Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/VQv9LIE6XUsP78Epkt5z4tImmi8.roa
File: VQv9LIE6XUsP78Epkt5z4tImmi8.roa (raw, json)
Hash identifier: c1Yse3FqoQaTyqygTiT7PN0AXnnp0R/kCgsEb9eI8g4=
Subject key identifier: 55:0B:FD:2C:81:3A:5D:4B:0F:EF:C1:29:92:DE:73:E2:D2:26:9A:2F
Certificate issuer: /CN=5d0a0d396f769369365f2b983c531afeca9710a7
Certificate serial: 018F147F76B53076312B6F74D761244C7DB0
Authority key identifier: 5D:0A:0D:39:6F:76:93:69:36:5F:2B:98:3C:53:1A:FE:CA:97:10:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQoNOW92k2k2XyuYPFMa_sqXEKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/VQv9LIE6XUsP78Epkt5z4tImmi8.roa
Signing time: Thu 25 Apr 2024 09:04:08 +0000
ROA not before: Thu 25 Apr 2024 09:04:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48350
IP address blocks: 45.148.236.0/22 maxlen: 22
45.148.236.0/24 maxlen: 24
45.148.237.0/24 maxlen: 24
45.148.238.0/24 maxlen: 24
45.148.239.0/24 maxlen: 24
2a0f:7a00::/32 maxlen: 48
2a0f:7a02::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 May 2024 08:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:7f:76:b5:30:76:31:2b:6f:74:d7:61:24:4c:7d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0a0d396f769369365f2b983c531afeca9710a7
Validity
Not Before: Apr 25 09:04:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550bfd2c813a5d4b0fefc12992de73e2d2269a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c0:95:4b:e9:cd:22:65:f2:37:98:32:f2:bf:
4a:20:98:26:76:fa:78:b8:6b:c1:62:3d:3a:83:d8:
32:8c:35:d2:21:f6:57:23:b6:40:b9:f6:e2:66:42:
dd:cd:dc:37:79:b5:7b:d5:56:0f:38:e5:bc:46:b5:
67:3b:18:a4:d5:c3:88:c6:13:64:79:4c:ea:23:f4:
2d:b0:0b:65:e7:d7:99:3d:f2:6f:28:85:0a:44:21:
2a:6d:a8:97:a3:9a:11:2f:3e:de:e1:1d:71:b9:ca:
33:9d:c5:8a:8f:fc:43:c2:58:e4:2c:85:94:85:bb:
b3:b0:ad:71:21:56:6a:44:ee:61:91:4f:ef:45:79:
69:79:43:d8:87:95:93:54:b2:ec:97:bb:59:c1:e7:
79:1c:35:95:71:28:70:90:05:ab:38:d2:98:b8:c4:
b6:f2:1f:64:f9:96:27:86:ce:29:e9:02:86:bc:a4:
14:eb:75:30:44:55:fe:4b:8e:23:8d:fb:e1:e7:ec:
27:1f:ed:05:6e:91:af:de:f5:21:61:b0:8f:56:5d:
d8:f4:c3:24:23:3c:f3:1d:4f:27:be:9e:23:0c:9e:
09:d5:91:31:dd:77:90:91:bb:cb:44:e7:f2:16:61:
31:e4:03:30:29:21:15:93:25:45:26:79:79:2d:55:
e7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0B:FD:2C:81:3A:5D:4B:0F:EF:C1:29:92:DE:73:E2:D2:26:9A:2F
X509v3 Authority Key Identifier:
keyid:5D:0A:0D:39:6F:76:93:69:36:5F:2B:98:3C:53:1A:FE:CA:97:10:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQoNOW92k2k2XyuYPFMa_sqXEKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/VQv9LIE6XUsP78Epkt5z4tImmi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/223d8f-58ac-4df7-bf1e-442010b579ef/1/XQoNOW92k2k2XyuYPFMa_sqXEKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.236.0/22
IPv6:
2a0f:7a00::/32
2a0f:7a02::/32
Signature Algorithm: sha256WithRSAEncryption
65:ac:9b:6a:ee:77:1f:89:93:38:97:44:7a:7e:38:d5:7e:1b:
66:f8:52:3d:ac:1e:d0:b2:b2:3d:35:f5:aa:be:f3:d8:c4:d6:
44:86:e8:6e:dd:1d:c4:9f:9c:fe:75:96:43:9b:25:cb:5e:2e:
b7:ee:28:10:28:6d:f9:24:8e:47:a7:f9:90:ed:f2:86:a5:6f:
98:3d:d9:cb:fa:c9:25:43:9a:4d:55:9d:66:70:e9:b6:33:45:
a4:20:d9:81:11:22:55:f2:fd:c7:b5:cb:3a:28:9e:fe:8f:1e:
6e:39:4b:1a:ab:99:a5:b0:3a:63:a4:52:ec:13:c5:44:b4:3a:
c6:18:13:ad:7d:e4:99:87:de:c6:73:0b:92:fe:37:b8:cb:25:
02:8b:52:78:e7:e5:0e:a5:a5:d9:41:9f:2b:0d:f4:58:75:9c:
0b:be:f3:f7:41:58:69:b0:bc:18:e3:2d:e5:ed:6a:6b:e0:7a:
37:e6:79:12:d4:84:82:46:33:99:72:ec:6c:d8:a3:53:94:a9:
a3:0a:43:91:2f:b6:0f:be:9c:1e:ef:79:99:dc:56:88:c5:0b:
73:98:7a:be:fe:75:91:a9:38:20:ed:d9:6c:2a:09:b5:d9:01:
0f:56:4a:f3:86:0b:9f:84:b3:17:5e:ec:3a:48:0d:4d:23:c1:
ea:6e:59:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org