Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AnMgOwGm2UlITP2bahEo4Lbs-18.roa
File: AnMgOwGm2UlITP2bahEo4Lbs-18.roa (raw, json)
Hash identifier: KqPhPhtK/+svHCBYEGk58d7Jawuvwx7nBcI/n0wIAkw=
Subject key identifier: 02:73:20:3B:01:A6:D9:49:48:4C:FD:9B:6A:11:28:E0:B6:EC:FB:5F
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEEAC8EFDABEAD460AC78CD80AE069
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AnMgOwGm2UlITP2bahEo4Lbs-18.roa
Signing time: Tue 26 Nov 2024 13:35:14 +0000
ROA not before: Tue 26 Nov 2024 13:35:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40717
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:ea:c8:ef:da:be:ad:46:0a:c7:8c:d8:0a:e0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0273203b01a6d949484cfd9b6a1128e0b6ecfb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:84:71:c9:d1:09:bf:93:31:a0:19:b5:93:88:
df:6c:e5:dc:7e:6a:26:92:bf:91:a5:10:17:1a:b2:
b4:92:f7:58:21:0d:ce:f0:6f:66:bf:eb:9a:66:1a:
56:82:be:e1:7e:90:b7:1e:a0:55:fb:3e:f9:b1:dc:
6e:62:6e:9c:6a:1d:76:04:ae:ce:e8:3d:1f:f5:d9:
84:df:7c:3a:0d:02:e4:c2:85:25:4c:7d:d6:c1:d3:
26:3b:09:a9:b6:1f:88:99:3f:f9:37:3d:4f:71:88:
93:de:4e:70:d9:16:ae:43:c4:16:46:ba:a1:31:dc:
c9:89:c0:35:0c:b1:87:ec:d1:96:64:c6:3c:81:1e:
79:be:db:bc:5c:d2:23:2a:24:51:31:bf:72:da:89:
f8:40:ea:04:cd:09:a7:42:a3:76:52:71:bf:5d:a1:
8c:60:28:ea:89:68:98:36:d1:a3:0a:ca:b6:13:81:
32:26:d2:b8:eb:97:68:cd:64:29:60:dc:27:76:86:
6f:b2:19:42:ef:7e:a2:7c:3e:6c:cc:a5:50:9d:12:
3a:15:21:ec:23:40:dc:42:0b:54:c4:c3:d3:a7:da:
5b:39:c1:da:3a:d1:ec:44:2c:31:31:f5:63:38:2d:
af:14:4e:4b:a0:e4:80:b9:4f:16:ea:01:9c:66:74:
bc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:73:20:3B:01:A6:D9:49:48:4C:FD:9B:6A:11:28:E0:B6:EC:FB:5F
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/AnMgOwGm2UlITP2bahEo4Lbs-18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
68:16:8d:10:4c:10:ee:2f:e8:d1:f6:79:e0:13:9d:69:2e:3b:
cb:5c:81:3a:10:3c:7e:88:6b:a6:ac:76:f4:e7:b6:50:11:7e:
59:82:a7:15:b0:88:a6:d3:11:33:9d:d3:0a:8d:93:d8:7d:9d:
e7:e4:18:92:ec:e7:02:8f:2f:dc:56:1d:70:54:92:77:9f:77:
86:2a:3d:07:78:af:28:65:83:e5:28:14:83:f2:98:ad:66:77:
5b:f6:7c:fb:20:e8:06:c4:2b:86:df:1c:eb:0f:e7:e7:fe:f7:
af:f4:84:31:a7:69:e3:14:26:c8:13:af:50:ea:16:b7:55:44:
a8:b7:b5:21:53:5c:d3:12:ba:91:8e:0a:dc:43:ad:43:69:7a:
1f:71:7d:00:a9:be:ab:0d:18:f6:f0:26:4e:4d:e0:f6:0a:0c:
34:1e:04:0a:b7:ce:8a:67:a9:ef:65:59:5b:a1:cd:6f:92:9a:
aa:c0:ce:b6:e7:f9:64:8f:3d:6b:c1:83:7e:d1:4c:92:70:0d:
c3:b8:da:be:83:0e:16:6f:24:11:47:ec:9f:2f:3e:da:a9:3c:
b9:3c:98:2c:50:da:0d:ba:43:2f:a1:ab:c9:af:5c:04:0c:a1:
d1:d8:df:88:a0:64:c4:e1:5c:52:ad:9b:55:9b:c3:69:28:44:
8d:a9:5a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:22 2025 by rpki-client