Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VhJaTlBg58d1OdbI0tU-aCrgdc0.roa
File: VhJaTlBg58d1OdbI0tU-aCrgdc0.roa (raw, json)
Hash identifier: 3qSO43KMfu7FETjSmxG13DeHq+uhxKDqsy2CuYYPAyg=
Subject key identifier: 56:12:5A:4E:50:60:E7:C7:75:39:D6:C8:D2:D5:3E:68:2A:E0:75:CD
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018DCBACFE4AB9B555F3EA680F8EB5399BC5
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VhJaTlBg58d1OdbI0tU-aCrgdc0.roa
Signing time: Wed 21 Feb 2024 12:38:48 +0000
ROA not before: Wed 21 Feb 2024 12:38:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.11.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 13:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:ac:fe:4a:b9:b5:55:f3:ea:68:0f:8e:b5:39:9b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Feb 21 12:38:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56125a4e5060e7c77539d6c8d2d53e682ae075cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:71:b7:45:0d:ef:d5:22:57:da:66:48:3e:87:
87:62:ae:0f:0f:00:73:13:9d:07:ba:70:e0:d6:07:
20:79:25:75:b3:c1:54:6a:71:25:97:eb:12:04:8b:
29:37:c5:40:55:6e:2d:ec:fe:1e:b9:d7:bd:3a:af:
51:68:5a:cf:45:d2:63:4f:fd:83:51:32:29:32:10:
de:80:bd:38:2c:a8:9b:01:3a:46:5e:08:2d:5c:5d:
55:2b:78:46:32:9d:02:0a:cc:ac:00:31:4f:40:3e:
38:c8:37:8a:be:9e:f4:d7:8e:7e:29:78:85:12:fd:
f2:36:5f:2c:5c:c4:45:e2:8c:94:91:87:a5:da:68:
98:c2:72:5a:6a:78:1b:de:ef:46:b1:12:49:28:ec:
29:33:24:2e:59:3d:8c:aa:05:cf:41:37:a8:b2:be:
2e:3c:ee:b9:f8:bd:e0:e1:af:48:4c:8b:f2:74:ff:
bb:2d:20:96:76:73:43:c0:e4:7e:d0:fd:0e:ea:fa:
b7:8f:cd:c4:38:a9:29:b6:1b:43:8b:5e:c0:5b:d2:
99:f9:f6:e5:1a:8a:72:63:50:d1:0f:ca:24:3f:01:
a3:ac:c8:57:17:45:2c:e3:8a:2e:56:ac:5e:70:57:
01:00:b9:d0:a1:19:ad:e8:c5:74:5d:6f:2a:55:15:
bb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:12:5A:4E:50:60:E7:C7:75:39:D6:C8:D2:D5:3E:68:2A:E0:75:CD
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VhJaTlBg58d1OdbI0tU-aCrgdc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.174.0/24
Signature Algorithm: sha256WithRSAEncryption
79:52:8f:15:60:d7:5a:da:31:8d:81:70:57:a1:d2:a4:b1:b3:
b5:37:d2:26:6b:bb:46:58:90:6b:a4:54:40:21:48:b5:35:75:
af:9f:39:f2:27:3e:21:d2:42:6b:fd:16:35:1f:5a:ee:a3:f7:
22:7c:b7:df:e6:75:e1:6d:8b:67:fa:41:f8:e9:97:b1:60:a0:
78:27:66:ab:ea:b3:03:87:d3:36:76:2d:e7:fd:94:a2:4c:98:
7e:83:48:71:d8:94:3c:94:ed:2f:9f:c2:d7:ab:d3:d4:24:6e:
ec:ad:0c:8d:bf:08:76:48:32:d5:c9:91:b1:66:fd:5c:4a:64:
0f:cc:94:38:a7:2a:5a:75:59:02:a7:d2:89:89:bb:19:29:9d:
10:ec:50:16:4b:b7:06:07:3d:9e:47:24:5a:68:9b:c7:4f:58:
7a:72:37:0f:4d:59:5f:67:be:cd:4d:e0:5e:6a:c8:ea:49:b5:
b8:34:bf:0e:6e:76:67:34:8f:d9:fe:15:17:ad:94:77:98:ec:
65:be:22:6c:cb:c8:29:1d:1c:72:ac:ab:33:36:4a:c7:20:3d:
e8:24:3e:35:23:e0:39:a8:e2:36:37:42:5e:7d:09:e1:de:61:
08:52:db:a3:06:4b:bd:46:1f:59:3f:0b:c0:c9:d6:b5:e8:b5:
c4:0a:0e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org