Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/6rilhzpVtc_4jsKfGfKlTFFZYJk.roa
File: 6rilhzpVtc_4jsKfGfKlTFFZYJk.roa (raw, json)
Hash identifier: nf+UGfdshUqfb0rkhrz7du0Eoii33NaCpCPV414xKoA=
Subject key identifier: EA:B8:A5:87:3A:55:B5:CF:F8:8E:C2:9F:19:F2:A5:4C:51:59:60:99
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEE2871F9EF420E13F5400D213905E
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/6rilhzpVtc_4jsKfGfKlTFFZYJk.roa
Signing time: Tue 26 Nov 2024 13:35:11 +0000
ROA not before: Tue 26 Nov 2024 13:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36617
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:e2:87:1f:9e:f4:20:e1:3f:54:00:d2:13:90:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eab8a5873a55b5cff88ec29f19f2a54c51596099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:98:18:6a:b3:94:a5:74:d9:77:b8:f5:1b:76:
46:fb:55:cd:71:06:4f:7b:46:08:f5:89:37:88:ed:
3a:df:84:cd:a7:f5:f9:78:4e:e4:fb:85:7b:da:a9:
35:da:d1:21:92:71:b3:19:86:79:86:4f:03:36:e1:
a8:07:c2:40:38:ff:89:5a:57:1c:85:fb:ec:a5:8d:
a9:47:48:55:da:79:9b:5d:cf:41:d6:6b:29:c0:ca:
22:af:a0:ec:ff:89:39:d0:79:25:60:4e:bc:cb:b2:
54:31:cc:b3:9f:97:18:80:34:e7:e3:8b:d6:f9:9e:
59:22:21:ed:43:1b:63:ae:35:b8:99:e9:d1:ea:f8:
f8:c6:8f:85:8d:a7:e4:fc:4b:39:9e:9b:c0:ac:d9:
0d:89:85:c4:8c:77:03:0f:b9:f6:ce:98:e3:a2:4a:
c8:5d:be:e8:ca:29:af:f2:a6:66:12:32:a7:74:5e:
4b:0e:85:25:e5:2b:bc:c9:c7:0a:c3:83:0c:eb:48:
25:da:76:d8:f8:c5:14:db:50:c1:4b:9d:b5:10:61:
d9:1b:fd:13:be:0c:9d:c7:87:68:d8:02:24:4b:c4:
52:82:d2:82:b7:2a:44:70:1d:58:a3:b8:83:6b:a0:
2b:b2:30:9b:06:40:c2:50:c3:20:a1:25:c3:c4:1e:
0b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B8:A5:87:3A:55:B5:CF:F8:8E:C2:9F:19:F2:A5:4C:51:59:60:99
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/6rilhzpVtc_4jsKfGfKlTFFZYJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
41:f6:42:e5:d2:38:56:34:55:45:6d:3d:5d:0d:a9:61:69:5a:
31:ba:d2:fd:eb:79:db:63:da:88:81:da:00:91:51:3e:96:a5:
27:05:09:a8:e2:09:43:d1:9a:24:b8:67:b8:ec:33:5b:35:67:
a5:97:52:0d:dd:86:57:28:eb:f3:dc:94:c2:25:3c:dd:2b:f8:
19:ab:66:74:e7:83:0b:83:10:26:2d:65:1e:d9:1c:ee:c5:e3:
76:a7:96:36:59:38:b7:fa:9b:13:c5:ca:35:09:17:d2:4c:91:
ad:cb:7b:5b:0b:b2:93:37:c3:67:14:c6:2a:d8:39:39:77:f6:
62:78:19:5d:33:80:67:bc:71:d2:77:b2:73:c4:96:83:0c:eb:
18:d8:b4:7b:38:6d:cf:7a:9e:5b:0a:f0:ae:d0:b1:c0:ec:83:
f0:79:bf:db:0d:7c:bd:9d:bb:bf:b2:1f:00:8f:a4:16:be:0d:
2f:95:c3:39:31:36:67:af:93:2f:f3:30:c7:36:e7:4c:49:08:
d8:4c:58:63:1b:37:84:37:af:1e:07:84:ca:92:10:0a:d6:79:
d2:df:e2:5b:79:48:d5:c2:35:52:bc:ae:e2:61:67:27:98:9e:
ac:a3:61:ba:e8:7a:8a:58:74:14:6b:c2:c0:fd:ce:0d:96:2b:
4c:a8:76:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:51 2025 by rpki-client