwA.roa (raw, json)
Hash identifier: Adjb1U6mtyB3AcWSm69hvj3wWH73iUfYQ5eVsdl/BKk=
Subject key identifier: 54:6E:12:0D:2A:13:17:D8:A5:71:88:4C:E7:66:DF:54:04:0C:7F:00
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018ED5BA1A31409412340F9E00947F989B50
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VG4SDSoTF9ilcYhM52bfVAQMfwA.roa
Signing time: Sat 13 Apr 2024 04:32:07 +0000
ROA not before: Sat 13 Apr 2024 04:32:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.146.184.0/22 maxlen: 24
45.156.157.0/24 maxlen: 24
45.156.158.0/24 maxlen: 24
89.33.84.0/24 maxlen: 24
89.35.154.0/24 maxlen: 24
89.37.62.0/24 maxlen: 24
89.37.63.0/24 maxlen: 24
91.188.204.0/24 maxlen: 24
91.188.205.0/24 maxlen: 24
91.188.206.0/24 maxlen: 24
91.188.207.0/24 maxlen: 24
93.115.254.0/23 maxlen: 24
185.135.140.0/24 maxlen: 24
185.135.141.0/24 maxlen: 24
185.135.143.0/24 maxlen: 24
185.238.10.0/24 maxlen: 24
185.241.210.0/23 maxlen: 24
185.255.39.0/24 maxlen: 24
188.212.133.0/24 maxlen: 24
188.212.158.0/24 maxlen: 24
188.212.159.0/24 maxlen: 24
188.214.208.0/24 maxlen: 24
188.214.209.0/24 maxlen: 24
188.240.224.0/24 maxlen: 24
188.240.225.0/24 maxlen: 24
188.240.227.0/24 maxlen: 24
188.240.232.0/24 maxlen: 24
188.241.243.0/24 maxlen: 24
193.23.128.0/24 maxlen: 24
193.23.129.0/24 maxlen: 24
213.232.92.0/24 maxlen: 24
213.232.93.0/24 maxlen: 24
213.232.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 May 2024 13:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d5:ba:1a:31:40:94:12:34:0f:9e:00:94:7f:98:9b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 13 04:32:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=546e120d2a1317d8a571884ce766df54040c7f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:31:7d:67:45:c3:ad:9e:3d:54:78:29:4d:78:
31:f6:a7:fe:48:b5:0f:d4:f9:42:9c:83:f8:40:62:
f8:a9:b1:2c:ac:00:16:20:fc:4b:7c:77:2f:a0:8c:
7c:9f:c2:07:5c:63:95:9f:2a:f6:cb:66:df:9b:9a:
98:85:8e:6e:b5:63:ea:2f:39:4f:08:68:a4:87:42:
13:a2:d3:b3:79:96:1a:81:dd:fc:2f:a3:39:dc:20:
66:80:9e:d8:2c:b7:ed:cb:7a:69:72:c6:8a:76:03:
14:71:74:7d:76:98:a9:88:48:bd:db:35:0e:76:30:
53:ee:78:1e:5e:27:35:ca:cb:07:47:7a:54:c2:42:
44:77:9d:b3:7f:58:07:f2:8c:56:e3:50:a1:17:dc:
1b:0c:76:f4:75:44:11:a3:d9:0a:dd:ff:01:ee:66:
74:74:da:33:77:08:cd:b8:b5:d4:8f:b0:f9:9c:f5:
e9:f5:95:2e:76:64:1b:ad:b0:1b:c2:2a:c8:30:ba:
d4:07:46:49:29:bb:fd:5d:e0:60:7c:86:d4:2c:79:
28:82:7f:7f:70:8c:7e:cb:d9:dd:a4:6e:f6:aa:c4:
0d:8a:58:50:bf:c2:73:2d:da:57:8b:25:d7:17:ee:
ce:46:38:b9:a6:fb:ae:c5:dd:6b:05:67:5b:59:a7:
63:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6E:12:0D:2A:13:17:D8:A5:71:88:4C:E7:66:DF:54:04:0C:7F:00
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/VG4SDSoTF9ilcYhM52bfVAQMfwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.184.0/22
45.156.157.0-45.156.158.255
89.33.84.0/24
89.35.154.0/24
89.37.62.0/23
91.188.204.0/22
93.115.254.0/23
185.135.140.0/23
185.135.143.0/24
185.238.10.0/24
185.241.210.0/23
185.255.39.0/24
188.212.133.0/24
188.212.158.0/23
188.214.208.0/23
188.240.224.0/23
188.240.227.0/24
188.240.232.0/24
188.241.243.0/24
193.23.128.0/23
213.232.92.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:d4:4e:0b:5e:bb:ae:ea:89:86:e2:a0:58:82:42:4c:61:46:
15:a9:4c:e9:b8:aa:a6:94:51:2a:8e:da:ae:87:d5:d6:49:23:
00:6f:bd:f2:00:39:b9:6f:42:83:70:46:87:a1:f1:19:04:71:
cd:7b:99:71:5d:40:06:62:a7:08:1c:1b:ad:ce:37:ea:20:db:
2f:a1:2a:7a:71:9d:34:b7:9f:b0:c8:71:0c:f2:34:b9:14:44:
b4:af:16:91:27:e6:c0:2c:0c:b3:fc:31:91:90:61:d2:02:21:
e7:2f:dd:cf:a2:7e:f1:93:bf:12:3a:5b:af:5f:3d:30:dc:8b:
95:9e:d4:03:78:13:ee:13:a7:31:43:c1:1f:81:be:21:ad:18:
19:2c:87:2a:c7:c3:6c:e8:c6:7d:e5:47:0e:4f:0c:01:95:88:
2c:91:22:bd:63:8b:2e:d5:17:46:1f:bf:51:aa:04:f2:41:16:
2e:ba:6e:0e:39:72:20:a3:07:ef:e2:5c:52:d5:a5:2e:9c:1b:
b0:6c:7a:3d:b0:3b:b4:94:0e:93:91:11:04:d5:e7:fb:16:fb:
12:e5:4c:6e:78:70:9a:0f:71:92:8c:8e:77:f3:90:f8:9e:26:
91:a9:a4:9c:47:3d:2e:de:dd:dc:59:57:7b:b7:35:e7:16:b5:
45:93:97:1e
-----BEGIN CERTIFICATE-----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Generated at Sat May 4 15:08:08 2024 by rpki-client on console-ams.rpki-client.org