Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/vkSocF0KyeVLKnuFI2K-d9ScujY.roa
File: vkSocF0KyeVLKnuFI2K-d9ScujY.roa (raw, json)
Hash identifier: 9brWehZXiwa80covZioK5mjiH8Zw87bgLwoCRINNiM8=
Subject key identifier: BE:44:A8:70:5D:0A:C9:E5:4B:2A:7B:85:23:62:BE:77:D4:9C:BA:36
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 0185724C93549BDCAD69F383C9E055040435
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/vkSocF0KyeVLKnuFI2K-d9ScujY.roa
Signing time: Mon 02 Jan 2023 11:44:59 +0000
ROA not before: Mon 02 Jan 2023 11:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57179
IP address blocks: 45.94.128.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:93:54:9b:dc:ad:69:f3:83:c9:e0:55:04:04:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 2 11:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be44a8705d0ac9e54b2a7b852362be77d49cba36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:98:bf:a5:10:c0:71:69:e0:d4:f8:14:71:7e:
e1:3e:4a:bf:f5:a1:07:69:83:b8:32:68:07:98:fd:
59:8e:68:76:72:9a:44:18:ad:fb:08:c4:0b:80:f5:
47:2c:c0:0d:7f:e4:eb:b1:7e:74:63:10:2c:52:bc:
01:c9:26:ec:a7:22:37:f4:4d:3b:03:d8:5e:a5:32:
ef:04:33:21:c5:79:4a:bf:a7:f7:5d:53:3b:bc:9a:
db:d6:4f:65:63:a0:5e:80:21:12:1b:a1:1e:d0:d5:
3a:e3:aa:2f:cb:be:ff:93:67:0d:b6:11:40:c9:9a:
39:67:e0:47:07:fc:99:9a:2a:6b:0b:7a:6f:b7:43:
6b:9d:e0:45:00:8d:ea:0c:df:c4:13:d5:b2:fd:8e:
53:13:1e:24:66:e6:1b:ac:fd:2c:eb:1f:df:53:26:
71:7c:96:f7:a1:8d:66:b2:4f:6b:c1:c4:f4:50:19:
72:3e:bd:91:03:0f:a8:d8:7e:e0:46:c8:cf:59:73:
2b:1c:75:49:54:1d:39:a5:59:8c:5a:62:da:ce:bb:
32:9e:19:36:92:77:42:11:6e:02:92:6f:70:c2:7e:
e5:c3:2b:e2:4a:fc:b2:c7:04:2c:c0:2e:8b:87:f5:
34:2c:a3:b1:20:a4:e8:41:d1:6f:da:b9:b8:ed:e0:
d3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:44:A8:70:5D:0A:C9:E5:4B:2A:7B:85:23:62:BE:77:D4:9C:BA:36
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/vkSocF0KyeVLKnuFI2K-d9ScujY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.128.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:c4:25:fd:e0:84:b9:07:33:52:e9:33:28:b0:0a:d2:a2:9d:
96:25:d7:8a:5d:fe:72:30:60:4e:8c:ff:aa:22:dc:b8:19:a2:
d7:c5:c1:c9:38:91:ef:b8:b6:9b:a1:01:c1:91:33:7a:2e:8f:
7f:c0:46:45:8f:1c:58:c4:c9:b4:78:aa:29:f7:f4:29:ad:45:
dc:08:79:40:61:d6:58:38:86:30:0e:68:99:40:85:16:af:02:
93:d2:3a:51:83:84:c1:3a:d8:f8:35:24:09:6e:e7:04:4f:5e:
f4:c5:25:00:a4:1b:9c:4a:5d:89:0b:12:3b:c7:c6:ad:02:47:
4c:05:4c:ef:2f:02:83:df:66:4a:c5:a1:80:99:5c:bf:07:d6:
6e:a2:fa:c3:1a:74:cc:c3:ea:67:53:49:46:3e:83:47:7e:9c:
a7:ce:07:21:43:2f:3d:7b:1b:d2:50:6e:6b:ca:61:5d:6c:2b:
37:1d:1a:c0:e8:48:74:9e:02:2e:45:a8:48:3e:5e:51:95:fd:
54:bf:6e:34:2a:3b:3b:d4:b2:65:a5:94:00:c0:f2:fd:47:81:
6a:a0:7a:e0:b4:bc:73:d6:2e:d7:2b:d7:3e:1c:35:ed:d9:e3:
31:f5:d9:5c:25:83:ec:d4:f8:18:3a:66:df:8b:0b:f3:88:f7:
98:46:63:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:47 2024 by rpki-client on console-ams.rpki-client.org