Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/TMu3mVBsWG1Bwah0t-afxd8i9yo.roa
File: TMu3mVBsWG1Bwah0t-afxd8i9yo.roa (raw, json)
Hash identifier: PF5HlpMOhcrb4lerG2HccDHU8CXJyuSyanikh/50Lpo=
Subject key identifier: 4C:CB:B7:99:50:6C:58:6D:41:C1:A8:74:B7:E6:9F:C5:DF:22:F7:2A
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF543BD0D28CED769D13D86A2DE71
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/TMu3mVBsWG1Bwah0t-afxd8i9yo.roa
Signing time: Tue 26 Nov 2024 13:35:16 +0000
ROA not before: Tue 26 Nov 2024 13:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396565
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f5:43:bd:0d:28:ce:d7:69:d1:3d:86:a2:de:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ccbb799506c586d41c1a874b7e69fc5df22f72a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1d:aa:de:c1:f4:42:cf:38:5b:ee:b0:e8:8b:
2c:c7:70:98:0e:59:36:7b:b6:cc:55:c2:d5:bb:58:
a9:88:c5:2c:16:f5:f7:bb:c0:d9:6b:a9:71:67:56:
a6:43:52:52:e5:c1:de:3c:1f:e5:7b:74:91:d0:82:
41:bd:8d:9f:fd:f6:47:88:65:77:44:5b:9d:7b:b4:
ac:e3:f8:1f:78:2e:3d:7b:86:35:be:ee:6b:a3:08:
e6:ea:2d:7d:9e:6e:c6:2c:d9:ea:36:73:3f:0f:cf:
9c:15:9e:47:71:44:69:e8:ef:9d:8b:18:7f:a3:03:
28:8b:ca:ca:8e:11:47:23:a3:43:8d:c1:e4:66:bf:
e2:aa:cb:70:6b:f2:23:89:a4:f9:f1:a6:03:04:53:
24:ed:5f:97:10:04:84:ed:13:80:bc:6e:83:df:e7:
69:e1:34:94:64:0a:60:5e:67:62:83:32:bd:bd:4d:
53:15:bc:d4:ee:ba:f0:24:1d:4a:87:36:f6:4d:5d:
8e:14:a5:f1:5d:58:dc:06:0c:d1:c0:4b:5a:75:e4:
98:23:9c:f3:f7:4c:09:c5:a7:a9:41:64:db:95:3e:
83:41:2a:08:a1:7a:2d:0a:fb:45:65:c4:32:df:95:
75:9d:af:39:42:f0:dd:b9:40:89:30:10:fa:05:49:
43:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CB:B7:99:50:6C:58:6D:41:C1:A8:74:B7:E6:9F:C5:DF:22:F7:2A
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/TMu3mVBsWG1Bwah0t-afxd8i9yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
03:be:ef:3d:3a:54:b0:81:c9:84:11:98:16:50:fb:06:d2:1d:
52:83:52:2b:0d:5b:59:ca:39:62:be:d7:09:3a:db:10:c3:07:
7b:b7:6f:81:99:2d:2e:81:70:45:e9:c0:97:87:aa:0f:57:81:
8f:92:53:34:7c:1f:37:2e:0d:59:fe:db:36:6a:35:9e:49:da:
dc:4e:83:03:fd:8e:0e:57:f8:06:ad:75:bb:81:99:b8:b8:b4:
20:af:d8:a4:6c:4d:5b:9c:a8:bd:a3:b3:83:66:d2:75:cb:51:
96:3f:11:02:87:e6:d1:a3:cb:8a:86:24:34:70:0f:6d:a9:47:
b6:3a:0e:e1:07:fa:37:45:f7:a0:49:a4:5d:92:fb:f9:5b:07:
8b:a5:12:d0:f1:51:cc:c3:ae:29:92:84:06:1e:5b:57:9a:cd:
0c:78:7c:8d:95:77:20:6e:70:0d:6d:c5:ed:61:11:05:0c:3d:
29:d0:b7:6e:fc:34:70:db:4e:36:97:9f:1e:77:ab:82:f3:bf:
4c:fb:e2:fa:86:39:ef:f6:3c:72:0a:1d:f1:28:e5:e1:01:73:
24:dd:71:46:d5:ba:22:6e:2a:25:b6:5b:d4:a1:48:69:66:50:
46:95:c8:2c:dd:62:48:8d:0f:74:b6:a6:a6:95:e9:6e:85:68:
b4:db:d6:16
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorvVDvQ0oztdp0T2Got5xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2NiYjc5OTUwNmM1ODZkNDFjMWE4NzRiN2U2OWZjNWRmMjJmNzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1h2q3sH0Qs84W+6w6Issx3CYDlk2
e7bMVcLVu1ipiMUsFvX3u8DZa6lxZ1amQ1JS5cHePB/le3SR0IJBvY2f/fZHiGV3
RFude7Ss4/gfeC49e4Y1vu5rowjm6i19nm7GLNnqNnM/D8+cFZ5HcURp6O+dixh/
owMoi8rKjhFHI6NDjcHkZr/iqstwa/IjiaT58aYDBFMk7V+XEASE7ROAvG6D3+dp
4TSUZApgXmdigzK9vU1TFbzU7rrwJB1Khzb2TV2OFKXxXVjcBgzRwEtadeSYI5zz
90wJxaepQWTblT6DQSoIoXotCvtFZcQy35V1na85QvDduUCJMBD6BUlDiQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFEzLt5lQbFhtQcGodLfmn8XfIvcqMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvVE11M21WQnNXRzFCd2FoMHQtYWZ4ZDhpOXlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAAO+7z06VLCByYQRmBZQ+wbSHVKDUisN
W1nKOWK+1wk62xDDB3u3b4GZLS6BcEXpwJeHqg9XgY+SUzR8HzcuDVn+2zZqNZ5J
2txOgwP9jg5X+AatdbuBmbi4tCCv2KRsTVucqL2js4Nm0nXLUZY/EQKH5tGjy4qG
JDRwD22pR7Y6DuEH+jdF96BJpF2S+/lbB4ulEtDxUczDrimShAYeW1eazQx4fI2V
dyBucA1txe1hEQUMPSnQt278NHDbTjaXnx53q4Lzv0z74vqGOe/2PHIKHfEo5eEB
cyTdcUbVuiJuKiW2W9ShSGlmUEaVyCzdYkiND3S2pqaV6W6FaLTb1hY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:35 2025 by rpki-client