Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vep4L8SYEzP8uUoQAf12nXcbVNs.roa
File: Vep4L8SYEzP8uUoQAf12nXcbVNs.roa (raw, json)
Hash identifier: NTT00IoiYmPMe8/6f3ScvqiTgCcCo9rRT0Vhd0h9s60=
Subject key identifier: 55:EA:78:2F:C4:98:13:33:FC:B9:4A:10:01:FD:76:9D:77:1B:54:DB
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01861E622B54906BF0C239D75F1FA5370B9E
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vep4L8SYEzP8uUoQAf12nXcbVNs.roa
Signing time: Sat 04 Feb 2023 21:43:15 +0000
ROA not before: Sat 04 Feb 2023 21:43:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197518
IP address blocks: 185.255.200.0/22 maxlen: 22
185.199.212.0/22 maxlen: 24
194.146.92.0/23 maxlen: 23
45.157.208.0/22 maxlen: 22
188.95.248.0/21 maxlen: 21
185.250.24.0/22 maxlen: 24
176.125.250.0/23 maxlen: 23
130.193.104.0/21 maxlen: 21
2a03:680::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Feb 2023 19:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:1e:62:2b:54:90:6b:f0:c2:39:d7:5f:1f:a5:37:0b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Feb 4 21:43:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55ea782fc4981333fcb94a1001fd769d771b54db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3b:46:c9:a8:c7:f2:c5:d4:57:b3:fd:29:43:
04:35:6f:27:a8:9d:39:ce:6c:d7:7d:92:a0:16:3f:
8f:00:fb:60:e9:7d:53:dd:29:63:d3:f0:26:75:b7:
c3:2e:01:f4:82:8a:81:b2:c6:ce:d2:3e:ee:98:d2:
af:78:a8:8b:54:b7:67:10:f2:db:39:8d:de:9c:60:
55:57:4d:5a:58:87:96:35:3c:c4:b9:c8:ac:4e:ac:
13:97:c9:fc:56:cf:72:d6:cf:5e:63:c5:e9:b0:6d:
86:30:d2:fd:2b:1b:d5:3f:6e:59:e4:1d:55:eb:12:
3f:97:f3:4d:bf:d3:86:fd:dd:41:23:9f:23:52:33:
61:19:cf:81:3f:f4:b4:c8:d8:80:2e:99:10:2b:48:
67:1a:02:19:54:e1:8c:16:fe:a2:5d:6f:3f:af:18:
a4:ef:4f:08:f6:15:46:78:e8:a3:a9:85:b6:9d:21:
fd:de:a6:dd:e7:fe:52:77:0d:0e:79:b1:63:0f:7c:
40:3a:2f:a7:64:63:c7:82:29:7b:e2:02:1f:c5:c2:
b4:c6:3e:18:a2:34:77:2a:aa:fc:c9:2c:fb:55:ec:
c7:b3:03:c0:75:0f:ff:f0:60:4e:1b:1c:4c:9e:95:
ca:62:56:e1:3c:09:2a:93:2a:d1:d1:1d:86:47:bb:
69:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EA:78:2F:C4:98:13:33:FC:B9:4A:10:01:FD:76:9D:77:1B:54:DB
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Vep4L8SYEzP8uUoQAf12nXcbVNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.208.0/22
130.193.104.0/21
176.125.250.0/23
185.199.212.0/22
185.250.24.0/22
185.255.200.0/22
188.95.248.0/21
194.146.92.0/23
IPv6:
2a03:680::/32
Signature Algorithm: sha256WithRSAEncryption
ce:31:0a:eb:04:0d:88:23:1d:71:00:73:e3:d3:28:4d:e1:39:
8d:1d:e6:b8:5f:15:f6:3a:b5:bd:ad:bf:a6:75:88:ab:a3:a5:
3c:e4:b3:5f:b0:2e:74:91:7b:5c:07:a8:c4:f6:41:f8:5f:65:
eb:e1:b5:0e:d0:ce:8f:45:0f:d1:38:82:41:e1:00:1b:60:18:
88:fb:8f:77:b2:c2:4d:64:23:d2:21:e3:38:f3:06:c0:b7:0a:
9a:6b:b5:1d:7b:bb:ef:71:6b:a9:4b:85:ee:eb:51:17:6d:ca:
3f:11:9b:71:e2:7f:07:ad:1b:7b:ef:86:31:45:5f:46:79:b2:
63:05:10:f0:a2:d6:32:16:1c:9a:9b:7d:f8:6e:e6:59:11:40:
27:da:4c:23:dd:84:78:e9:e3:2b:11:64:55:06:bb:25:e3:0b:
c5:7c:8e:02:fe:e7:b2:c6:0e:cd:26:28:14:73:54:14:54:8a:
9b:2b:44:e4:15:f5:95:df:50:49:33:49:61:0a:9c:45:fd:3a:
a2:72:bf:98:30:36:07:74:e1:87:13:68:af:a6:c2:3b:91:aa:
3f:58:21:f1:42:0f:ec:54:1e:ef:6c:7d:5f:10:40:04:80:f3:
0a:5f:a8:d5:64:7c:d4:b4:d0:dd:7e:d8:09:ac:21:97:de:1e:
0e:97:f1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org