Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/3h9I2tXlJEoQ8GyNYUppDAxLQtY.roa
File: 3h9I2tXlJEoQ8GyNYUppDAxLQtY.roa (raw, json)
Hash identifier: NtwyHJxufISP2G/u2YXgQFIBOjX+4LU77H06wIlx1C0=
Subject key identifier: DE:1F:48:DA:D5:E5:24:4A:10:F0:6C:8D:61:4A:69:0C:0C:4B:42:D6
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 018F154C9BF8911D67592C5AF5A574D13585
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/3h9I2tXlJEoQ8GyNYUppDAxLQtY.roa
Signing time: Thu 25 Apr 2024 12:48:13 +0000
ROA not before: Thu 25 Apr 2024 12:48:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7342
IP address blocks: 81.19.192.0/24 maxlen: 24
81.19.193.0/24 maxlen: 24
81.19.196.0/24 maxlen: 24
81.19.197.0/24 maxlen: 24
81.19.198.0/24 maxlen: 24
81.19.199.0/24 maxlen: 24
81.19.200.0/24 maxlen: 24
81.19.201.0/24 maxlen: 24
81.19.202.0/24 maxlen: 24
81.19.203.0/24 maxlen: 24
81.19.204.0/24 maxlen: 24
81.19.205.0/24 maxlen: 24
81.19.206.0/24 maxlen: 24
81.19.207.0/24 maxlen: 24
193.109.220.0/24 maxlen: 24
194.110.75.0/24 maxlen: 24
217.30.80.0/24 maxlen: 24
217.30.81.0/24 maxlen: 24
217.30.82.0/24 maxlen: 24
217.30.83.0/24 maxlen: 24
217.30.84.0/24 maxlen: 24
217.30.85.0/24 maxlen: 24
217.30.87.0/24 maxlen: 24
217.30.92.0/24 maxlen: 24
217.30.94.0/24 maxlen: 24
217.30.95.0/24 maxlen: 24
2a10:eec0::/48 maxlen: 48
2a10:eec0:1::/48 maxlen: 48
2a10:eec0:2::/48 maxlen: 48
2a10:eec0:3::/48 maxlen: 48
2a10:eec0:4::/48 maxlen: 48
2a10:eec0:5::/48 maxlen: 48
2a10:eec0:6::/48 maxlen: 48
2a10:eec0:7::/48 maxlen: 48
2a10:eec0:8::/48 maxlen: 48
2a10:eec0:9::/48 maxlen: 48
2a10:eec0:a::/48 maxlen: 48
2a10:eec0:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Apr 2024 12:53:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:4c:9b:f8:91:1d:67:59:2c:5a:f5:a5:74:d1:35:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Apr 25 12:48:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de1f48dad5e5244a10f06c8d614a690c0c4b42d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f9:2a:97:d6:78:92:7d:7b:5b:4f:eb:64:46:
89:9e:f6:82:24:5c:04:d3:93:17:f0:a3:f4:22:73:
44:a0:bf:39:df:dd:bd:d2:0f:a3:e6:79:06:63:da:
30:d7:0b:b2:cc:a3:92:60:38:0a:60:4a:5d:22:ef:
3a:97:84:bf:a3:bf:77:83:6f:71:a5:3f:60:80:a4:
9e:e9:52:f6:1b:df:01:8e:99:f1:37:35:08:0f:6e:
e7:cb:12:5f:d2:72:61:1d:9e:fa:ca:6d:c2:2e:60:
00:8b:c7:94:ab:19:cb:75:ed:05:da:6d:da:ea:d9:
99:46:e9:d0:84:47:ad:3f:f2:5f:71:b4:a0:53:63:
c2:c3:c9:e2:a1:aa:46:ca:88:68:fa:bf:a9:62:7d:
b7:21:67:5f:5a:f0:71:09:0b:30:e0:8d:ae:08:a3:
96:90:98:5c:8a:27:e3:0c:2b:70:f0:cf:41:69:5d:
86:71:d4:d4:07:81:e1:f1:d5:6d:3e:7d:1d:91:32:
8a:5e:21:4d:82:c6:7c:1d:1b:a5:d2:5e:0e:1a:d4:
f6:6c:63:3d:6b:b1:1b:36:10:13:59:ed:be:8d:00:
53:6b:07:ae:0e:ba:b3:56:06:8c:0a:2b:a1:20:b4:
b5:48:be:70:c6:1b:5b:67:f0:d0:79:70:fd:b8:28:
48:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1F:48:DA:D5:E5:24:4A:10:F0:6C:8D:61:4A:69:0C:0C:4B:42:D6
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/3h9I2tXlJEoQ8GyNYUppDAxLQtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.192.0/23
81.19.196.0-81.19.207.255
193.109.220.0/24
194.110.75.0/24
217.30.80.0-217.30.85.255
217.30.87.0/24
217.30.92.0/24
217.30.94.0/23
IPv6:
2a10:eec0::-2a10:eec0:a:ffff:ffff:ffff:ffff:ffff
2a10:eec0:c::/48
Signature Algorithm: sha256WithRSAEncryption
98:e0:b8:16:0d:90:6c:c0:05:81:c8:6f:51:b4:42:82:44:0e:
ec:b3:cc:54:9e:51:ac:cc:e9:f6:67:6b:5d:5c:0f:8c:0a:82:
7b:b7:c9:85:74:a2:a3:bf:ce:0b:02:85:e4:41:22:5e:68:06:
de:cb:97:08:eb:d4:5a:3f:b8:3c:78:f3:b9:59:fd:b2:5e:f2:
41:a1:47:fb:1e:6b:46:62:d9:b9:78:24:d4:9a:34:ba:db:e6:
9d:e1:00:71:81:80:10:38:3c:c9:4d:52:09:8d:7b:23:83:69:
8b:9f:58:21:6f:de:f3:2f:f3:8d:5c:08:16:3a:24:5f:78:88:
63:8e:0b:43:41:59:1e:e4:33:5c:0e:43:46:7e:da:92:8f:97:
ce:32:05:16:98:be:dd:7e:e4:b3:1d:64:84:85:8f:d6:67:dc:
61:cf:60:87:da:2b:67:d5:b7:41:88:a6:0e:6b:4c:52:6b:ed:
7a:03:35:9a:be:a9:63:91:6b:41:de:3e:e1:2c:1a:6f:95:5f:
1d:0c:a9:f5:d5:1e:4e:ed:7c:34:01:4c:8e:f7:25:69:08:b8:
1c:c6:8a:0e:dc:3a:59:a7:b4:94:1b:0d:a9:90:95:40:99:c6:
2c:02:5e:b3:8f:cc:0b:00:ad:a0:e9:30:e6:d4:1e:fc:c8:cd:
e3:ed:6f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 18:14:25 2024 by rpki-client on console-fra.rpki-client.org