Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/VgV9t9Od-0As3368Dn-bb4MQvAM.roa
File: VgV9t9Od-0As3368Dn-bb4MQvAM.roa (raw, json)
Hash identifier: f8P5trOzdDpAKugVDoomSGnxfw53LMfoKfJOfwn4X50=
Subject key identifier: 56:05:7D:B7:D3:9D:FB:40:2C:DF:7E:BC:0E:7F:9B:6F:83:10:BC:03
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 01856CAF0403C9A303463263AC18780F6D55
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/VgV9t9Od-0As3368Dn-bb4MQvAM.roa
Signing time: Sun 01 Jan 2023 09:34:47 +0000
ROA not before: Sun 01 Jan 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 45.84.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:04:03:c9:a3:03:46:32:63:ac:18:78:0f:6d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jan 1 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56057db7d39dfb402cdf7ebc0e7f9b6f8310bc03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f9:f6:80:6e:7a:b9:86:f8:48:58:c3:ed:45:
fc:1c:41:b9:4f:e6:0a:e0:3a:df:46:a5:5a:be:86:
c3:51:87:c9:a8:66:9c:e5:91:a7:17:2b:e2:5a:9b:
73:bf:98:a7:82:b1:4d:71:34:63:88:b2:fb:95:fc:
af:d1:f8:ad:3c:f6:47:0a:5a:43:f2:d7:83:06:73:
0f:ae:8e:34:4c:c9:79:48:d7:10:97:f5:14:67:d9:
44:46:b0:f3:74:2b:56:71:e0:10:f7:67:55:89:d1:
4d:d0:7d:8f:c6:63:dc:b5:7b:21:60:05:a4:a4:37:
e9:2d:de:bf:d7:2f:a6:26:fa:14:25:c3:a9:a5:5f:
82:dd:fb:b4:44:2f:61:54:8b:30:70:90:4c:c7:8e:
c5:75:c2:97:1a:d0:b7:20:16:0c:bf:18:ae:af:df:
07:7f:e9:96:99:e1:b1:84:24:fb:3f:39:b4:4d:43:
72:a2:e3:2a:76:11:4c:01:ca:ed:67:79:7b:e1:34:
83:1b:5d:ed:98:74:ee:62:38:68:22:dd:e3:40:c7:
eb:b0:4d:26:53:cf:e1:91:64:a3:3b:b5:28:0b:bb:
16:56:a0:34:03:af:39:c5:39:f6:b6:62:38:5f:80:
94:90:55:17:98:da:74:1a:60:d5:19:3e:58:04:4e:
39:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:05:7D:B7:D3:9D:FB:40:2C:DF:7E:BC:0E:7F:9B:6F:83:10:BC:03
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/VgV9t9Od-0As3368Dn-bb4MQvAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.241.0/24
Signature Algorithm: sha256WithRSAEncryption
18:41:3d:c3:b4:dd:a7:24:e7:ce:ce:9d:9d:fe:21:b8:16:d2:
2f:ce:3b:a2:52:ce:e8:d0:17:bb:3d:0b:39:88:f8:00:a5:ba:
fb:c2:43:3e:56:d0:79:ea:3d:61:b6:ed:3b:b8:50:f7:be:2b:
e8:c8:52:79:76:c5:65:69:c7:33:c8:28:12:be:56:14:bc:2c:
81:99:aa:49:30:72:75:5c:f7:cc:a9:54:d1:bf:6b:81:31:1f:
7b:3a:8b:8f:8e:43:c1:d6:40:58:fa:14:a3:83:09:d3:14:45:
e4:33:0d:26:ff:3e:22:89:35:57:d7:6c:8a:67:96:a3:89:d7:
ba:cb:af:5d:dd:54:2d:85:b1:77:ee:d0:09:22:29:70:ef:e6:
cc:ba:23:1c:56:3c:7a:2e:43:35:47:af:49:ba:d2:ae:1f:73:
ec:00:2c:9d:f4:9c:ce:04:96:32:32:29:ce:eb:ab:52:f1:77:
d5:01:fc:01:a4:88:2c:40:09:0d:b5:4d:83:f4:35:80:df:1f:
83:d4:08:d9:26:4c:d9:49:79:96:fb:78:4a:31:17:4a:ff:65:
d9:c6:93:b4:af:56:b0:1f:40:7b:18:47:49:10:97:96:63:3b:
22:5a:d1:83:bc:31:36:7f:1c:40:61:f1:dc:be:e3:88:2d:f4:
52:d2:71:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:21 2024 by rpki-client on console-fra.rpki-client.org