Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/cVPtNit8ENqpAi3ciFOSBsOTC8w.roa
File: cVPtNit8ENqpAi3ciFOSBsOTC8w.roa (raw, json)
Hash identifier: Yg2j1uNm/EpsoS5PzIAP5mvGkNHH9yt5YZXCOVNBh1Q=
Subject key identifier: 71:53:ED:36:2B:7C:10:DA:A9:02:2D:DC:88:53:92:06:C3:93:0B:CC
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018975344476B0410015957FC1E333EA35C6
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/cVPtNit8ENqpAi3ciFOSBsOTC8w.roa
Signing time: Thu 20 Jul 2023 21:28:26 +0000
ROA not before: Thu 20 Jul 2023 21:28:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 45.145.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Jul 2023 22:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:75:34:44:76:b0:41:00:15:95:7f:c1:e3:33:ea:35:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jul 20 21:28:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7153ed362b7c10daa9022ddc88539206c3930bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3f:02:b0:5f:0f:15:f3:72:76:07:0d:d3:c2:
ba:6a:45:2a:b4:fe:48:44:f2:91:b8:94:b7:b1:ea:
c4:96:6a:44:a4:ba:6c:50:05:71:2b:b8:5f:66:e0:
52:14:73:20:0a:e9:4e:32:fd:27:37:61:42:d7:4d:
ed:2e:32:3e:5e:20:7a:e9:e3:be:75:fb:52:11:99:
0f:37:05:c4:61:3e:54:2d:95:88:16:09:7a:3c:a8:
3c:3e:01:ea:65:e6:33:ab:98:59:87:a7:a4:c5:62:
c1:65:6f:1f:02:25:de:6b:dd:c3:c6:93:7f:ce:32:
57:e3:8a:0e:ac:ce:ac:a9:63:9f:1a:2e:1d:98:fc:
01:d8:d2:5b:9f:0c:07:f9:8e:e4:74:06:3c:7e:e3:
50:e4:1d:87:2c:1a:fc:0a:54:1d:54:e1:c3:e5:35:
ae:c6:dc:b7:ba:f0:4d:86:4d:c6:c2:e7:56:e7:a1:
82:de:9e:96:4e:6b:78:f2:bd:35:b0:a6:39:a8:3b:
7d:65:07:32:51:86:cd:e7:cf:f5:be:a2:fb:3c:8b:
6f:1e:9b:af:3f:7b:02:da:af:25:ca:ff:cc:1c:32:
f0:b5:1c:21:47:ed:46:83:9d:f4:62:1a:35:68:7a:
e4:af:58:b1:bd:0f:a4:1c:72:cb:ee:d2:c7:7b:29:
99:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:53:ED:36:2B:7C:10:DA:A9:02:2D:DC:88:53:92:06:C3:93:0B:CC
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/cVPtNit8ENqpAi3ciFOSBsOTC8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b4:b3:73:0a:11:94:2d:0a:da:4a:30:3f:3f:df:6d:aa:9a:
42:b1:9b:c6:16:e8:11:40:4f:38:f1:ef:81:12:11:32:24:7c:
d0:34:85:e9:66:ca:2b:0c:57:c1:cd:34:47:9b:d4:28:bf:74:
01:91:97:5d:95:7e:98:81:42:00:49:ff:10:30:e3:23:c5:64:
57:ee:f6:67:32:25:5a:2a:a2:2f:4e:53:41:fa:83:e0:4d:d6:
8a:c1:86:41:ca:e0:5a:92:1e:e6:b1:71:9a:56:88:14:b4:a7:
d6:f6:dc:ce:e2:a7:b4:30:7b:04:6f:0f:e4:14:87:f1:24:a4:
a2:fb:4c:3d:c2:d7:71:84:4b:de:ee:e3:7c:43:26:b5:f9:fc:
be:d1:ca:b6:e8:52:47:f3:73:be:0c:54:c8:5e:79:f8:3d:73:
46:c9:d0:33:18:2a:29:b7:5b:af:b4:6e:3b:98:e6:5d:71:fb:
73:59:64:f1:6f:01:20:82:49:7b:90:92:4b:b6:7a:81:41:13:
3a:7c:50:79:cc:ba:fe:5c:44:f6:cb:80:b4:a2:7b:37:4d:ad:
7f:05:d1:7d:65:cf:1a:b7:79:46:fb:8e:9b:16:be:88:9b:04:
bc:aa:a8:e9:18:82:d9:40:ee:d7:4f:c2:3c:72:b1:05:af:85:
1f:96:4e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org