Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/VcxAG0yTu-LEbwteIHbq9m5YWrk.roa
File: VcxAG0yTu-LEbwteIHbq9m5YWrk.roa (raw, json)
Hash identifier: VjAmOUAYYhfeUs3mH9RHvw5lEa11J57xY+ApCMYJmd8=
Subject key identifier: 55:CC:40:1B:4C:93:BB:E2:C4:6F:0B:5E:20:76:EA:F6:6E:58:5A:B9
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018EE6E3175FE2E680EA78C02FE5130D9AD5
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/VcxAG0yTu-LEbwteIHbq9m5YWrk.roa
Signing time: Tue 16 Apr 2024 12:30:26 +0000
ROA not before: Tue 16 Apr 2024 12:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8342
IP address blocks: 45.151.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 09:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:e3:17:5f:e2:e6:80:ea:78:c0:2f:e5:13:0d:9a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Apr 16 12:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55cc401b4c93bbe2c46f0b5e2076eaf66e585ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8d:fc:72:19:89:30:d2:36:6e:ab:48:35:34:
28:f8:bb:19:77:14:f2:ae:90:6b:82:86:cf:2b:2d:
dc:ef:14:c9:32:5f:62:18:36:f8:32:75:95:a5:7b:
e3:d6:8f:bc:4c:82:b0:e6:fe:51:08:cf:6e:73:cf:
55:98:1c:96:9b:7f:72:2e:46:e5:4d:1b:71:fd:88:
fc:34:30:b7:a6:cf:e4:ff:58:d1:b1:1a:0e:5f:b3:
44:07:42:66:d9:49:63:7f:bb:3a:a8:de:b2:f1:e1:
44:59:65:fd:da:52:66:68:91:96:2b:b6:67:49:90:
9c:30:28:0a:dd:32:e6:53:36:c5:94:93:34:b4:90:
6e:8b:8f:21:d7:c0:37:89:a3:5a:b2:7f:51:06:bb:
79:24:49:3b:6e:dc:2d:62:64:14:44:9a:be:24:ed:
37:66:e7:96:62:8b:34:32:86:e4:6e:d2:57:eb:91:
63:76:51:e0:f4:c1:d7:be:df:13:a0:5d:09:32:7c:
48:be:8d:23:c2:e4:6e:da:1d:7e:b7:c7:ae:f5:71:
b6:e6:3a:d4:95:c4:49:2d:ad:56:97:c0:ca:bf:d4:
87:ba:0f:a8:6d:ae:ca:da:c5:fe:64:2f:cc:76:a6:
11:3f:65:b0:80:4e:a1:b9:01:11:5d:5b:75:d4:26:
69:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CC:40:1B:4C:93:BB:E2:C4:6F:0B:5E:20:76:EA:F6:6E:58:5A:B9
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/VcxAG0yTu-LEbwteIHbq9m5YWrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.60.0/22
Signature Algorithm: sha256WithRSAEncryption
13:1c:e2:9f:9e:8f:da:f5:40:f4:ff:af:37:dc:ae:e2:36:26:
d8:5d:2f:99:88:93:d1:8c:f6:35:bc:11:1b:86:12:18:b4:6d:
a1:5c:6a:74:cd:77:b1:ca:22:3d:76:ee:b4:bb:cc:d9:c1:b1:
0a:1b:c1:51:f9:5d:af:73:90:82:f3:fc:4c:8d:b0:05:94:5f:
1e:c4:22:73:f0:53:63:ad:b5:26:09:2e:3a:f0:f3:66:ba:e4:
ad:d8:0b:a3:d2:91:5c:f8:58:6a:ac:42:db:1b:00:aa:6f:16:
df:68:aa:ad:06:af:f2:88:6a:aa:48:ac:f7:48:09:bf:ba:af:
d3:ec:f9:74:51:26:7f:0f:be:14:6e:0f:2a:20:ff:e7:0c:d8:
ec:50:c4:2e:ad:eb:65:74:26:61:94:25:d6:e6:b0:b3:d1:c1:
95:ca:0b:5a:77:4a:09:f9:5f:0d:01:0b:46:7e:70:d3:df:11:
6d:10:17:b8:8b:62:92:84:06:4f:32:6d:d1:ab:e4:10:a0:9b:
a4:ad:5b:85:68:06:e5:07:fe:fd:42:1b:ae:28:89:3a:e4:19:
dc:89:29:e9:3e:53:32:7c:8f:49:81:4c:bd:17:0c:7e:32:be:
0c:00:49:ad:56:a8:16:d8:f1:5a:2e:ee:a6:a5:03:8c:21:bc:
ff:64:38:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:51 2025 by rpki-client