Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/T0gfE91MziO2tU-58VOOICtQCfo.roa
File: T0gfE91MziO2tU-58VOOICtQCfo.roa (raw, json)
Hash identifier: AH3LPHhDakVBPnpPChRhE0bP9PN511mdpcTzhx4Dp98=
Subject key identifier: 4F:48:1F:13:DD:4C:CE:23:B6:B5:4F:B9:F1:53:8E:20:2B:50:09:FA
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF0CD52F6E78A387A25AE82F1979ED
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/T0gfE91MziO2tU-58VOOICtQCfo.roa
Signing time: Tue 26 Nov 2024 13:35:22 +0000
ROA not before: Tue 26 Nov 2024 13:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396616
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:0c:d5:2f:6e:78:a3:87:a2:5a:e8:2f:19:79:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f481f13dd4cce23b6b54fb9f1538e202b5009fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:73:1d:7c:60:d9:58:b2:aa:d7:fb:35:fa:04:
d0:7d:9c:66:f4:87:77:e5:c9:18:ad:eb:53:07:7d:
e2:08:20:34:fa:e0:04:d7:d6:20:7c:43:90:79:b7:
1a:4f:99:ff:5b:72:8d:bb:c3:6c:05:ed:ed:ac:df:
8e:de:98:08:1c:c5:5c:6b:64:f7:d7:43:83:18:0b:
f6:df:b1:77:dd:f6:72:68:97:eb:93:a1:89:70:3f:
02:a8:1f:57:be:ff:40:46:0c:21:1f:13:1d:e1:c1:
04:d4:11:f5:b5:d6:1e:12:ab:d2:4d:c8:aa:72:82:
15:82:6e:ea:e1:52:ba:59:8b:02:be:c8:41:0e:6c:
71:2b:b7:dc:29:9c:79:d4:8c:d8:a9:08:b9:0c:c3:
f2:f9:26:d2:51:56:29:b2:bb:07:e4:ed:2b:96:0d:
6f:a9:2e:cd:a9:e1:2c:b5:f9:45:ad:8c:27:2b:ac:
63:50:89:78:8d:89:94:36:7c:12:5d:90:ea:52:27:
cd:49:4b:d9:00:97:29:50:79:ad:b0:3d:5d:9e:b3:
d9:d8:b0:0c:7b:bf:34:d5:33:73:d1:62:91:f7:96:
54:81:38:44:0d:11:a3:8c:c0:07:ed:a0:22:1c:1c:
39:42:e7:b7:37:53:cc:19:d5:0e:05:b6:9b:95:9c:
9f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:48:1F:13:DD:4C:CE:23:B6:B5:4F:B9:F1:53:8E:20:2B:50:09:FA
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/T0gfE91MziO2tU-58VOOICtQCfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
50:7f:7b:07:08:d0:55:6a:66:25:a1:95:f6:0d:d0:1c:ff:3c:
7f:9f:15:94:9e:45:88:ed:69:6b:71:e2:4e:96:01:c6:7f:32:
14:75:24:a2:00:91:c5:e0:cb:74:43:9a:48:28:6a:0b:bc:19:
2e:ef:3b:39:87:90:de:7d:6b:2a:77:98:24:f5:d9:9d:69:ba:
5f:4a:87:6c:aa:df:e6:2d:34:7d:8a:f7:48:1d:ea:d7:4d:4b:
7e:ba:b3:6b:ae:22:e5:e3:79:4c:cd:22:99:77:48:c2:8a:63:
5e:92:60:89:4d:80:fc:c5:85:7d:97:3a:80:a2:d8:b6:61:61:
67:d7:f1:f4:8c:6c:06:f9:9c:27:72:9e:a1:1a:fd:6d:3c:a5:
61:9c:19:e6:44:e2:a1:d6:a7:bd:ee:31:41:9a:ab:cb:d3:95:
ed:ad:5f:a4:a0:de:40:ea:ab:81:e8:ce:e3:be:5d:0f:4b:b6:
18:04:00:a5:89:47:06:e5:60:6f:b2:e5:57:70:03:94:c7:92:
2f:93:bc:0f:f2:06:b1:a5:6b:93:1d:e2:2d:e2:d8:ab:3d:24:
a1:8a:e1:c1:ed:4b:c9:7c:33:9a:db:a7:b6:b8:94:82:a6:1a:
10:83:15:66:84:92:c1:8a:c3:5e:0e:de:f4:b9:81:dd:0f:08:
74:02:99:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:36 2025 by rpki-client