Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/VKe-Gce_y3IG1TgEQ018Mcvg2XU.roa
File: VKe-Gce_y3IG1TgEQ018Mcvg2XU.roa (raw, json)
Hash identifier: K5fwUuP4CbhapyhOmgfcndc50VsSgWoRu/ynaEFZlis=
Subject key identifier: 54:A7:BE:19:C7:BF:CB:72:06:D5:38:04:43:4D:7C:31:CB:E0:D9:75
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 018CC500121B7C1DC3342B0F0F6BD8EB104A
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/VKe-Gce_y3IG1TgEQ018Mcvg2XU.roa
Signing time: Mon 01 Jan 2024 12:29:25 +0000
ROA not before: Mon 01 Jan 2024 12:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.89.31.0/24 maxlen: 24
45.89.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 19:23:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:12:1b:7c:1d:c3:34:2b:0f:0f:6b:d8:eb:10:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Jan 1 12:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54a7be19c7bfcb7206d53804434d7c31cbe0d975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bb:a0:36:92:9f:99:61:90:ab:a7:d0:31:f2:
ba:3e:9a:af:9f:a3:e6:5c:1f:3a:b6:ad:4a:5e:f7:
69:e4:cf:31:0d:10:46:80:69:3c:12:7e:64:c7:bd:
d2:3f:06:07:77:6a:45:a0:53:47:76:9a:67:0a:a4:
3c:8e:6f:24:fd:24:1d:10:d9:e2:c1:39:a2:66:dc:
93:46:b5:e2:75:17:77:2d:33:58:30:3a:41:48:3c:
58:b1:a5:dc:08:c6:92:a3:1e:5d:32:b4:5d:54:a3:
3f:49:1b:16:fb:04:0d:d0:41:b0:d7:43:4d:2c:06:
12:1f:7f:db:6b:23:a1:bc:0c:fa:05:cc:cb:f7:99:
6f:a9:a2:c4:f6:af:e7:32:1a:f9:db:e6:5e:f5:a1:
44:6b:f4:b0:03:d0:11:57:fd:7a:a9:51:26:2d:4c:
57:cb:ca:0f:69:48:c7:99:07:ac:c0:e7:9d:bc:8f:
ce:f5:ac:5d:5b:db:e8:25:69:a2:bf:42:93:6c:99:
4b:16:ff:b2:a5:d8:65:ef:10:fa:1d:b0:ce:4c:8a:
ff:55:4e:7e:32:a0:17:e9:5d:1c:52:44:d3:ba:d2:
09:f1:b6:93:36:a7:fa:7c:af:18:f1:3f:da:ed:4c:
85:66:34:55:59:68:86:eb:5b:82:1e:9a:83:7a:19:
36:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A7:BE:19:C7:BF:CB:72:06:D5:38:04:43:4D:7C:31:CB:E0:D9:75
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/VKe-Gce_y3IG1TgEQ018Mcvg2XU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.29.0/24
45.89.31.0/24
Signature Algorithm: sha256WithRSAEncryption
05:13:3e:86:72:13:59:fb:4c:b9:3f:60:2d:82:21:af:32:33:
89:eb:64:58:64:d9:d0:ce:54:98:be:96:7b:c2:b0:09:35:35:
83:06:9a:1a:e2:03:ab:ed:de:ab:a9:a5:26:11:6e:57:92:bb:
7a:92:8f:f8:54:81:69:b7:9d:5d:c2:8e:3a:69:6e:d8:74:2f:
f3:be:5d:2d:74:51:a5:45:b2:15:4c:ff:44:6c:59:0b:bb:23:
9b:f0:f5:ab:91:f4:ea:df:13:ca:cd:ed:ed:7f:aa:8d:fc:07:
f0:17:82:e2:35:39:4c:b6:ad:50:f7:f1:dd:69:de:48:6d:2f:
a9:55:d2:c7:7d:d5:7c:1d:f7:95:9f:6e:d5:a5:71:9b:5e:79:
f8:9b:75:6d:c5:8f:da:84:b9:dc:28:c6:9a:52:4a:cb:1f:09:
1a:58:2d:35:25:61:93:03:42:0a:bd:63:71:13:da:8c:a5:6d:
19:7a:71:74:c0:9b:8b:c6:f8:b9:d8:06:6d:b8:18:37:a7:89:
c9:96:98:ca:42:9a:f7:c0:22:01:44:13:9d:f4:ac:87:5a:6a:
dd:3d:41:c7:fc:bb:be:de:d4:63:e5:ee:4e:93:8b:9e:42:a1:
b6:ab:e9:ce:33:8f:db:b9:6f:55:4d:d1:61:19:2a:b9:7a:0c:
d5:9d:85:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:11 2024 by rpki-client on console-ams.rpki-client.org