Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vmMXkxNA2j46JZTqk8ZGpNrSND4.roa
File: vmMXkxNA2j46JZTqk8ZGpNrSND4.roa (raw, json)
Hash identifier: W2r4tKiL00CnFVlzkjlfgn/GrUPVlXLI5K4s8RWY9DA=
Subject key identifier: BE:63:17:93:13:40:DA:3E:3A:25:94:EA:93:C6:46:A4:DA:D2:34:3E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019150A8B6E2A8886A0ABBB582716F5F407F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vmMXkxNA2j46JZTqk8ZGpNrSND4.roa
Signing time: Wed 14 Aug 2024 11:31:59 +0000
ROA not before: Wed 14 Aug 2024 11:31:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 14:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:a8:b6:e2:a8:88:6a:0a:bb:b5:82:71:6f:5f:40:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 14 11:31:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be6317931340da3e3a2594ea93c646a4dad2343e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:21:8b:7a:2e:73:be:4b:e2:64:3e:7b:42:d9:
0a:fb:07:e3:1b:0c:41:21:41:d1:f7:41:d9:f6:23:
f2:4a:8b:3a:f1:c0:fb:68:00:ae:36:df:ad:23:05:
1c:5c:5c:17:4a:60:fe:cf:c8:79:a0:7a:2f:82:2a:
5b:40:c0:db:bb:c6:59:ad:e4:63:51:86:b0:a4:d8:
75:42:fc:5e:ad:81:d1:cc:78:02:79:70:ba:5c:ba:
cb:a6:d2:fd:d0:f0:c4:0a:2f:61:e0:6e:17:41:5b:
92:51:fd:41:bc:80:36:82:90:29:5a:c7:f0:28:ca:
50:75:60:cf:3c:0f:c2:2e:bd:d4:c8:5b:39:e4:a3:
d7:a3:37:c3:8c:85:af:53:ac:b3:86:f3:62:46:24:
d3:83:32:cf:ac:82:ab:05:a4:71:c5:b7:84:65:b2:
c8:f0:55:8b:e8:06:0c:1b:d5:59:7a:df:d9:4b:39:
5a:e5:9a:7d:2f:32:4b:25:f3:99:c5:55:03:14:b6:
e1:3c:8a:40:9b:fa:3a:1d:d9:78:09:09:41:57:33:
52:d2:4f:d2:62:61:cc:eb:5e:77:6b:5b:7f:7f:79:
02:cf:69:d6:ff:7e:33:68:11:cb:29:02:ae:3f:57:
ee:74:46:62:15:e5:c1:6c:31:39:cf:fa:d3:89:04:
fe:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:63:17:93:13:40:DA:3E:3A:25:94:EA:93:C6:46:A4:DA:D2:34:3E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vmMXkxNA2j46JZTqk8ZGpNrSND4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
89.40.70.0/24
93.114.183.0/24
188.241.136.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b2:3b:1d:35:76:43:a6:58:13:d7:0a:0b:2d:8c:fb:c8:ca:
bd:f3:d5:4c:78:21:62:1d:87:99:4f:86:d7:63:22:d6:8a:ce:
e0:48:1e:f9:50:33:e9:97:72:74:4d:57:71:a9:ad:50:37:90:
cc:25:e6:1c:c6:51:a7:a0:c8:94:09:96:5e:f9:f8:98:fd:d6:
62:f3:c7:27:68:75:d2:e0:a1:d5:7d:30:14:ce:c8:4b:c1:32:
85:e8:a6:7d:3c:6f:20:b6:5d:4c:7b:85:35:04:8d:cf:31:8f:
89:63:b3:3d:42:b9:3b:cb:be:9d:c9:3c:ec:03:73:f6:34:fc:
53:8a:4e:15:1d:8d:26:f4:cc:e0:d9:11:1b:a4:e9:20:1e:5d:
c7:27:50:52:bf:c8:40:05:4b:7c:0c:ce:41:99:0b:0e:c9:93:
a8:26:fa:a4:ba:30:c2:c1:77:a9:85:57:42:39:42:45:79:47:
8b:68:a0:f1:87:e1:9c:32:91:a6:6a:2d:42:44:d7:ac:4d:6e:
a2:82:93:0d:dc:03:6b:6a:2c:c8:9b:88:bd:24:8b:fe:09:2b:
31:32:fe:59:cb:ff:2e:9e:5a:1c:b2:c4:c5:2d:5f:bb:19:3b:
3b:ab:42:2a:b5:6c:fc:5c:cd:c1:46:ec:c5:ac:ec:d3:e1:95:
60:61:2e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 19:31:58 2024 by rpki-client on console-ams.rpki-client.org