Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/vLMefa85vo52md-I8C8gXJF7UKE.roa
File: vLMefa85vo52md-I8C8gXJF7UKE.roa (raw, json)
Hash identifier: JIuBZEFTPTuY9jYZtVD3FX1lt63iusDqQ+xXXOAYoXw=
Subject key identifier: BC:B3:1E:7D:AF:39:BE:8E:76:99:DF:88:F0:2F:20:5C:91:7B:50:A1
Certificate issuer: /CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Certificate serial: 018DFAADC39256BE6AAA2AA6092E8824C8DC
Authority key identifier: C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/vLMefa85vo52md-I8C8gXJF7UKE.roa
Signing time: Fri 01 Mar 2024 15:41:48 +0000
ROA not before: Fri 01 Mar 2024 15:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206296
IP address blocks: 45.65.104.0/21 maxlen: 22
80.240.184.0/22 maxlen: 22
185.189.20.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 21:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fa:ad:c3:92:56:be:6a:aa:2a:a6:09:2e:88:24:c8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Validity
Not Before: Mar 1 15:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcb31e7daf39be8e7699df88f02f205c917b50a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a4:21:05:53:76:9b:b2:18:07:ac:f3:7c:9b:
44:f0:5c:b7:e5:71:ce:34:5c:f7:8e:a6:ec:d9:c7:
51:ef:27:10:b0:c7:26:b5:14:fd:a0:9a:4f:81:d9:
e5:31:5f:a7:b0:59:6a:52:b3:34:9c:10:f9:34:8f:
d6:53:1c:09:0c:dd:8f:7b:50:06:fd:c9:b3:e7:e7:
9d:74:07:41:79:23:91:17:40:18:cd:18:fb:73:93:
2e:1e:36:a1:2f:d1:77:43:88:e5:81:dc:49:95:b3:
22:cf:7c:e1:26:46:45:66:7b:a7:0b:b6:d2:d3:29:
8f:40:59:cf:b6:02:ec:fb:7b:22:46:b3:bd:09:fa:
72:13:9b:5f:79:58:f0:2d:5b:69:b0:58:d0:05:63:
f3:d9:4d:d2:bd:66:ec:f7:eb:d9:30:4a:6b:32:55:
cf:ca:30:69:3e:af:de:69:55:18:e3:3d:37:36:6a:
13:90:bf:94:03:d1:39:84:78:55:9e:e9:72:88:6c:
5b:a3:e8:5d:ae:6d:86:89:db:39:64:1f:ae:5a:e2:
02:6e:6f:ab:6f:22:f0:44:9b:e9:7d:8d:d2:ca:ca:
9c:15:a9:61:6f:e4:bf:8d:60:b7:6d:4a:48:4c:b4:
6f:06:42:38:e1:7f:f4:a6:3a:dd:2a:27:7a:f7:66:
96:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B3:1E:7D:AF:39:BE:8E:76:99:DF:88:F0:2F:20:5C:91:7B:50:A1
X509v3 Authority Key Identifier:
keyid:C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/vLMefa85vo52md-I8C8gXJF7UKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/yGjKghR-0id7S8xppShbrnNfLkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.104.0/21
80.240.184.0/22
185.189.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:a1:49:a6:e2:0a:ef:73:19:e0:bf:61:9b:92:5a:92:d1:6e:
8f:5e:12:8f:71:e9:6a:5b:1d:6c:17:db:5f:57:39:e0:aa:cf:
14:37:84:b6:4b:7f:a5:04:ca:74:24:f4:f2:2e:5f:31:c1:19:
bd:85:18:ca:9d:05:3a:65:c9:d3:66:a9:8a:88:31:d0:67:70:
b0:1a:f8:ba:b5:fd:aa:a2:02:61:42:20:cb:ca:37:0f:34:09:
59:c8:04:a5:bb:74:26:97:ae:a7:29:8b:1c:aa:a7:ba:f0:03:
bb:55:50:e7:ac:15:1c:ea:45:48:85:7a:88:bb:10:8d:df:9c:
d8:c4:b2:a2:35:de:f7:26:e0:39:ae:02:47:87:09:ca:a5:48:
4d:01:5d:d9:20:b8:4c:c1:01:5a:e7:45:87:50:e3:a7:3b:78:
78:09:17:d5:70:ec:9b:f3:61:92:5b:e5:d6:de:cf:da:9d:af:
73:26:81:35:78:35:d6:b3:cc:d2:95:5f:a6:84:ef:e3:53:0e:
13:ea:22:d9:67:85:3a:29:fa:67:dc:80:81:bf:af:c9:e4:3d:
10:f1:1b:99:4f:cd:67:ad:64:b2:9c:cc:88:1b:4a:18:c0:06:
e8:51:e0:83:46:b9:b8:ef:de:46:a8:28:b6:3a:99:a7:db:15:
e6:78:33:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 00:53:57 2024 by rpki-client on console-fra.rpki-client.org