Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/VCNStJQFoyIXLkAvBNrTlmdH1ng.roa
File: VCNStJQFoyIXLkAvBNrTlmdH1ng.roa (raw, json)
Hash identifier: 67VgRJpi46P4L2/As0bdcPABeKogm1Mh6JlSv4heZQQ=
Subject key identifier: 54:23:52:B4:94:05:A3:22:17:2E:40:2F:04:DA:D3:96:67:47:D6:78
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 01856F42D1640CC9DF773C2D084E32547E16
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/VCNStJQFoyIXLkAvBNrTlmdH1ng.roa
Signing time: Sun 01 Jan 2023 21:35:27 +0000
ROA not before: Sun 01 Jan 2023 21:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42156
IP address blocks: 45.143.62.0/23 maxlen: 23
2a0e:e2c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 30 Mar 2023 19:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:d1:64:0c:c9:df:77:3c:2d:08:4e:32:54:7e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Jan 1 21:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=542352b49405a322172e402f04dad3966747d678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bf:cd:ea:9b:35:0e:c0:b3:19:35:a9:44:19:
27:0e:98:39:11:8a:19:2c:c2:51:07:8a:89:50:02:
03:d7:d1:bf:ee:b1:66:f7:8a:80:17:3e:c5:fd:2d:
f8:9b:44:74:f6:97:04:88:25:7d:88:ac:ce:31:f2:
08:90:16:fd:37:71:43:0a:0c:74:ba:c8:a1:59:65:
2d:c1:df:cb:98:f3:c6:e6:64:31:a9:b8:9b:a7:69:
14:92:5c:a8:8c:4b:b7:16:75:1f:4b:81:f6:f6:f2:
32:c5:25:96:21:ae:a1:47:92:ff:0c:cd:58:1e:5e:
47:bf:1a:e9:cd:43:3e:d3:da:a7:21:97:8f:b2:a4:
33:01:32:78:8a:0a:20:ba:4c:c3:4d:6e:3f:bb:45:
b0:89:e6:32:30:53:f8:af:0d:df:0c:f4:a2:b3:1c:
15:84:2c:35:3e:22:e5:26:9f:44:09:d4:e7:cc:34:
33:35:33:04:46:d1:7e:2c:98:3f:10:d7:c7:0d:e7:
57:3c:e1:73:b3:38:7d:4f:45:55:87:e3:66:d6:9c:
ce:63:f4:f3:1f:40:bf:a1:b8:f7:d5:9f:d4:d9:e6:
10:43:b8:3a:bb:80:fe:da:a6:5f:fc:17:63:b2:56:
d6:1c:70:06:4b:52:07:16:79:bd:6d:48:9a:4e:58:
2c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:23:52:B4:94:05:A3:22:17:2E:40:2F:04:DA:D3:96:67:47:D6:78
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/VCNStJQFoyIXLkAvBNrTlmdH1ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.62.0/23
IPv6:
2a0e:e2c1::/32
Signature Algorithm: sha256WithRSAEncryption
63:ae:9a:38:72:2a:c9:b0:2e:d6:78:6e:90:26:69:6a:5e:9c:
bc:e2:b7:4f:cb:b7:55:7a:81:98:c9:ca:ba:7d:bf:15:39:9a:
c1:07:d4:22:fe:21:1a:62:61:c7:17:e6:71:97:39:91:5c:73:
db:11:5b:60:b3:63:1e:74:88:44:87:83:59:46:91:71:5c:3b:
4a:5b:2b:22:64:16:16:50:64:7e:5f:45:ff:11:2c:b0:32:ab:
98:98:24:ba:93:5b:bd:b2:c9:04:a5:34:88:b0:e8:75:6f:a2:
a8:75:ea:04:a9:3d:59:05:f3:13:de:69:a5:e0:f3:71:03:d1:
07:10:2a:ab:94:47:40:27:bb:3e:1c:3a:ae:3c:b3:d6:3d:38:
66:b8:a7:e1:38:50:be:9a:ef:08:78:74:d3:71:08:18:32:46:
7b:86:73:95:c8:6f:0c:14:f9:7d:f8:c7:16:29:47:b1:27:85:
9e:de:7f:a0:b8:2a:f5:13:1f:3b:38:3a:47:9a:42:84:37:23:
95:39:62:ed:04:f3:94:74:65:87:1d:97:ba:07:6d:37:04:3e:
cd:e8:cb:ec:e2:e5:ad:e4:57:03:df:7b:6d:60:bb:04:5b:2d:
0f:c3:7f:75:ec:75:47:2e:88:b9:a4:99:9b:03:b1:f8:fa:d9:
70:c2:ed:5f
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvQtFkDMnfdzwtCE4yVH4WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyYWYwM2NhMmRmNjQyM2I3N2QwZWYzNzM3YjBmNDc5MWFh
MDM1YTMwHhcNMjMwMTAxMjEzNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDIzNTJiNDk0MDVhMzIyMTcyZTQwMmYwNGRhZDM5NjY3NDdkNjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArr/N6ps1DsCzGTWpRBknDpg5EYoZ
LMJRB4qJUAID19G/7rFm94qAFz7F/S34m0R09pcEiCV9iKzOMfIIkBb9N3FDCgx0
usihWWUtwd/LmPPG5mQxqbibp2kUklyojEu3FnUfS4H29vIyxSWWIa6hR5L/DM1Y
Hl5HvxrpzUM+09qnIZePsqQzATJ4igogukzDTW4/u0WwieYyMFP4rw3fDPSisxwV
hCw1PiLlJp9ECdTnzDQzNTMERtF+LJg/ENfHDedXPOFzszh9T0VVh+Nm1pzOY/Tz
H0C/obj31Z/U2eYQQ7g6u4D+2qZf/BdjslbWHHAGS1IHFnm9bUiaTlgstwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFQjUrSUBaMiFy5ALwTa05ZnR9Z4MB8GA1UdIwQY
MBaAFJKvA8ot9kI7d9DvNzew9HkaoDWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEt
NzAzYjZiNzBhN2VjLzEvVkNOU3RKUUZveUlYTGtBdkJOclRsbWRIMW5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEtNzAzYjZiNzBhN2Vj
LzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBLY8+MA0E
AgACMAcDBQAqDuLBMA0GCSqGSIb3DQEBCwUAA4IBAQBjrpo4cirJsC7WeG6QJmlq
Xpy84rdPy7dVeoGYycq6fb8VOZrBB9Qi/iEaYmHHF+ZxlzmRXHPbEVtgs2MedIhE
h4NZRpFxXDtKWysiZBYWUGR+X0X/ESywMquYmCS6k1u9sskEpTSIsOh1b6KodeoE
qT1ZBfMT3mml4PNxA9EHECqrlEdAJ7s+HDquPLPWPThmuKfhOFC+mu8IeHTTcQgY
MkZ7hnOVyG8MFPl9+McWKUexJ4We3n+guCr1Ex87ODpHmkKENyOVOWLtBPOUdGWH
HZe6B203BD7N6Mvs4uWt5FcD33ttYLsEWy0Pw3917HVHLoi5pJmbA7H4+tlwwu1f
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:17 2024 by rpki-client on console-fra.rpki-client.org