Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RKsGU-Jedg09-sSv-7UnhRKnW2U.roa
File: RKsGU-Jedg09-sSv-7UnhRKnW2U.roa (raw, json)
Hash identifier: QA8qLC8atgs95YdqZNoVAXupl+1k78eM7WrsZX0ltt0=
Subject key identifier: 44:AB:06:53:E2:5E:76:0D:3D:FA:C4:AF:FB:B5:27:85:12:A7:5B:65
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF342944C669E1423FCFDB344B977
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RKsGU-Jedg09-sSv-7UnhRKnW2U.roa
Signing time: Tue 26 Nov 2024 13:35:16 +0000
ROA not before: Tue 26 Nov 2024 13:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396560
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f3:42:94:4c:66:9e:14:23:fc:fd:b3:44:b9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44ab0653e25e760d3dfac4affbb5278512a75b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f7:19:d6:6b:5a:5a:82:b8:38:48:1b:b2:4b:
49:cd:92:95:3a:a7:9b:88:70:9a:8d:d5:7e:bc:f7:
52:60:d5:fa:3f:26:40:42:ad:aa:a3:7a:9e:3e:8d:
37:12:fc:d8:79:0b:10:01:4a:6a:ad:2c:fd:b9:db:
a2:98:9b:2e:29:43:36:e9:b4:ec:21:b2:22:ab:34:
31:e6:cd:b4:a5:a1:9c:4d:ff:cf:1f:14:7e:be:f7:
00:7b:bb:f1:a5:d2:87:b1:ba:ed:53:f1:72:62:f1:
e5:83:16:8d:4a:a2:fb:d0:15:cb:46:9c:ca:8a:30:
76:5e:8f:04:2d:aa:40:b7:65:1e:77:31:16:4c:75:
57:4f:5c:bb:e7:54:8c:84:25:fb:70:ec:17:10:a6:
f4:bf:b2:ba:b0:ac:cf:ae:23:39:96:ca:61:ab:e5:
29:0f:60:12:fb:51:1e:86:5f:88:86:ba:71:20:82:
1e:77:ea:e0:00:ce:c4:a2:00:54:3e:1c:6e:86:a1:
bb:8c:36:20:64:cb:e4:ce:f4:56:26:3d:a9:91:9d:
e7:9a:ad:ba:97:50:42:eb:1a:7e:b1:8b:2e:aa:df:
48:be:58:75:35:84:9d:d6:dc:93:f4:5d:8b:5c:f5:
4b:e6:06:71:63:bb:f4:e7:21:17:95:e8:6d:8f:5e:
06:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AB:06:53:E2:5E:76:0D:3D:FA:C4:AF:FB:B5:27:85:12:A7:5B:65
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/RKsGU-Jedg09-sSv-7UnhRKnW2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
87:15:97:5e:8a:95:8e:3a:1a:18:22:bd:b4:9f:2d:bf:88:3e:
15:e5:b1:12:74:f5:bf:ec:4e:3e:82:79:e3:0a:2c:2e:de:1d:
90:8c:05:25:9a:9b:4a:91:39:69:f5:0b:07:74:8e:40:d8:f2:
8e:8d:aa:47:2f:09:9d:08:94:52:41:c6:48:da:28:2c:df:e1:
8c:5f:6b:ca:fa:92:37:3f:22:2d:14:18:55:06:96:27:2f:ed:
47:b2:a2:12:28:09:47:db:c6:53:5d:ac:6c:7c:d5:dc:09:b8:
4e:68:55:0c:99:23:bd:37:59:74:de:4d:9f:12:78:54:f7:5e:
e1:7d:ff:62:fb:ad:0c:0c:13:5b:0a:89:3d:66:a4:7c:b0:88:
94:85:44:d9:da:08:31:05:e2:30:75:8e:b2:36:0f:65:a3:e9:
2a:7a:6b:4f:05:36:2c:6e:22:cd:40:b7:c8:33:88:69:56:8a:
57:94:04:86:0f:c2:b5:76:21:20:69:b2:33:97:2c:ce:75:e7:
9f:60:8a:c8:55:84:fe:bc:79:e8:df:da:e2:db:42:9b:28:1d:
3a:84:49:26:0a:9b:9f:cd:6d:1a:7b:70:a3:aa:dc:37:c2:7f:
16:05:77:53:ce:36:69:d4:27:84:36:26:03:47:c0:41:f0:e5:
aa:89:8b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:14 2025 by rpki-client