Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/8mIsmUJC9FzLmfPVi__ivasDntQ.roa
File: 8mIsmUJC9FzLmfPVi__ivasDntQ.roa (raw, json)
Hash identifier: HG8Ju1Rf4ClAQOq9NU0+dnOFbv5ooPqVrtMj9Sp3DPg=
Subject key identifier: F2:62:2C:99:42:42:F4:5C:CB:99:F3:D5:8B:FF:E2:BD:AB:03:9E:D4
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF4EB9454811AF4415BE55B5A579B
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/8mIsmUJC9FzLmfPVi__ivasDntQ.roa
Signing time: Tue 26 Nov 2024 13:35:16 +0000
ROA not before: Tue 26 Nov 2024 13:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396564
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f4:eb:94:54:81:1a:f4:41:5b:e5:5b:5a:57:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2622c994242f45ccb99f3d58bffe2bdab039ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:82:3d:76:17:0e:ae:de:df:68:ac:bf:a2:d3:
41:8d:ce:30:58:f8:09:7d:d1:1a:26:c3:12:91:3f:
61:5f:5f:e8:41:9c:f1:05:7c:ff:49:3e:e9:06:d0:
5f:84:9d:94:b7:0f:67:94:43:b2:7a:82:37:51:75:
d7:08:66:c3:9e:4f:b5:b1:47:05:79:dd:c1:4a:f2:
3e:a3:fd:3c:bc:98:bb:d0:88:af:c0:62:89:9c:d9:
b7:a0:9b:2e:8d:28:53:2d:c9:21:f4:5e:6c:3f:06:
81:ee:a3:70:37:6e:b0:5a:3d:a7:66:f2:4f:81:b9:
37:45:9b:2e:72:bb:ce:69:f4:40:24:40:8a:13:8e:
4c:8e:0a:d8:d0:65:54:bc:91:15:b5:74:58:e9:8d:
05:f3:dd:5b:48:7d:a5:9e:34:f2:a2:15:f8:83:a4:
cf:4e:83:de:21:17:93:54:76:35:e6:b8:8c:16:96:
fe:39:91:b6:8e:f0:a1:6a:78:8b:7d:af:0f:ab:86:
c7:03:f6:ae:2e:e0:87:cc:0b:fa:c7:f5:66:60:c7:
cd:3f:6b:66:31:12:82:8e:91:59:fb:4e:67:c2:78:
3b:81:e2:d8:5f:1d:bf:c2:2c:64:24:9b:fe:41:55:
8f:4b:e9:5c:8e:2f:17:50:ab:f8:02:ac:13:1b:61:
55:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:62:2C:99:42:42:F4:5C:CB:99:F3:D5:8B:FF:E2:BD:AB:03:9E:D4
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/8mIsmUJC9FzLmfPVi__ivasDntQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
7e:8e:75:f8:91:bd:82:93:cd:81:a4:8c:df:fa:21:0e:41:da:
74:c5:3c:2e:52:f6:81:58:5b:97:b2:b9:56:ec:9e:57:b3:3c:
65:90:d8:2f:14:dd:3a:8e:3a:4c:71:f1:37:6e:70:ae:58:c8:
72:31:5c:e6:eb:59:b7:22:bf:e9:74:06:3d:b1:29:8b:05:33:
6d:78:96:c3:0e:b9:31:00:bb:7a:f1:fe:18:3b:01:a5:52:bc:
97:fb:ec:43:a4:2a:a0:76:32:4e:5e:12:ec:28:04:8e:34:4c:
cf:7f:64:ce:4e:60:a5:59:c7:1a:23:d5:7d:dd:c9:dd:69:fe:
12:54:77:23:39:7f:b9:27:e2:f9:58:eb:6f:02:e0:45:be:63:
a8:5a:d6:19:5c:e2:ba:6e:67:bd:ea:4a:de:cb:79:25:35:ee:
e9:66:25:88:3c:47:2b:22:05:2b:2f:a1:ef:98:6f:42:3b:e3:
96:a1:b9:90:d4:02:2d:bc:d2:a4:16:da:01:23:da:14:53:69:
98:12:80:c5:2c:3d:d8:18:40:5a:f8:de:38:76:a8:2f:c3:69:
21:30:71:b1:c9:95:ee:40:58:34:c8:1b:59:11:f3:f5:10:84:
8d:b8:4b:05:28:12:76:7b:a5:43:02:7d:9d:99:ce:cb:77:47:
82:d3:5f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:01 2025 by rpki-client