Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VlUZK1gsWpUmiCW54CZjYuwuFq8.roa
File: VlUZK1gsWpUmiCW54CZjYuwuFq8.roa (raw, json)
Hash identifier: vWgP+SSvdXd8fNAmZOKItXt4nv1JA/fz1YzNpov75Fc=
Subject key identifier: 56:55:19:2B:58:2C:5A:95:26:88:25:B9:E0:26:63:62:EC:2E:16:AF
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018DC0B854DB51FFF163BF906173291F2345
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VlUZK1gsWpUmiCW54CZjYuwuFq8.roa
Signing time: Mon 19 Feb 2024 09:35:22 +0000
ROA not before: Mon 19 Feb 2024 09:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47757
IP address blocks: 45.132.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Feb 2024 17:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c0:b8:54:db:51:ff:f1:63:bf:90:61:73:29:1f:23:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Feb 19 09:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5655192b582c5a95268825b9e0266362ec2e16af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:08:ba:a0:58:a7:9b:bd:d5:f2:ff:d6:f7:86:
15:b2:41:aa:80:63:68:e2:b9:10:36:2c:71:c5:51:
b8:62:b6:14:1d:f9:77:ab:25:a7:40:39:57:26:3d:
e5:3f:d9:47:62:8f:93:06:34:4d:34:75:47:76:4b:
d3:50:bf:b2:26:7d:62:bd:e2:94:d2:d5:72:53:e1:
66:cd:ba:b9:37:28:37:ad:77:a9:e6:62:ac:b4:02:
a2:dd:58:e6:9b:bf:e6:f4:50:51:60:f4:2c:9b:cf:
a8:26:ca:db:a8:86:d9:3b:66:01:72:89:65:1c:30:
7a:d5:a5:98:0d:32:fd:97:26:5d:ed:29:00:ec:88:
cc:52:e8:ca:ba:07:0d:ef:d1:5a:a7:8f:60:7b:cc:
e2:35:d7:2d:b0:ef:6a:0b:18:db:60:e1:b9:e5:ae:
83:3e:4a:f9:f5:ce:16:cc:e7:7a:10:11:cc:83:50:
67:9c:a8:16:21:30:00:75:65:6b:c2:8c:cd:11:92:
03:ae:7e:f5:89:80:47:31:a2:68:c8:8f:12:b8:ff:
42:30:35:50:b2:71:38:88:12:db:e6:11:df:99:e8:
a8:47:94:25:b3:72:af:95:32:85:9c:42:78:ab:5e:
2e:b1:80:25:d8:c6:59:a1:04:2b:ef:ab:c6:d1:3a:
50:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:55:19:2B:58:2C:5A:95:26:88:25:B9:E0:26:63:62:EC:2E:16:AF
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VlUZK1gsWpUmiCW54CZjYuwuFq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.180.0/24
Signature Algorithm: sha256WithRSAEncryption
97:53:39:12:78:79:6f:36:f1:2c:2f:b6:06:dd:40:a0:34:4f:
c0:07:b9:33:3c:90:69:2b:06:76:51:00:26:35:45:24:ba:6a:
f7:ce:9e:63:40:62:7e:41:e1:d0:27:ac:c4:96:61:5a:2c:73:
01:f0:86:32:1e:ac:f5:6f:1f:10:38:39:a8:00:08:eb:8f:d8:
4f:2b:94:9b:1b:91:f6:28:3f:d6:0a:b7:1a:a3:5a:19:14:b8:
c7:ef:cc:f9:c4:84:3c:68:47:5b:ac:be:d9:10:7b:a3:37:76:
64:fc:8f:89:89:8b:9f:18:be:1d:db:99:c1:63:42:bf:37:81:
35:f6:0c:32:ec:5d:8f:5b:7f:1b:46:28:f7:8a:de:48:9d:d2:
3f:9d:a1:33:0e:02:03:62:5d:d7:d7:90:0f:ef:f5:9c:08:ee:
10:45:65:9c:c4:03:c2:74:76:48:62:5a:07:b9:d9:23:9f:df:
3f:18:d3:49:24:f5:77:59:f3:b0:28:99:36:f5:95:85:24:6c:
5c:5c:01:ba:51:fc:7e:d1:74:2f:b9:0d:7c:55:b6:0e:01:cb:
8f:fa:c0:ae:bb:5d:c1:ee:f1:10:b6:be:c8:04:d0:59:ce:da:
9c:e9:41:37:0c:47:28:fd:ae:58:42:58:8e:8d:74:21:32:3c:
7b:0b:3b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 19:51:49 2024 by rpki-client on console-fra.rpki-client.org