Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VpWEwMoqVpsKb1W8THPZZUcauw4.roa
File: VpWEwMoqVpsKb1W8THPZZUcauw4.roa (raw, json)
Hash identifier: fG8sAFiZpAHDr+fFnRiWlst35CpiS8+C4KYjFDc7Rec=
Subject key identifier: 56:95:84:C0:CA:2A:56:9B:0A:6F:55:BC:4C:73:D9:65:47:1A:BB:0E
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018896AD2F4F387F7426B2E4317FBF69BB74
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VpWEwMoqVpsKb1W8THPZZUcauw4.roa
Signing time: Wed 07 Jun 2023 16:25:12 +0000
ROA not before: Wed 07 Jun 2023 16:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13886
IP address blocks: 104.238.26.0/24 maxlen: 24
45.150.32.0/22 maxlen: 22
45.43.165.0/24 maxlen: 24
64.137.51.0/24 maxlen: 24
206.124.104.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:ad:2f:4f:38:7f:74:26:b2:e4:31:7f:bf:69:bb:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jun 7 16:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=569584c0ca2a569b0a6f55bc4c73d965471abb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:97:71:c0:48:39:04:10:bb:5d:3b:c9:21:
ed:4f:95:38:5f:a4:11:f8:8c:04:63:b0:4a:ed:d6:
12:09:14:29:4d:99:b8:49:db:cc:5a:d7:1f:21:c4:
14:37:b8:b7:59:d9:94:79:ce:2f:33:f0:23:a4:ae:
fc:b0:94:bc:96:a3:db:64:0d:7a:f4:64:31:be:71:
4f:ae:e1:bc:f5:52:84:2a:a2:4b:79:5e:66:6c:46:
cf:84:8b:e2:af:d6:4f:69:c2:30:6b:a3:dd:34:04:
e6:47:48:26:6b:1e:b3:ab:11:45:65:02:1f:18:79:
f8:0f:93:0b:05:12:5c:de:2e:66:78:26:00:48:e5:
60:7b:49:9a:15:93:32:4e:75:c7:d0:3b:ee:60:c6:
bf:d0:a2:cb:c3:96:05:ac:35:ac:b8:37:c5:49:9b:
86:c7:88:24:de:0d:92:c8:aa:ab:2b:3e:94:4d:2b:
cc:a3:27:fc:de:16:97:41:93:cf:80:1e:89:7a:66:
e5:94:78:87:c6:16:1a:19:6b:80:eb:e9:b4:f1:0f:
81:d6:9b:42:67:6d:7c:26:7e:ea:cd:a4:31:9f:ad:
3d:7c:bf:c6:a3:5e:6a:20:4d:fa:2c:19:6f:da:c1:
e7:c2:a8:2f:89:15:09:8c:7d:2b:0a:c0:9a:96:b3:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:95:84:C0:CA:2A:56:9B:0A:6F:55:BC:4C:73:D9:65:47:1A:BB:0E
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VpWEwMoqVpsKb1W8THPZZUcauw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.165.0/24
45.150.32.0/22
64.137.51.0/24
104.238.26.0/24
206.124.104.0/21
Signature Algorithm: sha256WithRSAEncryption
79:6b:e9:a3:1e:5f:cb:75:92:10:2a:4b:38:f7:ce:18:98:80:
48:a3:e3:33:37:20:67:a2:e0:f4:0d:ba:87:53:af:9c:66:c6:
ea:04:69:5a:f1:3f:be:51:ed:66:1d:b2:75:0b:f5:d5:fa:58:
88:94:43:fc:aa:7b:ca:55:5d:f8:37:03:db:df:86:0f:1e:7c:
88:d8:fd:08:2b:f6:88:e4:9a:0d:f4:77:c0:2c:1b:e0:d7:77:
8a:60:45:b5:18:ee:4e:b9:f8:6d:1e:98:3c:c6:f1:d7:d8:f9:
e0:e7:f1:0b:e4:3f:32:d8:b8:f2:16:00:b7:24:1c:c5:30:6f:
df:e3:98:2e:14:75:48:8e:cd:98:72:ea:21:37:0a:ec:68:bb:
4e:09:e0:0b:af:88:a9:05:51:1d:dd:7f:64:6e:9c:30:68:1a:
45:b1:0a:bb:ac:c6:3c:3e:63:6d:30:70:73:c8:db:d8:08:7d:
a0:fe:b9:58:cf:d3:3d:eb:9c:65:38:73:24:d0:d8:80:5b:f2:
e4:72:bd:b1:f5:dc:55:67:07:41:97:9f:56:b2:ea:3a:d2:f7:
1e:98:bf:34:ac:b2:24:72:85:4e:48:94:d9:37:cf:d4:c1:5a:
c3:6d:db:ef:04:a8:a0:ff:4e:f7:98:9c:4c:61:2f:ce:90:32:
6f:b8:31:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 19:56:50 2023 by rpki-client on console-ams.rpki-client.org