Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/0N3MgYRssf1wrgqYNyEpYIBBJdE.roa
File: 0N3MgYRssf1wrgqYNyEpYIBBJdE.roa (raw, json)
Hash identifier: 8QtqccXYv3E3NEj2pGHzzkuapsaepunaYncEs5qGCJM=
Subject key identifier: D0:DD:CC:81:84:6C:B1:FD:70:AE:0A:98:37:21:29:60:80:41:25:D1
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEE676DEB302F2C4D5AF1F3B00079D
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/0N3MgYRssf1wrgqYNyEpYIBBJdE.roa
Signing time: Tue 26 Nov 2024 13:35:12 +0000
ROA not before: Tue 26 Nov 2024 13:35:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36623
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:e6:76:de:b3:02:f2:c4:d5:af:1f:3b:00:07:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0ddcc81846cb1fd70ae0a9837212960804125d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a1:22:48:b4:1f:85:63:a7:0f:aa:bc:b9:77:
59:f4:fb:6b:f3:53:ef:35:99:8e:4d:2f:b7:2b:bc:
ab:86:1e:64:bd:ed:e2:96:55:3c:3f:5e:87:75:0c:
63:46:7c:ac:c0:5a:b6:74:27:80:90:fc:60:95:52:
ff:75:c7:34:a4:74:40:df:3a:0b:94:26:2c:39:2a:
e1:4e:29:93:34:6e:7b:e1:7d:70:d7:92:29:4b:a9:
23:66:ea:ed:7d:c4:12:65:43:7d:8d:f6:1d:34:24:
4d:fe:0f:c8:cd:07:3e:41:6c:b7:3d:62:7a:d9:7e:
4e:c8:8a:37:74:63:5c:8e:69:85:72:c4:ab:f2:0d:
7a:f9:be:20:fe:6f:37:05:3b:c5:fe:db:cf:60:3b:
02:70:ac:4a:fe:70:89:46:b7:ce:64:95:37:7d:c6:
cd:a0:51:aa:f8:a4:dc:05:e9:0f:62:7f:48:5b:a8:
90:a9:62:05:26:29:a6:88:bf:49:67:91:da:6f:01:
83:f7:72:a7:41:e7:54:cc:0c:88:32:a6:76:62:bf:
18:8d:30:0c:31:d1:ef:e7:c6:2f:d9:c9:1b:b1:53:
83:c3:b4:c4:9d:8f:6c:84:eb:4a:06:da:d4:89:8e:
7e:35:e4:c2:39:6a:7c:02:28:19:27:c4:9a:44:6a:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DD:CC:81:84:6C:B1:FD:70:AE:0A:98:37:21:29:60:80:41:25:D1
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/0N3MgYRssf1wrgqYNyEpYIBBJdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
64:06:29:b8:77:bc:1b:70:e0:0a:bb:7c:89:07:6c:29:81:5d:
0f:89:0b:cb:6a:e7:3b:18:81:85:c0:27:df:b5:2f:31:7a:44:
2e:6c:4d:0f:62:7a:49:70:29:53:eb:a1:18:47:6a:d0:a3:da:
84:67:09:1b:2c:5a:6f:fe:d3:e9:ec:71:d1:2a:af:1a:86:b1:
96:26:67:6f:68:dc:7a:59:dd:2b:46:fa:44:5d:d0:71:20:56:
76:99:5f:a4:c5:8a:15:85:a3:99:5e:c4:f4:d7:c1:3c:7e:1c:
d0:70:ec:44:c8:af:94:3a:fa:d8:09:08:2b:bc:0a:32:d8:66:
74:7f:16:73:b2:60:01:cd:56:2c:1b:9a:22:44:40:08:cc:b3:
8c:44:be:40:88:d7:40:28:0b:68:95:fa:07:49:5e:5d:26:4c:
7d:1f:ea:52:e5:74:3f:c9:ea:08:6b:b9:ef:ba:4d:61:bd:ba:
d1:d4:40:53:aa:b2:02:ba:63:39:2d:76:21:d3:b6:66:8b:0b:
3e:5f:92:68:09:ee:e8:03:a8:9b:b9:14:98:2b:fa:ef:3b:4b:
b3:72:51:17:ac:0d:a5:62:a5:38:4b:eb:cf:9c:45:4d:0c:0f:
cc:91:b0:ed:09:7c:90:15:db:9d:40:01:35:ac:12:7b:0c:86:
e4:78:f9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:29 2025 by rpki-client