Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/VYDh_Whek8-srmXwse4oDRdUJug.roa
File: VYDh_Whek8-srmXwse4oDRdUJug.roa (raw, json)
Hash identifier: uGPaeiWtrV5Jiv1w91XeAIYzHDIvxmu5oerNwcabkGI=
Subject key identifier: 55:80:E1:FD:68:5E:93:CF:AC:AE:65:F0:B1:EE:28:0D:17:54:26:E8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01907E00C8DF0FC2DCA2B5CF8F2A59584243
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/VYDh_Whek8-srmXwse4oDRdUJug.roa
Signing time: Thu 04 Jul 2024 13:48:18 +0000
ROA not before: Thu 04 Jul 2024 13:48:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.66.228.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 08:43:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:00:c8:df:0f:c2:dc:a2:b5:cf:8f:2a:59:58:42:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 4 13:48:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5580e1fd685e93cfacae65f0b1ee280d175426e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b1:35:c4:8b:f3:65:29:e0:15:66:1b:14:33:
de:7e:d1:35:f2:1d:a5:f4:48:49:d6:f0:8c:c2:2f:
1f:ef:28:cf:f0:01:cc:4e:05:6a:80:d7:00:40:e9:
fb:d5:1f:ae:01:76:58:f0:3b:ff:09:e1:0c:a1:f7:
f6:ba:cb:6b:f2:52:dd:62:01:f2:36:0d:ae:ba:c2:
e6:6b:9d:76:78:9e:b6:f5:83:44:1e:b2:80:07:c9:
f7:39:4e:36:3a:b9:77:71:68:2c:9f:11:f8:35:3d:
ea:47:5a:1d:45:3f:5a:8c:06:96:dc:41:41:0c:fe:
7e:36:7f:fe:cd:3b:0d:64:56:a7:a4:ad:2a:c4:9c:
41:2d:4a:0b:1d:d4:ec:99:f6:b1:88:81:4e:1f:ef:
b4:f1:db:a3:df:9f:b4:9f:9a:80:a7:47:eb:da:eb:
03:67:e4:9b:ea:e7:13:d1:2b:4e:0c:d8:ce:d2:9d:
53:53:28:94:0c:7d:fc:b9:82:ab:71:cd:b4:3d:dc:
1f:d1:9d:87:e1:3c:86:08:01:b9:1c:a8:17:ef:31:
e4:c1:13:08:c0:fb:5e:e2:e2:ca:e8:bb:b5:c7:a8:
25:b3:9b:5b:c6:69:76:1a:c2:4f:84:63:dc:fa:7d:
e6:c6:cd:08:b2:79:c2:b6:0a:65:fe:82:e7:cf:28:
a8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:80:E1:FD:68:5E:93:CF:AC:AE:65:F0:B1:EE:28:0D:17:54:26:E8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/VYDh_Whek8-srmXwse4oDRdUJug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
178.215.238.0/24
193.149.28.0/22
194.180.36.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e4:ce:d3:4b:70:a3:e5:7e:b9:b7:a1:d7:cc:45:3f:73:5a:
4c:af:85:30:25:17:7a:e2:7a:31:de:a5:b4:f5:c9:eb:5b:ed:
c1:36:93:31:68:27:71:62:30:52:fc:89:be:0a:fe:95:11:12:
30:ac:ff:3b:da:9e:bd:18:d5:72:6e:57:42:25:ab:10:3b:2f:
35:84:e9:42:b1:8a:26:fd:8b:c5:3f:29:4f:e9:9f:cb:11:53:
7c:a3:05:7a:be:9e:3e:f5:33:5a:1a:f8:d4:4a:a7:27:3f:d0:
3b:2e:a5:14:52:71:c5:cc:50:43:43:b0:f8:eb:d2:23:a1:b4:
7e:3d:f0:0f:4c:e6:2a:53:29:95:d0:8b:2e:cf:43:e5:9b:ff:
32:f3:78:8a:b9:55:d8:b3:e2:65:0d:da:04:48:5b:7b:17:b1:
93:19:99:d1:d2:cb:52:ae:e4:a5:d0:17:fe:54:24:6b:0c:df:
2b:d4:d5:c3:46:74:4e:12:66:71:9d:d9:2f:1d:b6:00:16:4e:
3c:a8:0e:7d:79:ce:2e:e8:e4:bd:cb:1d:ea:02:37:99:22:8f:
6a:d0:46:2e:a5:18:72:86:4c:ad:9d:d3:4b:95:7e:f4:19:8a:
11:4d:ec:81:f4:de:37:fc:cc:3e:af:ec:6a:ac:73:ce:64:86:
05:82:f4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 12:10:14 2024 by rpki-client on console-ams.rpki-client.org