Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/VKKYiXJNVPzMQhXW2Ir1FW7xEts.roa
File: VKKYiXJNVPzMQhXW2Ir1FW7xEts.roa (raw, json)
Hash identifier: jsUTXHbSj+1/6RkdVcbSzKxuNV7JLBYW+MB6V/KZe00=
Subject key identifier: 54:A2:98:89:72:4D:54:FC:CC:42:15:D6:D8:8A:F5:15:6E:F1:12:DB
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 01897FBB92A22C6216429DB9835CAFF369D3
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/VKKYiXJNVPzMQhXW2Ir1FW7xEts.roa
Signing time: Sat 22 Jul 2023 22:32:26 +0000
ROA not before: Sat 22 Jul 2023 22:32:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 45.145.152.0/24 maxlen: 24
45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 22:18:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7f:bb:92:a2:2c:62:16:42:9d:b9:83:5c:af:f3:69:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 22 22:32:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54a29889724d54fccc4215d6d88af5156ef112db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:d0:eb:c0:23:68:fc:1a:18:40:08:c0:71:
17:d4:c5:59:37:21:bc:2e:86:47:c5:a4:5e:00:3b:
d7:29:f1:ac:f4:8f:1d:91:45:94:78:a0:9f:49:e5:
ae:06:a4:e5:82:60:27:44:03:64:cb:b0:06:eb:30:
da:71:50:06:f0:5b:e1:10:fb:4c:af:49:b0:ff:0d:
c1:4e:98:6b:5f:05:a2:3b:76:07:4d:89:d9:f0:2c:
56:2c:eb:ea:fd:9e:f9:eb:ff:99:f0:9e:0c:c0:00:
0d:fd:c0:54:53:f9:d2:c1:51:fe:bc:4e:fe:92:0c:
6d:16:3c:02:a4:68:12:a4:fd:9c:7b:97:e6:d3:9f:
85:74:64:7e:d7:aa:46:a5:17:1c:96:b3:d4:7f:fb:
00:b1:a3:5b:6d:b7:b9:93:87:dc:e5:d6:79:7a:b1:
84:9d:ec:9d:11:1d:53:4e:9a:98:c7:62:32:2e:ad:
96:24:59:a3:da:a9:94:e9:5c:e6:d2:f0:18:91:ce:
61:c3:ef:41:d0:c6:25:a3:72:5a:b9:fe:a4:87:08:
d7:53:03:76:c1:68:92:e3:a7:b9:23:e4:88:47:b0:
34:d4:84:ef:4b:64:e6:3e:82:c8:22:79:53:25:fb:
f3:d5:2e:5c:82:65:4b:3c:10:bf:40:39:67:53:f0:
5d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A2:98:89:72:4D:54:FC:CC:42:15:D6:D8:8A:F5:15:6E:F1:12:DB
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/VKKYiXJNVPzMQhXW2Ir1FW7xEts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/23
Signature Algorithm: sha256WithRSAEncryption
44:6c:f8:ce:00:d6:59:79:85:6f:36:67:e6:99:94:e1:f6:77:
d2:d0:00:78:cf:21:8e:93:68:79:99:b7:8f:2a:ec:9a:be:d7:
6d:fe:48:50:06:b8:a8:7d:e4:db:3f:bd:fd:ec:10:87:29:80:
03:bf:38:8a:cb:5a:72:94:e6:bb:93:4d:ae:94:8e:60:63:98:
98:b5:e7:91:2d:30:e8:10:fb:ae:f5:89:22:45:14:15:d5:2a:
67:39:e6:d2:0d:6e:a2:05:66:6f:51:7b:9a:5a:bb:1b:48:b7:
42:81:94:31:76:3d:53:64:44:67:fa:00:75:3f:88:22:b9:e4:
5e:02:3a:cb:3f:e8:6a:de:13:3a:fb:89:78:47:2e:be:a1:3d:
9f:6a:30:73:9e:79:de:77:96:cd:f7:ac:69:e7:4a:96:44:88:
d2:72:10:5d:91:a6:e6:d6:94:00:6a:b4:09:02:2d:fa:0c:38:
1d:2b:48:36:bb:dd:ff:ea:e0:0c:56:90:3a:91:fa:5e:d8:67:
64:ff:19:ce:55:99:39:f9:d4:bc:c2:b3:34:03:6a:24:36:e1:
15:bf:d3:a0:29:f1:c3:8d:e1:3c:b1:5f:38:ae:81:fb:d9:61:
19:6d:9e:d4:09:f4:f5:98:b1:62:21:f6:2e:df:ec:03:f1:39:
2a:ad:99:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org