Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/60Jj72yx8YDFn5mz2-ad-pFZVMQ.roa
File: 60Jj72yx8YDFn5mz2-ad-pFZVMQ.roa (raw, json)
Hash identifier: 2rwcTZzwaGbjEqotTE9n9imPRND+Dgm15MQq3nZXzc0=
Subject key identifier: EB:42:63:EF:6C:B1:F1:80:C5:9F:99:B3:DB:E6:9D:FA:91:59:54:C4
Certificate issuer: /CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Certificate serial: 018EF18F05CFF699521C1F6CD551C18AE7B6
Authority key identifier: 57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/60Jj72yx8YDFn5mz2-ad-pFZVMQ.roa
Signing time: Thu 18 Apr 2024 14:14:25 +0000
ROA not before: Thu 18 Apr 2024 14:14:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48129
IP address blocks: 81.30.112.0/24 maxlen: 24
81.30.113.0/24 maxlen: 24
81.30.114.0/24 maxlen: 24
81.30.115.0/24 maxlen: 24
81.30.116.0/24 maxlen: 24
81.30.117.0/24 maxlen: 24
81.30.118.0/24 maxlen: 24
81.30.119.0/24 maxlen: 24
81.30.120.0/22 maxlen: 22
81.30.124.0/24 maxlen: 24
81.30.125.0/24 maxlen: 24
81.30.126.0/24 maxlen: 24
81.30.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 07:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:8f:05:cf:f6:99:52:1c:1f:6c:d5:51:c1:8a:e7:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Validity
Not Before: Apr 18 14:14:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb4263ef6cb1f180c59f99b3dbe69dfa915954c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3a:d6:e6:4f:0e:9b:47:aa:85:aa:ad:b3:6f:
ad:6e:59:14:ac:db:92:1d:a9:cc:87:88:9b:02:d4:
ef:80:ec:34:8c:c0:04:d2:ab:ca:3b:54:8d:23:35:
15:67:0c:e5:9e:1c:69:6e:e2:a2:75:a6:25:45:29:
f8:31:6a:e5:dc:81:0b:0a:cb:43:d8:8a:23:69:41:
39:09:a2:f5:40:70:a5:65:b3:eb:02:c0:df:18:ff:
3a:3a:36:e9:cf:16:a1:49:c2:a3:17:a1:70:f8:b9:
ca:4e:a2:ff:5d:e3:c8:e0:73:96:a7:11:ce:16:e9:
fc:fb:86:80:aa:ec:d8:79:7a:94:2d:86:a0:43:b3:
a5:94:95:37:e4:fd:7c:0c:11:a2:0d:06:e1:71:7d:
00:15:75:5b:64:f7:69:db:05:e6:55:46:f7:65:34:
7c:82:23:39:80:27:4c:88:98:60:f6:05:55:ee:e9:
93:f4:b9:27:7c:85:ed:cb:60:4f:da:23:91:35:e4:
cb:c8:9a:cb:c8:1d:a7:de:57:10:4d:c7:07:67:8c:
71:1a:40:55:c5:79:f7:87:96:d2:e8:21:e8:2d:b3:
68:62:6e:37:f9:fa:e6:0f:31:e5:29:84:40:85:70:
67:60:cd:7c:02:c8:3a:87:73:76:17:37:de:64:47:
47:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:42:63:EF:6C:B1:F1:80:C5:9F:99:B3:DB:E6:9D:FA:91:59:54:C4
X509v3 Authority Key Identifier:
keyid:57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/60Jj72yx8YDFn5mz2-ad-pFZVMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.112.0/20
Signature Algorithm: sha256WithRSAEncryption
49:07:17:bf:fe:fb:c1:d5:66:df:af:1f:d2:70:ee:30:09:72:
65:17:b1:ad:44:3c:e0:c1:5a:00:56:2d:95:4e:5a:88:14:d5:
c4:37:09:29:54:72:24:31:53:c3:4e:f8:84:e3:9f:e0:4c:c7:
5a:ac:75:42:d5:17:09:6b:e2:61:90:93:44:ed:e9:fe:fb:af:
56:d1:e8:c7:2b:76:47:7c:c2:1b:c8:52:c1:73:44:9f:bd:87:
46:a8:15:3e:61:45:0d:31:86:86:69:c0:f1:67:e1:cd:d9:62:
96:81:ee:21:8c:4b:26:1d:d4:74:47:1d:09:b9:ba:16:4e:17:
c4:16:e7:e2:07:08:65:80:ca:0a:57:43:db:77:31:67:4b:09:
be:24:28:4b:7c:7b:d4:07:21:44:7c:cb:0a:5e:1f:41:66:8e:
27:80:06:20:6a:61:9a:04:26:3c:2d:f0:20:2b:9b:84:03:16:
39:1b:e5:2e:a9:bb:26:ae:f6:25:85:63:18:99:67:c1:11:9c:
da:50:4f:90:b9:2f:a5:a0:af:7c:63:4b:44:04:d8:ed:a2:33:
1e:10:c6:4f:b0:bc:3e:ba:a4:af:ef:dd:b8:56:b6:3c:bb:3b:
a9:3c:d7:55:61:dd:08:82:bd:ee:06:fa:07:2d:80:2d:ff:53:
91:b1:36:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:15 2025 by rpki-client