Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/EE_vmlYlzzzZdYFGheuBwiANRgw.roa
File: EE_vmlYlzzzZdYFGheuBwiANRgw.roa (raw, json)
Hash identifier: t2SKsNTjlnGYhpadqWiQnclppUaOjqULG5F6kxFkugQ=
Subject key identifier: 10:4F:EF:9A:56:25:CF:3C:D9:75:81:46:85:EB:81:C2:20:0D:46:0C
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018CC3B707FA39986190591C89E2CC490A49
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/EE_vmlYlzzzZdYFGheuBwiANRgw.roa
Signing time: Mon 01 Jan 2024 06:30:01 +0000
ROA not before: Mon 01 Jan 2024 06:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57033
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 18:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:07:fa:39:98:61:90:59:1c:89:e2:cc:49:0a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jan 1 06:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=104fef9a5625cf3cd975814685eb81c2200d460c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:47:60:30:59:20:ba:d7:df:59:fc:c5:42:
8f:04:05:d9:1f:a9:76:ed:93:42:3c:17:ff:1d:95:
a8:f8:10:47:e3:69:5b:24:2f:7b:a3:5f:d2:d2:75:
b7:89:e3:30:b6:a1:04:24:8a:7f:62:76:8c:2b:56:
7f:13:5a:c2:73:03:a9:07:a5:fc:19:0a:54:b5:dd:
eb:9b:a0:c9:c3:58:82:b0:27:44:6d:3c:61:cf:30:
43:2c:44:7b:18:d5:fe:97:31:ee:a2:b5:ad:3e:42:
02:d1:b0:77:9f:df:1a:37:93:ac:9d:77:d1:ca:04:
d7:74:5c:94:21:79:d2:93:fd:5d:78:21:b1:7e:e2:
7c:93:81:b9:f0:ce:d4:6a:c1:d4:3f:de:38:8d:04:
f6:93:a0:dd:e9:44:6e:fe:9d:10:c2:47:a1:7a:b7:
9a:1d:64:c5:10:b5:87:e9:14:c3:ce:20:7b:3c:ae:
08:e0:41:75:f7:f6:68:4b:66:a8:30:82:97:16:93:
62:a9:00:8b:03:6b:3a:2b:43:aa:bd:c1:96:b7:02:
47:30:06:b0:d1:8e:f0:55:19:fe:e2:82:a5:e4:87:
4b:0b:c9:df:fc:f4:d5:fc:fc:13:98:15:0d:3d:a9:
2d:bd:7e:21:57:01:ee:ff:55:55:8e:6e:a4:07:55:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4F:EF:9A:56:25:CF:3C:D9:75:81:46:85:EB:81:C2:20:0D:46:0C
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/EE_vmlYlzzzZdYFGheuBwiANRgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
01:4b:f5:24:fe:c4:31:fe:2a:63:b4:90:15:29:9b:c6:b5:ef:
45:2a:d4:0d:2e:5f:27:ed:fb:c9:19:37:22:19:69:5b:0c:54:
10:cf:a4:53:a8:90:18:36:22:8f:2d:64:e5:92:25:6f:46:a2:
1f:02:6d:a0:80:f9:09:70:4a:53:1a:f7:d5:dc:53:34:cf:67:
50:5e:d6:d5:43:75:a8:58:02:34:c2:b3:9c:f5:a8:85:9d:ae:
e2:56:77:82:47:46:e6:17:ef:16:db:ff:ce:0c:ab:60:dc:3a:
34:e1:f1:37:4b:06:28:95:ea:ed:a6:f4:ca:6b:69:06:38:92:
a5:30:4c:98:23:1c:9e:e6:aa:89:32:24:ba:0d:0e:f9:79:f4:
01:33:74:fe:8a:06:a2:7b:c6:5f:6e:3b:3b:9f:93:46:06:d5:
78:2c:ee:4f:df:59:a5:53:09:98:56:3b:13:e9:90:c5:40:31:
bd:7a:56:e5:94:fa:ad:9d:6f:88:2d:3f:db:92:a6:59:4c:12:
55:27:a6:91:84:d9:22:e5:18:72:cd:15:49:48:77:45:2f:fa:
a6:dc:6f:a1:72:81:e8:0e:f3:3a:1e:70:d5:9e:c8:8a:c7:08:
e1:3d:70:d8:c2:7b:06:30:c4:b3:88:ac:83:17:30:db:13:3c:
83:5a:78:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDtwf6OZhhkFkcieLMSQpJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmNTE1ZWFkMDk1ZWVkOWFjNGNhYmM1YWI0YWQwYjU4Njdk
OWYwMWIwHhcNMjQwMTAxMDYzMDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDRmZWY5YTU2MjVjZjNjZDk3NTgxNDY4NWViODFjMjIwMGQ0NjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/BHYDBZILrX31n8xUKPBAXZH6l2
7ZNCPBf/HZWo+BBH42lbJC97o1/S0nW3ieMwtqEEJIp/YnaMK1Z/E1rCcwOpB6X8
GQpUtd3rm6DJw1iCsCdEbTxhzzBDLER7GNX+lzHuorWtPkIC0bB3n98aN5OsnXfR
ygTXdFyUIXnSk/1deCGxfuJ8k4G58M7UasHUP944jQT2k6Dd6URu/p0Qwkeherea
HWTFELWH6RTDziB7PK4I4EF19/ZoS2aoMIKXFpNiqQCLA2s6K0OqvcGWtwJHMAaw
0Y7wVRn+4oKl5IdLC8nf/PTV/PwTmBUNPaktvX4hVwHu/1VVjm6kB1UvyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBBP75pWJc882XWBRoXrgcIgDUYMMB8GA1UdIwQY
MBaAFH9RXq0JXu2axMq8WrStC1hn2fAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgt
ZjBhNjI0ZDQwOTEyLzEvRUVfdm1sWWx6enpaZFlGR2hldUJ3aUFOUmd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgtZjBhNjI0ZDQwOTEy
LzEvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ59MA0G
CSqGSIb3DQEBCwUAA4IBAQABS/Uk/sQx/ipjtJAVKZvGte9FKtQNLl8n7fvJGTci
GWlbDFQQz6RTqJAYNiKPLWTlkiVvRqIfAm2ggPkJcEpTGvfV3FM0z2dQXtbVQ3Wo
WAI0wrOc9aiFna7iVneCR0bmF+8W2//ODKtg3Do04fE3SwYolertpvTKa2kGOJKl
MEyYIxye5qqJMiS6DQ75efQBM3T+igaie8Zfbjs7n5NGBtV4LO5P31mlUwmYVjsT
6ZDFQDG9elbllPqtnW+ILT/bkqZZTBJVJ6aRhNki5RhyzRVJSHdFL/qm3G+hcoHo
DvM6HnDVnsiKxwjhPXDYwnsGMMSziKyDFzDbEzyDWnhZ
-----END CERTIFICATE-----
Generated at Wed Mar 20 21:55:31 2024 by rpki-client on console-fra.rpki-client.org