Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AIlxy_bjSEoDdhPrlDW3gtOS6ho.roa
File: AIlxy_bjSEoDdhPrlDW3gtOS6ho.roa (raw, json)
Hash identifier: IG5VUUatNIiTrpfFUrc9kOqxiGnabuFFZxkQ3svwEwc=
Subject key identifier: 00:89:71:CB:F6:E3:48:4A:03:76:13:EB:94:35:B7:82:D3:92:EA:1A
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF15B9EA83AB786F7D3CE26B338B61
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AIlxy_bjSEoDdhPrlDW3gtOS6ho.roa
Signing time: Tue 26 Nov 2024 13:35:24 +0000
ROA not before: Tue 26 Nov 2024 13:35:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397206
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:15:b9:ea:83:ab:78:6f:7d:3c:e2:6b:33:8b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=008971cbf6e3484a037613eb9435b782d392ea1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:67:a3:ec:0d:0f:6a:6d:dd:8a:fa:9d:8d:
00:8d:cf:d8:c7:7e:ae:32:2d:3d:f3:6a:cb:f5:82:
4c:d9:5a:0e:4f:c0:62:ae:3a:b2:c2:6b:9d:d5:b1:
0e:f2:97:a1:a8:6e:17:dd:1f:f6:d0:de:83:35:d8:
71:4e:da:81:d6:d8:b0:12:be:99:0d:a0:d2:d3:80:
31:63:63:cd:2d:4b:f4:e2:ca:9b:86:a6:5a:92:ab:
23:46:4e:e7:99:75:8e:5c:a3:54:81:62:71:dd:de:
47:95:ef:16:52:d7:12:73:15:8f:51:5f:d5:04:bf:
b6:41:63:0c:25:37:b0:cc:80:c5:4d:d7:05:18:5a:
a8:4f:82:39:4d:72:cc:a9:29:23:ef:04:55:02:6a:
27:8c:13:77:f8:df:55:3c:0c:b6:67:e5:6f:92:cb:
1a:f7:7e:3c:3c:e0:bd:5f:fe:e0:dd:4a:15:81:c7:
df:a0:43:96:ed:b1:f6:23:6f:82:a2:1b:ba:11:16:
33:83:17:10:a4:5f:b2:86:53:02:c7:6b:6a:f4:eb:
9d:14:3c:da:11:d8:58:21:34:70:a7:80:3e:9a:97:
9d:d7:e7:59:9f:fb:8c:72:06:9e:a8:6a:dd:50:2c:
a4:38:50:ce:25:31:b9:f6:0d:f3:99:07:8a:b4:13:
f4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:89:71:CB:F6:E3:48:4A:03:76:13:EB:94:35:B7:82:D3:92:EA:1A
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AIlxy_bjSEoDdhPrlDW3gtOS6ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
32:12:ec:5d:7b:5d:61:35:83:e2:8a:9d:e5:33:de:8b:93:90:
f6:a0:56:60:a2:fe:45:c2:dd:34:c2:dc:86:d3:9f:dd:17:c8:
1a:d4:35:34:1d:9c:f1:f3:66:ed:54:8f:12:23:59:45:a0:28:
b3:e5:51:c9:95:06:fa:f2:cf:a2:bd:db:f4:e2:6d:50:ca:40:
d4:97:b9:37:85:ce:f7:88:a5:8a:8a:0c:08:11:15:1a:87:bd:
94:33:9f:2a:29:73:67:04:79:b6:a3:3e:ec:b2:ea:de:68:a3:
f8:87:4d:df:23:02:56:a8:10:86:9f:0f:03:0a:5c:85:c2:83:
00:80:19:d3:e2:d9:49:fe:6d:9b:a2:9f:97:4c:ee:ef:ce:17:
50:65:a3:5b:3c:4f:02:93:e2:11:25:56:5d:1e:9e:b6:73:90:
04:2b:3f:31:92:53:1f:36:16:33:bd:05:a7:61:f2:02:aa:2a:
5f:00:6d:94:08:1f:c3:25:6d:ed:c7:33:9d:41:8e:b8:5b:58:
ea:73:63:61:db:e7:f5:da:70:05:75:fb:a0:71:9a:e1:f7:63:
e9:78:0a:7f:8c:4f:16:5e:4d:5d:d2:fc:a3:22:f1:14:bb:5c:
c1:44:cf:62:21:0b:3a:0b:ed:2f:11:08:51:25:ac:7e:39:65:
db:91:44:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:43 2025 by rpki-client