Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/MW_DsOE2I0zwuERsa3sKXNi5jr8.roa
File: MW_DsOE2I0zwuERsa3sKXNi5jr8.roa (raw, json)
Hash identifier: cb63ELXtHwDyKviowWAiDVKBiBxUfApbAe++3LU3cpg=
Subject key identifier: 31:6F:C3:B0:E1:36:23:4C:F0:B8:44:6C:6B:7B:0A:5C:D8:B9:8E:BF
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEE81D6FC58E55F02A4C53A7486B9D
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/MW_DsOE2I0zwuERsa3sKXNi5jr8.roa
Signing time: Tue 26 Nov 2024 13:35:13 +0000
ROA not before: Tue 26 Nov 2024 13:35:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36627
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:e8:1d:6f:c5:8e:55:f0:2a:4c:53:a7:48:6b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=316fc3b0e136234cf0b8446c6b7b0a5cd8b98ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:e7:98:d7:0a:de:2f:f9:28:13:15:10:88:
e6:f8:2e:b7:ec:95:1e:53:49:bc:2b:62:de:88:27:
3f:c3:69:a9:de:57:39:da:ce:1a:1d:6d:33:cb:f2:
ff:33:a6:3e:61:24:d0:c9:fe:72:3e:f7:8a:26:60:
05:28:8f:f9:2a:b0:fa:52:13:bb:ec:70:bc:30:65:
ad:d5:25:d6:fe:97:ef:b1:f0:9c:a3:e5:f1:29:f2:
11:80:40:93:55:83:23:f2:ad:bf:fc:03:f0:66:4e:
cb:40:15:44:66:05:e1:2e:1b:34:f4:fe:f7:50:27:
be:5a:49:fd:f5:1a:c9:6d:1c:a5:8d:48:19:37:eb:
a3:71:70:dd:5d:5b:82:66:b8:8a:be:f7:f1:01:6f:
12:83:46:d7:b2:3e:0b:8a:c6:c8:85:25:13:ac:ae:
6e:b9:fd:f7:a9:01:f1:16:0b:b4:dc:fe:22:2c:8f:
82:ea:27:10:5a:c1:b7:6c:5f:52:e1:c3:ec:94:07:
df:19:8f:61:ee:75:2b:2d:a2:fd:0e:af:45:16:9b:
eb:ed:c9:8a:2b:ba:90:af:1d:ea:22:29:9b:ee:61:
c1:41:90:c6:fa:83:4e:75:86:9b:45:05:56:8b:f7:
36:8c:05:16:df:90:99:e1:57:0c:4d:f1:3c:df:f4:
b7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6F:C3:B0:E1:36:23:4C:F0:B8:44:6C:6B:7B:0A:5C:D8:B9:8E:BF
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/MW_DsOE2I0zwuERsa3sKXNi5jr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
6c:3a:87:33:66:4c:fa:cf:b5:62:41:4d:f5:9e:37:f4:8b:87:
47:dc:7d:61:05:13:98:83:59:03:ae:3c:a5:d1:35:0e:0f:4f:
6f:8b:aa:f7:cd:60:fd:a6:18:62:50:4f:68:11:71:7d:49:06:
73:94:f9:5f:80:f6:9f:79:1d:02:0f:5a:e6:3e:fe:ab:67:56:
7e:b6:a3:75:1a:bd:98:57:63:09:d2:e6:53:ab:58:e5:94:24:
07:92:01:df:10:69:8e:ce:59:52:b0:0a:59:7f:ec:22:30:21:
c6:67:af:80:ef:56:ed:35:af:e4:79:b7:94:a6:8a:fa:30:c8:
4a:74:d5:5f:40:a3:13:0f:66:a8:9c:11:ef:a5:6e:7e:32:4e:
9a:10:c3:33:61:c7:3a:3f:f4:1d:2a:b5:b4:6c:a1:f0:d3:ff:
5b:d2:c0:27:1c:24:23:64:53:8a:4b:68:46:c0:0f:c0:f8:24:
b7:cd:b0:d5:16:2f:bd:0c:2c:04:c6:66:09:d9:21:38:2e:f8:
d8:aa:10:92:e7:2d:1d:17:77:6c:d2:45:5c:59:09:13:c5:34:
c4:30:f9:eb:e2:3e:6d:55:40:cf:a0:13:cf:21:d6:15:ab:85:
a8:ef:39:c9:1a:f9:9f:dc:e3:ee:d7:c9:95:9a:0c:49:9e:c2:
62:ad:17:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:34 2025 by rpki-client