Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/N2Gl9lmWW9i9V0XOzm9Ly9s6L9s.roa
File: N2Gl9lmWW9i9V0XOzm9Ly9s6L9s.roa (raw, json)
Hash identifier: Upg8NoPI6+QKdEzomMc1QjmQJ5oEgCugLaQXh9D+6FQ=
Subject key identifier: 37:61:A5:F6:59:96:5B:D8:BD:57:45:CE:CE:6F:4B:CB:DB:3A:2F:DB
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF17D1F4F947A70161DC8EBF98F605
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/N2Gl9lmWW9i9V0XOzm9Ly9s6L9s.roa
Signing time: Tue 26 Nov 2024 13:35:25 +0000
ROA not before: Tue 26 Nov 2024 13:35:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397212
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:17:d1:f4:f9:47:a7:01:61:dc:8e:bf:98:f6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3761a5f659965bd8bd5745cece6f4bcbdb3a2fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:0a:72:bf:7c:d8:1e:ff:df:23:e6:bc:f6:
c0:ed:9d:81:47:f1:62:5d:4a:39:b2:6d:09:09:b1:
79:cc:b6:d1:57:d0:a6:cb:70:cd:ca:29:6e:63:66:
80:70:0f:75:cf:30:85:99:7d:ed:fa:5c:ce:dd:38:
02:c2:c7:e8:cd:7a:68:ea:53:2f:49:10:62:09:3f:
a3:0a:2b:2c:12:c5:0d:4a:ad:e5:d5:9c:01:c5:e0:
e7:0e:35:d9:a4:58:80:9e:f8:0d:1a:e0:d1:f9:2a:
e0:a9:61:a7:47:db:59:a3:0a:15:f3:f4:4a:d6:33:
42:79:f4:d8:11:41:c5:97:35:b9:00:a8:63:af:dd:
89:b9:4a:a6:a5:ee:e2:ec:9f:03:ee:f4:a5:6b:52:
fb:d9:fa:3f:da:ad:c3:2b:df:3b:14:a1:51:eb:82:
aa:72:d3:61:c0:94:8d:e1:d4:f1:ae:64:f6:09:a4:
dd:8e:77:80:ed:2b:79:72:05:aa:82:74:ea:52:c5:
4a:20:9b:12:5e:09:ae:90:25:8e:46:54:9c:d2:ad:
ad:96:b7:dc:f4:73:7c:be:b3:3c:ab:11:36:e2:ee:
01:80:47:3a:11:d8:09:01:7d:00:09:8c:cd:74:47:
0f:7c:e4:b2:56:36:da:c1:0b:f3:3f:96:28:f8:46:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:61:A5:F6:59:96:5B:D8:BD:57:45:CE:CE:6F:4B:CB:DB:3A:2F:DB
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/N2Gl9lmWW9i9V0XOzm9Ly9s6L9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
92:71:00:f6:38:75:30:b0:3b:62:64:f1:7f:f8:56:6e:56:b4:
7e:05:80:8c:2c:29:1f:e8:bd:2e:23:6d:cd:32:b1:00:7c:8d:
9b:71:39:8e:96:66:2b:24:5e:a4:f2:36:76:c3:60:8e:af:04:
37:75:ef:90:03:90:cf:2e:ac:54:b7:04:82:1d:9e:eb:92:08:
50:ad:bb:2f:33:d5:69:b2:08:5f:29:35:6b:b9:72:0a:41:2d:
33:7a:f2:3a:1f:72:42:f3:6a:21:b4:fc:13:d2:17:8e:90:ff:
73:17:f8:4a:cd:6d:5f:9f:39:cb:c0:9b:ff:2c:3e:3e:a6:18:
c8:40:11:3b:f1:d9:f9:3f:d4:a8:b5:03:2c:8c:f0:e0:df:9a:
77:be:3d:f7:40:03:ad:3f:eb:65:0f:f7:5c:98:ae:70:97:ba:
78:be:f4:05:cb:fa:fd:26:7e:e7:53:da:8b:c8:49:e9:cd:42:
6b:78:c4:a0:7b:8f:37:54:72:eb:ac:c2:d1:ae:22:b2:08:bb:
69:d4:a5:c9:c7:65:1f:3f:a9:20:16:22:86:de:4d:13:ed:75:
ff:3d:c5:df:9a:c0:a5:63:05:10:66:87:5e:e3:7d:dd:94:b7:
1e:8f:f2:31:b0:78:7a:35:44:53:af:dc:a6:0c:f7:4f:ec:a3:
e0:8b:d3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:24 2025 by rpki-client