Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/O0fZGyYU7JqvYbkJbe6MYDDnSCA.roa
File: O0fZGyYU7JqvYbkJbe6MYDDnSCA.roa (raw, json)
Hash identifier: 7Mk8PD1UwnYC8LORBh93a194syBDEr2mr1ni7jiDhmE=
Subject key identifier: 3B:47:D9:1B:26:14:EC:9A:AF:61:B9:09:6D:EE:8C:60:30:E7:48:20
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEFEB49FA66714F5B57F84DFD779D8
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/O0fZGyYU7JqvYbkJbe6MYDDnSCA.roa
Signing time: Tue 26 Nov 2024 13:35:19 +0000
ROA not before: Tue 26 Nov 2024 13:35:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396584
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:fe:b4:9f:a6:67:14:f5:b5:7f:84:df:d7:79:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b47d91b2614ec9aaf61b9096dee8c6030e74820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8c:c5:27:5d:d0:d7:ad:a5:b1:6c:f7:04:b7:
96:c2:45:6a:cc:a9:6b:24:28:5e:aa:29:56:bf:ef:
67:d3:9d:98:80:95:19:e3:32:b0:4a:80:2d:87:7b:
f8:c9:9d:dd:80:22:cd:35:cb:25:d4:42:7d:73:42:
64:04:0f:a3:e6:29:72:a8:4f:ce:a8:d5:f8:c3:88:
a6:d0:43:1b:0b:80:7a:41:a0:2e:e2:59:83:d0:4b:
4b:4b:5d:fb:57:f0:b3:62:5f:e4:17:fb:79:c1:b2:
f3:bf:cd:12:5f:8f:32:39:2f:9a:f8:28:0c:61:0e:
70:43:a5:7f:55:03:d5:d8:f2:16:7a:99:87:f7:1d:
51:4b:7f:a3:eb:a1:81:2d:81:dd:12:69:06:4c:fa:
47:96:38:39:55:43:5f:89:43:8b:38:df:9f:53:48:
04:89:c2:dc:12:fc:f9:d8:95:c3:b3:ac:19:cd:c8:
93:21:07:dc:bb:b8:1e:27:29:41:d5:3d:44:db:86:
cb:3f:ae:56:5a:d7:ee:8f:89:8d:57:a5:d3:78:44:
14:e0:a4:f5:f9:98:40:0f:e2:fa:7f:7b:1c:3f:93:
11:fa:cf:2a:eb:30:d7:37:31:cd:dc:a7:97:77:d5:
72:a6:78:7a:2e:62:6c:e7:46:fd:29:ab:fa:ca:18:
d2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:47:D9:1B:26:14:EC:9A:AF:61:B9:09:6D:EE:8C:60:30:E7:48:20
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/O0fZGyYU7JqvYbkJbe6MYDDnSCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
70:82:b9:c7:5c:02:ec:97:a6:b0:e7:09:49:47:b9:c4:8f:75:
3b:6b:ba:42:aa:5e:6d:23:46:ed:02:e4:5d:12:4e:a2:e5:20:
ef:3d:74:79:94:ea:c1:43:76:cf:bc:a0:1d:a5:07:67:e6:39:
5a:7a:ff:3e:2b:cc:eb:fc:b2:3f:4f:13:5b:6d:21:cd:e5:ee:
8b:da:9f:2f:66:9f:4a:f7:bd:7f:d5:6b:6c:58:b7:b4:ce:cb:
28:77:5c:88:fb:4a:69:5a:52:a3:67:e8:15:36:68:ab:1c:c2:
fd:c5:8d:cb:9c:11:96:ea:77:1e:27:52:ff:7f:e2:ee:d7:35:
77:2a:f5:05:b3:9d:04:1d:af:03:5e:53:d1:ce:df:a8:58:bd:
ba:cf:7c:41:5e:71:19:d2:8f:49:52:89:5a:5d:13:62:99:41:
53:f2:0a:3a:c9:b7:ac:c1:74:82:96:66:23:bb:8c:bd:70:7e:
4b:47:bc:68:09:01:bc:b9:e1:78:2b:63:b5:c5:e8:fb:95:02:
85:5c:8b:72:95:bf:27:3b:dd:8e:c3:3b:13:c3:14:2c:8c:cf:
20:de:65:9b:c4:68:71:43:ac:33:8e:d0:b3:ba:a9:b4:fc:ea:
af:a1:2d:28:96:38:69:ce:18:81:da:f1:ca:49:c6:34:6f:e2:
6e:b2:5d:cd
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorv60n6ZnFPW1f4Tf13nYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjQ3ZDkxYjI2MTRlYzlhYWY2MWI5MDk2ZGVlOGM2MDMwZTc0ODIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYzFJ13Q162lsWz3BLeWwkVqzKlr
JCheqilWv+9n052YgJUZ4zKwSoAth3v4yZ3dgCLNNcsl1EJ9c0JkBA+j5ilyqE/O
qNX4w4im0EMbC4B6QaAu4lmD0EtLS137V/CzYl/kF/t5wbLzv80SX48yOS+a+CgM
YQ5wQ6V/VQPV2PIWepmH9x1RS3+j66GBLYHdEmkGTPpHljg5VUNfiUOLON+fU0gE
icLcEvz52JXDs6wZzciTIQfcu7geJylB1T1E24bLP65WWtfuj4mNV6XTeEQU4KT1
+ZhAD+L6f3scP5MR+s8q6zDXNzHN3KeXd9Vypnh6LmJs50b9Kav6yhjSYQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFDtH2RsmFOyar2G5CW3ujGAw50ggMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvTzBmWkd5WVU3SnF2WWJrSmJlNk1ZRERuU0NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAHCCucdcAuyXprDnCUlHucSPdTtrukKq
Xm0jRu0C5F0STqLlIO89dHmU6sFDds+8oB2lB2fmOVp6/z4rzOv8sj9PE1ttIc3l
7ovany9mn0r3vX/Va2xYt7TOyyh3XIj7SmlaUqNn6BU2aKscwv3FjcucEZbqdx4n
Uv9/4u7XNXcq9QWznQQdrwNeU9HO36hYvbrPfEFecRnSj0lSiVpdE2KZQVPyCjrJ
t6zBdIKWZiO7jL1wfktHvGgJAby54XgrY7XF6PuVAoVci3KVvyc73Y7DOxPDFCyM
zyDeZZvEaHFDrDOO0LO6qbT86q+hLSiWOGnOGIHa8cpJxjRv4m6yXc0=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:19 2025 by rpki-client