Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/vkg72i5th_5IzI01UNQ69uNd7UI.roa
File: vkg72i5th_5IzI01UNQ69uNd7UI.roa (raw, json)
Hash identifier: NcoD4Tr96M8EfvnvuOcNM/a5eokvp82zTI2Zp2zMMTo=
Subject key identifier: BE:48:3B:DA:2E:6D:87:FE:48:CC:8D:35:50:D4:3A:F6:E3:5D:ED:42
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01878059CCB87A3BEC06CF6EFAA4360F8A6B
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/vkg72i5th_5IzI01UNQ69uNd7UI.roa
Signing time: Fri 14 Apr 2023 15:19:41 +0000
ROA not before: Fri 14 Apr 2023 15:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.143.160.0/24 maxlen: 24
45.149.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 08:19:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:59:cc:b8:7a:3b:ec:06:cf:6e:fa:a4:36:0f:8a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Apr 14 15:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be483bda2e6d87fe48cc8d3550d43af6e35ded42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c0:73:ab:d6:12:1e:cc:26:6f:af:fc:6a:22:
eb:e9:d4:c4:5e:1e:ae:b9:59:68:4e:b8:1f:8b:6b:
47:48:5c:c6:00:dd:65:99:b8:d1:f4:57:47:60:0c:
9c:d7:35:22:ab:79:4b:93:ca:3c:16:1a:30:ef:66:
bf:0e:32:ff:b2:e9:ec:60:97:5f:ef:9e:fe:c3:cd:
10:2c:c5:d3:24:ca:74:82:8e:58:79:b9:3c:f7:ff:
e5:36:89:85:21:0a:8f:ea:f8:fe:d2:57:32:cf:6b:
ee:44:cf:15:5f:05:b4:2d:68:d2:c8:78:83:d0:33:
fe:cc:fe:b5:86:09:99:4b:f8:63:6a:ca:7f:88:3a:
ed:48:d5:f8:a8:ee:a3:3d:7d:2c:d7:2d:7c:88:97:
a9:fe:4c:2e:d4:11:8c:cc:1b:22:e4:a8:e5:b2:1a:
8f:33:3d:65:38:f0:12:95:e0:a1:46:43:74:50:ea:
52:40:cd:4d:2f:f9:9c:9d:d3:2d:3d:70:11:e3:df:
db:0d:2e:d7:95:ea:66:79:58:d9:29:0b:b4:47:ff:
a8:60:fe:54:bb:1d:d2:2d:84:d9:39:b4:15:48:a7:
ff:12:da:7d:cb:3c:79:e7:d3:63:ac:96:94:03:8a:
84:76:38:3c:0f:eb:3a:16:1a:d1:20:b7:43:1e:a5:
1a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:48:3B:DA:2E:6D:87:FE:48:CC:8D:35:50:D4:3A:F6:E3:5D:ED:42
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/vkg72i5th_5IzI01UNQ69uNd7UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/24
45.149.166.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f6:62:74:cf:ea:d4:89:de:73:43:35:cb:05:62:34:00:c1:
6f:05:7c:74:02:76:67:11:c8:3d:82:c7:2a:19:b8:7d:ae:15:
d8:8b:d3:22:78:61:e3:f2:c6:c5:ec:a6:83:4d:fc:8a:35:a3:
00:65:55:57:78:22:65:85:71:16:5e:53:1a:3c:33:59:92:cd:
53:49:a4:c2:cd:d4:30:b9:07:dd:9d:d4:22:bc:83:ee:96:9b:
55:91:90:39:ff:fb:66:8f:fa:75:dd:ef:89:88:07:55:30:b6:
a0:88:1b:a0:03:49:38:40:87:16:86:97:42:d6:fd:3a:07:60:
6c:5a:f7:dc:89:e6:6a:ea:01:c1:a6:43:f7:12:13:8a:c8:e7:
11:97:96:f9:58:94:0c:69:15:0a:aa:25:fc:89:64:98:ee:d0:
77:32:b1:c1:55:d3:8f:d0:ce:d9:f0:e8:f9:52:a6:17:43:e8:
a3:bb:4b:e9:34:52:d1:3a:66:a9:fa:ae:10:7f:c1:c8:1d:9a:
c7:13:3f:84:36:f1:65:82:ac:63:be:f8:03:0d:a6:2b:ea:30:
10:ba:de:fc:4f:07:d7:87:76:89:3c:c4:48:fe:7a:e7:d1:ec:
5f:80:9e:d0:21:55:0b:d5:dc:dd:db:81:c1:0f:ca:ef:2b:d9:
ca:c4:c2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org