Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/Vma-mCDzi8EuP5CsQxgswhQ_DOc.roa
File: Vma-mCDzi8EuP5CsQxgswhQ_DOc.roa (raw, json)
Hash identifier: q9OEZtXE63aSLOArsVbu4mdK6GqllJ+eAPmvK18/JD8=
Subject key identifier: 56:66:BE:98:20:F3:8B:C1:2E:3F:90:AC:43:18:2C:C2:14:3F:0C:E7
Certificate issuer: /CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Certificate serial: 01856F14B3DD99C2A5AB6336FE792604A6D4
Authority key identifier: D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/Vma-mCDzi8EuP5CsQxgswhQ_DOc.roa
Signing time: Sun 01 Jan 2023 20:45:05 +0000
ROA not before: Sun 01 Jan 2023 20:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203201
IP address blocks: 45.145.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:b3:dd:99:c2:a5:ab:63:36:fe:79:26:04:a6:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Validity
Not Before: Jan 1 20:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5666be9820f38bc12e3f90ac43182cc2143f0ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fb:41:75:5c:26:c0:e3:39:90:c4:0a:6a:ee:
ac:ed:8e:f1:df:6d:76:9c:7e:d7:a6:51:fb:ab:b8:
94:dd:c6:7d:98:a6:9f:c2:ed:03:b3:d2:7d:f5:e3:
80:81:2e:d7:d9:73:93:5d:8e:89:58:e9:3a:f3:06:
16:2b:93:6c:20:90:20:6f:a6:de:8a:63:e5:e7:9d:
dd:ad:51:29:27:c2:0a:1e:9c:55:b7:c8:0a:17:18:
30:30:e3:e5:12:d1:76:47:ba:7b:39:cc:67:0d:ca:
c3:e2:fc:23:ec:5a:3b:35:62:84:b7:27:75:9d:26:
04:28:29:8d:09:5c:f8:48:95:d6:e9:0d:bd:f4:6e:
d8:f1:c7:3c:90:5d:09:66:67:80:5d:5b:03:e3:f2:
25:22:77:3c:fe:ac:18:d0:b1:65:7e:ee:e1:79:d0:
0d:07:79:a0:10:44:6a:be:5a:99:fa:25:38:16:80:
0b:53:bc:5d:07:82:11:8d:76:a5:a9:36:3f:08:f0:
85:0f:a2:7a:83:93:e3:49:27:06:8b:82:83:ca:be:
17:c7:d0:8b:49:79:ee:a1:2f:a6:86:7a:e0:32:57:
95:5c:5a:4d:a3:cb:77:1c:5f:17:3d:d6:c9:22:6b:
f8:8e:b2:7b:b0:64:2b:a3:7d:26:36:f6:9c:1d:d1:
c1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:66:BE:98:20:F3:8B:C1:2E:3F:90:AC:43:18:2C:C2:14:3F:0C:E7
X509v3 Authority Key Identifier:
keyid:D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/Vma-mCDzi8EuP5CsQxgswhQ_DOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.204.0/22
Signature Algorithm: sha256WithRSAEncryption
54:11:d0:a0:b4:72:f5:4e:a1:11:b0:89:21:35:47:d3:69:dd:
76:76:46:f5:13:9a:15:f7:af:e7:2b:b5:91:cb:77:9e:67:64:
76:62:d9:e3:dc:31:1d:50:55:81:22:3b:09:ec:5d:df:84:71:
ab:92:3f:d9:a4:d0:0c:24:e0:33:ef:0e:6b:7e:20:1e:d4:5e:
cc:79:3f:35:36:17:f0:b9:0e:18:de:0e:81:d0:88:dd:d3:bf:
3f:c2:d4:36:80:a5:47:3a:08:aa:e5:e2:f2:b7:f9:be:e2:00:
c1:6d:48:82:53:9d:9c:32:91:d6:63:1c:c8:cc:ae:3b:df:b4:
e6:45:0f:b4:15:4b:76:ce:2e:4d:45:c8:f5:44:ba:0d:a4:2a:
a7:af:a8:cc:41:55:a9:b3:ec:6f:0e:ab:50:ef:fe:63:81:f7:
f8:0e:2b:c8:38:47:23:db:63:e1:7c:c0:7c:58:66:bb:c8:d1:
76:c9:c5:57:37:65:36:91:1f:77:8d:40:9a:17:76:4f:b9:44:
71:68:8d:22:04:17:dd:e1:79:5f:50:b8:99:4d:c2:ec:b7:9c:
52:f5:bb:a3:f5:0b:62:78:b9:d3:e4:46:b7:31:07:b6:fc:54:
fe:00:93:5d:61:fc:21:35:d1:57:5d:71:e2:c9:39:e4:da:1a:
cf:77:c3:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFLPdmcKlq2M2/nkmBKbUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZmJjNzRjZDFmODdhMGJmMTZjNDgyZjYyMDFjOWI5ZWIy
NDRlYTIwHhcNMjMwMTAxMjA0NTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjY2YmU5ODIwZjM4YmMxMmUzZjkwYWM0MzE4MmNjMjE0M2YwY2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiftBdVwmwOM5kMQKau6s7Y7x3212
nH7XplH7q7iU3cZ9mKafwu0Ds9J99eOAgS7X2XOTXY6JWOk68wYWK5NsIJAgb6be
imPl553drVEpJ8IKHpxVt8gKFxgwMOPlEtF2R7p7OcxnDcrD4vwj7Fo7NWKEtyd1
nSYEKCmNCVz4SJXW6Q299G7Y8cc8kF0JZmeAXVsD4/IlInc8/qwY0LFlfu7hedAN
B3mgEERqvlqZ+iU4FoALU7xdB4IRjXalqTY/CPCFD6J6g5PjSScGi4KDyr4Xx9CL
SXnuoS+mhnrgMleVXFpNo8t3HF8XPdbJImv4jrJ7sGQro30mNvacHdHBrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFZmvpgg84vBLj+QrEMYLMIUPwznMB8GA1UdIwQY
MBaAFNT7x0zR+HoL8WxIL2IBybnrJE6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVB2SFROSDRlZ3Z4YkVndllnSEp1ZXNrVHFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS84NzMxMmMtNjljNC00ODEzLWI3NDAt
MWM5NjY3NzMwNTM0LzEvVm1hLW1DRHppOEV1UDVDc1F4Z3N3aFFfRE9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS84NzMxMmMtNjljNC00ODEzLWI3NDAtMWM5NjY3NzMwNTM0
LzEvMVB2SFROSDRlZ3Z4YkVndllnSEp1ZXNrVHFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZHMMA0G
CSqGSIb3DQEBCwUAA4IBAQBUEdCgtHL1TqERsIkhNUfTad12dkb1E5oV96/nK7WR
y3eeZ2R2Ytnj3DEdUFWBIjsJ7F3fhHGrkj/ZpNAMJOAz7w5rfiAe1F7MeT81Nhfw
uQ4Y3g6B0Ijd078/wtQ2gKVHOgiq5eLyt/m+4gDBbUiCU52cMpHWYxzIzK4737Tm
RQ+0FUt2zi5NRcj1RLoNpCqnr6jMQVWps+xvDqtQ7/5jgff4DivIOEcj22PhfMB8
WGa7yNF2ycVXN2U2kR93jUCaF3ZPuURxaI0iBBfd4XlfULiZTcLst5xS9buj9Qti
eLnT5Ea3MQe2/FT+AJNdYfwhNdFXXXHiyTnk2hrPd8NN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:00 2024 by rpki-client on console-fra.rpki-client.org