Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/M2Kd_rlU1Az6k__oiwEbogPpo-0.roa
File: M2Kd_rlU1Az6k__oiwEbogPpo-0.roa (raw, json)
Hash identifier: qseu+GOnLW3arqR/WjBoQ+Pnrhl3zuc96PKNH14QVp4=
Subject key identifier: 33:62:9D:FE:B9:54:D4:0C:FA:93:FF:E8:8B:01:1B:A2:03:E9:A3:ED
Certificate issuer: /CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
Certificate serial: 0192961B69943F345176CB0AF1493E1C8908
Authority key identifier: A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/M2Kd_rlU1Az6k__oiwEbogPpo-0.roa
Signing time: Wed 16 Oct 2024 16:13:51 +0000
ROA not before: Wed 16 Oct 2024 16:13:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34390
IP address blocks: 81.95.195.0/24 maxlen: 24
81.95.197.0/24 maxlen: 24
81.95.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:96:1b:69:94:3f:34:51:76:cb:0a:f1:49:3e:1c:89:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4824308bc83b4ee56f1c0c1b9fbfc311b0cd44a
Validity
Not Before: Oct 16 16:13:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33629dfeb954d40cfa93ffe88b011ba203e9a3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:54:32:4d:d9:5b:be:c9:ff:cf:d5:40:41:
2b:22:48:b9:06:c2:62:4b:36:e1:e1:5b:3d:08:40:
32:f2:0b:1f:09:98:5a:86:e7:f1:e7:75:0f:87:93:
e1:e1:4c:21:82:09:dc:85:a9:34:d7:a1:90:18:1a:
4b:e1:74:4c:d9:0b:6a:63:e7:05:91:6e:6a:56:16:
d9:15:0b:03:45:85:12:07:cd:1c:7f:b0:a9:99:44:
46:2b:f3:ea:a0:00:1a:a6:c3:15:0e:5f:a8:35:af:
c7:13:f5:dd:b9:e2:98:d0:13:a3:9a:fb:c3:f7:5f:
5d:f3:30:cd:6d:9f:3d:43:72:0e:0c:f5:30:2a:7b:
8c:24:24:da:97:ae:1c:14:85:6e:e7:1d:c2:31:85:
ea:6c:96:c9:5a:5c:4e:09:37:4e:67:e7:6a:6e:39:
eb:e2:63:6e:99:c6:f7:d3:fd:65:f6:00:c5:a9:74:
2a:d7:5a:06:9f:b4:c7:02:80:26:5e:1c:7f:7f:b2:
04:a4:36:eb:5d:b2:ce:73:87:43:aa:79:90:ab:2f:
76:0d:3b:06:bd:d8:9a:28:e6:2d:7d:4f:01:3a:71:
db:50:eb:a3:22:2e:4c:ed:d2:15:94:e4:cf:73:56:
39:0f:62:02:db:b0:db:c5:dd:73:7a:4a:6f:20:35:
85:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:62:9D:FE:B9:54:D4:0C:FA:93:FF:E8:8B:01:1B:A2:03:E9:A3:ED
X509v3 Authority Key Identifier:
keyid:A4:82:43:08:BC:83:B4:EE:56:F1:C0:C1:B9:FB:FC:31:1B:0C:D4:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pIJDCLyDtO5W8cDBufv8MRsM1Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/M2Kd_rlU1Az6k__oiwEbogPpo-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5feb13-9e43-4325-85c9-196e6f375fd6/1/pIJDCLyDtO5W8cDBufv8MRsM1Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.195.0/24
81.95.197.0-81.95.198.255
Signature Algorithm: sha256WithRSAEncryption
09:9e:65:ea:a3:71:0e:dd:e3:93:68:99:01:d2:6d:9a:ed:eb:
8c:7c:ea:f7:35:48:21:bd:e5:e9:7a:e2:92:c7:03:67:62:ef:
19:9d:3e:97:93:cc:9e:78:d0:48:1d:eb:84:f3:c8:c6:4a:53:
a7:08:e4:4b:48:f1:f7:f4:d8:fe:50:3e:c8:ec:18:57:a6:d2:
b9:b6:b4:4e:b2:a0:4a:54:97:49:b9:22:38:7e:e8:1f:7f:8f:
ec:cf:12:39:eb:17:05:19:45:30:e8:7c:54:bf:4b:d2:05:92:
2d:64:60:6b:cb:3a:32:f9:dd:b4:6b:85:c5:ae:35:b9:92:ac:
36:46:8b:46:ba:22:bd:7c:aa:95:ba:f8:11:4c:b1:23:35:c8:
c4:aa:9c:50:ba:c8:e6:b1:ad:b2:13:57:15:00:59:13:d3:d8:
cc:53:03:6a:82:17:4c:5e:f6:f3:69:51:84:fa:8b:2d:3a:d4:
f9:0a:4d:06:1b:d4:12:bd:07:a0:9c:ad:4c:23:61:fa:8a:33:
a3:98:07:69:54:13:8e:3b:d4:2e:f4:c5:46:78:aa:9c:b1:c2:
2a:88:a1:0b:0b:b2:35:57:b1:08:29:15:1e:fa:07:0b:d6:ad:
42:84:8e:44:f7:04:98:bb:5a:67:f1:58:43:5b:4b:28:48:d4:
a3:2a:32:09
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:19 2025 by rpki-client