Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wVthl2BV_hBSeNGhOaSZIelzW2A.roa
File: wVthl2BV_hBSeNGhOaSZIelzW2A.roa (raw, json)
Hash identifier: 3YhpkmsUrb6AksmKox7HYOf5ezNcVR9MUHJT4VXe7R4=
Subject key identifier: C1:5B:61:97:60:55:FE:10:52:78:D1:A1:39:A4:99:21:E9:73:5B:60
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01857067628EEF11D7576AF7E8D12DBA325D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wVthl2BV_hBSeNGhOaSZIelzW2A.roa
Signing time: Mon 02 Jan 2023 02:55:01 +0000
ROA not before: Mon 02 Jan 2023 02:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.140.8.0/23 maxlen: 23
109.206.250.0/23 maxlen: 23
45.151.112.0/22 maxlen: 23
45.157.202.0/23 maxlen: 23
45.154.238.0/23 maxlen: 23
45.157.32.0/23 maxlen: 23
45.128.158.0/23 maxlen: 23
45.141.62.0/23 maxlen: 23
2a0c:9e02::/32 maxlen: 40
Validation: Failed, certificate revoked on Fri 17 Feb 2023 14:23:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:62:8e:ef:11:d7:57:6a:f7:e8:d1:2d:ba:32:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c15b61976055fe105278d1a139a49921e9735b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cb:7a:3c:dc:89:10:e2:34:8f:55:b2:5e:23:
2c:fe:48:dc:c3:52:fa:1f:d7:04:5c:da:c3:48:46:
b9:c9:a0:de:3b:89:66:68:65:b0:06:60:b2:87:3a:
38:bc:f9:24:3f:46:ab:c5:61:a7:e1:e8:8f:65:14:
d4:f7:22:6b:30:8f:02:79:ba:c1:41:ff:c3:94:24:
7f:d6:20:7a:a3:2e:0f:71:0e:dd:eb:00:c2:24:a8:
03:c2:cf:96:19:7b:19:c6:e8:6e:82:d8:ed:7b:ae:
fb:2a:21:29:aa:a0:3b:a0:eb:ca:37:80:3d:45:12:
bc:5f:70:d1:1a:e5:ed:31:d0:c3:a5:c4:f1:84:45:
3b:13:b0:2f:f0:08:e3:40:97:41:e3:03:e8:e3:d6:
27:23:eb:13:46:53:de:b2:6d:98:37:6b:3b:24:e6:
7e:4a:5d:2d:33:52:4b:5d:4a:50:43:63:51:6e:e0:
cf:46:24:56:68:73:40:0a:d7:7d:93:aa:e8:12:4f:
0e:f4:e2:b5:af:bb:e1:e3:33:24:34:b5:34:43:75:
84:e7:e4:a3:5c:02:50:26:a7:c6:a3:97:bd:c4:2c:
d0:d8:7e:ac:e4:57:d8:59:89:7c:eb:11:e0:72:1a:
86:f9:9c:dc:51:2c:78:65:c6:0f:74:f9:56:bb:b0:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5B:61:97:60:55:FE:10:52:78:D1:A1:39:A4:99:21:E9:73:5B:60
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wVthl2BV_hBSeNGhOaSZIelzW2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.158.0/23
45.140.8.0/23
45.141.62.0/23
45.151.112.0/22
45.154.238.0/23
45.157.32.0/23
45.157.202.0/23
109.206.250.0/23
IPv6:
2a0c:9e02::/32
Signature Algorithm: sha256WithRSAEncryption
16:42:08:1a:d7:a1:b7:c0:3e:23:8e:8f:aa:88:4b:4b:9a:3a:
cd:bd:69:fa:b4:b1:dc:a6:e6:c2:82:58:e8:67:09:5d:0d:fe:
f5:f2:22:d4:de:c3:84:70:8b:0f:13:7e:a9:22:f0:7e:4c:73:
38:d2:ef:e7:16:a4:08:86:17:03:5e:3a:77:5b:42:49:c9:ac:
55:45:95:0c:ab:47:e1:45:92:b9:15:07:5d:5c:f5:fd:1d:53:
41:3d:97:96:11:5d:df:03:f2:49:e6:5d:e0:9b:e4:3d:51:8b:
a9:2d:d5:5c:9f:bf:34:01:bd:c0:d5:d0:5a:93:74:ff:dc:e3:
ca:a6:b0:f1:d3:8f:da:c5:b6:e7:f9:68:e8:d6:aa:ba:45:77:
0a:22:7b:9b:69:c9:81:ff:81:45:02:47:a5:8b:77:83:52:10:
ea:4c:0b:cd:26:4f:c9:66:5e:1e:29:4f:ca:84:cb:a9:a2:9c:
42:ff:a8:22:91:4c:29:88:2d:04:4c:69:a9:7b:34:f5:bd:c6:
5a:07:8e:19:11:dd:8f:9c:25:79:b7:fb:cd:39:54:89:c9:91:
b5:31:6f:4d:69:09:71:ee:bb:63:36:08:5e:6c:80:76:49:3f:
61:d5:60:ce:91:05:e4:5f:37:c1:9f:47:3d:97:ca:b5:f9:33:
7c:d1:cc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:26 2024 by rpki-client on console-fra.rpki-client.org