Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VesUUV0EBqpJGOysEQu5h1tS4KI.roa
File: VesUUV0EBqpJGOysEQu5h1tS4KI.roa (raw, json)
Hash identifier: 1vhFqZVONNd7jLh1CPY5thGBU7KlPR0n/bK1YZssEUM=
Subject key identifier: 55:EB:14:51:5D:04:06:AA:49:18:EC:AC:11:0B:B9:87:5B:52:E0:A2
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018C68299A495DF995A92B17C06FC3457045
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VesUUV0EBqpJGOysEQu5h1tS4KI.roa
Signing time: Thu 14 Dec 2023 11:50:06 +0000
ROA not before: Thu 14 Dec 2023 11:50:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/23 maxlen: 24
45.157.211.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.199.149.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
79.98.247.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 09:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:29:9a:49:5d:f9:95:a9:2b:17:c0:6f:c3:45:70:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Dec 14 11:50:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55eb14515d0406aa4918ecac110bb9875b52e0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fa:f0:e3:62:47:6e:33:bf:a3:9b:c8:55:2f:
3a:0d:1f:27:4f:ef:16:bd:c6:0b:0c:aa:1f:93:ab:
c3:96:eb:18:15:a3:ca:d9:7b:0d:93:f0:23:97:4b:
b6:46:2a:2e:2a:7b:c1:c2:a2:64:a4:4f:69:a8:ff:
8a:10:01:58:cf:0e:26:17:e4:4d:02:d8:17:c2:d8:
e0:6b:7c:26:12:cc:bc:c5:ab:f9:e0:38:20:11:50:
c0:16:2d:9e:74:a9:1a:1e:ef:78:fe:b2:de:81:a6:
65:81:0d:00:29:7f:b8:96:b5:6d:8d:71:6a:50:4a:
00:4f:8c:53:a3:7e:51:d6:ee:db:95:44:69:ff:f0:
e3:d9:88:60:80:17:8e:05:9d:af:10:e7:96:d7:45:
fd:9a:5b:9c:54:a2:df:ef:27:5d:63:a0:00:a7:fe:
82:51:ca:27:b2:90:05:a1:25:43:40:d7:64:bd:30:
f1:c4:16:23:27:a9:8d:d4:c9:e1:03:3f:55:04:36:
fb:7b:8b:0d:e4:7c:46:6b:71:b5:9b:17:c8:8d:e0:
41:a7:30:7e:76:0e:1f:ce:5a:de:5e:48:27:a4:63:
d5:36:51:7c:91:4f:6b:61:52:4e:d0:5e:a9:61:c0:
51:81:ef:82:e9:36:c4:34:d7:c7:a3:fe:93:b4:11:
d5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EB:14:51:5D:04:06:AA:49:18:EC:AC:11:0B:B9:87:5B:52:E0:A2
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/VesUUV0EBqpJGOysEQu5h1tS4KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.211.0/24
79.98.246.0/23
176.125.251.0/24
185.199.148.0/23
185.199.151.0/24
185.199.212.0/23
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
95:7f:af:2b:df:e6:aa:5d:01:93:a6:40:bf:b7:a5:08:a2:57:
6b:10:4f:7b:1c:4c:3c:2e:3d:e6:e4:66:77:3f:58:f2:a0:99:
74:ca:9c:94:bc:d2:1e:87:4b:1b:58:00:1b:9d:aa:c8:7f:81:
a2:ae:fb:e3:b4:f2:f4:53:c4:af:46:b6:cf:e3:41:43:92:7d:
7a:b1:82:05:60:3d:6e:e5:86:42:b4:62:81:4e:f1:74:db:6f:
26:ab:15:fa:4e:bf:34:05:d9:ac:8f:ac:95:12:be:26:9e:36:
b1:d0:97:b3:38:4b:35:dc:2d:e5:f8:4e:4f:ab:ba:ec:6f:aa:
38:97:3d:91:4c:a5:08:fe:32:49:23:59:d7:ad:1a:68:c9:65:
91:f3:7a:50:cc:d3:83:5a:6e:c4:02:59:50:77:60:a3:66:7b:
b7:16:07:54:94:6e:92:c4:20:d2:87:a8:7d:69:4e:da:c4:71:
2f:19:86:dc:57:f1:60:47:0b:67:45:5b:b2:ba:62:71:38:3a:
ec:d5:17:cc:17:dc:b5:58:84:62:d5:aa:fe:58:6e:6e:93:e8:
64:dd:bc:ec:13:43:ba:88:4a:aa:36:c6:b2:4a:9d:01:2a:1d:
d5:7d:91:d8:16:a6:a9:55:00:d3:fb:f1:c5:f6:c1:72:2b:59:
f0:09:42:a3
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYxoKZpJXfmVqSsXwG/DRXBFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMxMjE0MTE1MDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWViMTQ1MTVkMDQwNmFhNDkxOGVjYWMxMTBiYjk4NzViNTJlMGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfrw42JHbjO/o5vIVS86DR8nT+8W
vcYLDKofk6vDlusYFaPK2XsNk/Ajl0u2RiouKnvBwqJkpE9pqP+KEAFYzw4mF+RN
AtgXwtjga3wmEsy8xav54DggEVDAFi2edKkaHu94/rLegaZlgQ0AKX+4lrVtjXFq
UEoAT4xTo35R1u7blURp//Dj2YhggBeOBZ2vEOeW10X9mlucVKLf7yddY6AAp/6C
UconspAFoSVDQNdkvTDxxBYjJ6mN1MnhAz9VBDb7e4sN5HxGa3G1mxfIjeBBpzB+
dg4fzlreXkgnpGPVNlF8kU9rYVJO0F6pYcBRge+C6TbENNfHo/6TtBHVMwIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFFXrFFFdBAaqSRjsrBELuYdbUuCiMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvVmVzVVVWMEVCcXBKR095c0VRdTVoMXRTNEtJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQALZv8AwQA
LZv/AwQALZ3TAwQBT2L2AwQAsH37AwQBuceUAwQAuceXAwQBucfUAwQAufoaAwQB
wpJcMA0GCSqGSIb3DQEBCwUAA4IBAQCVf68r3+aqXQGTpkC/t6UIoldrEE97HEw8
Lj3m5GZ3P1jyoJl0ypyUvNIeh0sbWAAbnarIf4GirvvjtPL0U8SvRrbP40FDkn16
sYIFYD1u5YZCtGKBTvF0228mqxX6Tr80Bdmsj6yVEr4mnjax0JezOEs13C3l+E5P
q7rsb6o4lz2RTKUI/jJJI1nXrRpoyWWR83pQzNODWm7EAllQd2CjZnu3FgdUlG6S
xCDSh6h9aU7axHEvGYbcV/FgRwtnRVuyumJxODrs1RfMF9y1WIRi1ar+WG5uk+hk
3bzsE0O6iEqqNsaySp0BKh3VfZHYFqapVQDT+/HF9sFyK1nwCUKj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org