Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/CuXR3CTk0lXdgBfLOBopdiAiSMw.roa
File: CuXR3CTk0lXdgBfLOBopdiAiSMw.roa (raw, json)
Hash identifier: MPSc5YVjiiK9eaci/AjrcMN0VivwdV+NheI1BktV/QI=
Subject key identifier: 0A:E5:D1:DC:24:E4:D2:55:DD:80:17:CB:38:1A:29:76:20:22:48:CC
Certificate issuer: /CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Certificate serial: 018FCE4C25A364AE15F9801B4807EE50442D
Authority key identifier: 57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/CuXR3CTk0lXdgBfLOBopdiAiSMw.roa
Signing time: Fri 31 May 2024 10:57:27 +0000
ROA not before: Fri 31 May 2024 10:57:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48129
IP address blocks: 81.30.124.0/24 maxlen: 24
81.30.125.0/24 maxlen: 24
81.30.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 10:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:4c:25:a3:64:ae:15:f9:80:1b:48:07:ee:50:44:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Validity
Not Before: May 31 10:57:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ae5d1dc24e4d255dd8017cb381a2976202248cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:37:a2:0c:d6:c5:c6:e9:21:1b:a7:ad:c0:
40:98:c4:15:14:4b:15:cc:15:1a:8e:6d:7d:e8:46:
a3:1a:f4:34:c0:f0:0c:02:5f:27:a2:17:5b:31:42:
cb:e5:4d:b4:f9:be:59:54:bf:28:b5:96:0a:b3:f6:
f2:82:6c:ca:fc:cd:5d:a1:22:01:ec:4d:bb:2b:03:
b9:e6:3c:fe:e4:a0:5d:4a:6e:ea:8d:ca:16:b5:fb:
83:27:7b:54:21:f1:5e:26:23:68:11:75:f4:24:32:
e1:7d:48:2f:44:a5:6c:21:ea:aa:9b:ed:c5:ea:e8:
7c:87:61:59:9b:17:fa:33:bc:7f:17:bb:16:fa:6d:
1e:99:ee:ea:54:f7:ae:9d:64:bb:1d:2b:98:49:cb:
48:1a:0e:4f:39:e1:e9:6b:20:82:6c:36:a6:66:d5:
39:73:c5:b1:07:8d:be:c6:f5:ca:1a:6f:7d:4d:33:
41:c4:bb:71:1d:ff:74:27:1f:73:42:18:ed:ec:52:
b6:1f:8c:97:fe:60:c9:06:d8:c2:82:4c:69:3b:1a:
90:52:84:7f:63:8f:2c:fa:49:a7:84:8a:90:d4:35:
ba:49:76:81:0e:8d:76:33:69:cb:f7:98:30:02:e7:
b1:21:66:f4:2d:03:5a:95:55:bb:34:78:28:31:89:
e7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E5:D1:DC:24:E4:D2:55:DD:80:17:CB:38:1A:29:76:20:22:48:CC
X509v3 Authority Key Identifier:
keyid:57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/CuXR3CTk0lXdgBfLOBopdiAiSMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.124.0-81.30.126.255
Signature Algorithm: sha256WithRSAEncryption
1e:a3:f9:b5:49:07:f6:9f:db:7b:37:f2:da:76:0d:6b:08:a7:
a2:19:a7:53:c4:9e:b0:1c:35:50:b0:f0:d6:d1:ef:06:01:2f:
34:ee:86:bd:92:df:8e:66:e8:e8:be:44:32:a9:43:2f:89:1b:
8e:d1:0d:5b:8d:f8:8b:38:55:7f:9d:c9:54:b5:07:5e:07:33:
7d:e2:67:7e:55:e9:be:d9:45:b1:d6:05:15:78:84:bf:97:5b:
29:41:e9:8b:2e:92:45:9e:b3:f4:84:56:7d:eb:b2:8e:75:bf:
e6:b5:b8:e8:8a:60:2c:1a:b8:5b:63:a8:4b:e7:e5:cf:ef:ed:
d4:4d:ef:28:5f:be:ee:50:f3:64:5c:46:68:cd:1d:0d:59:03:
64:61:f8:d7:33:22:f6:9b:f2:30:96:e3:3a:52:d4:b4:04:78:
48:f1:32:15:80:2e:c6:a2:1d:02:d2:42:6a:1d:18:37:d5:7f:
82:ed:b4:b9:4d:e6:df:22:c7:df:b2:b8:b6:b2:90:1e:0f:2c:
29:e9:2a:17:ea:ba:35:cb:58:81:28:86:f6:45:3c:28:b5:7f:
44:c1:67:0c:e9:81:db:00:38:4f:43:62:90:d6:d1:6e:98:b8:
0d:85:a2:ac:59:dc:aa:a9:9a:32:05:74:cd:f2:45:08:08:cd:
fd:38:26:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:48:33 2025 by rpki-client