Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/Tk0xNtOTFE_zfUp-LBcxh-fEdDY.roa
File: Tk0xNtOTFE_zfUp-LBcxh-fEdDY.roa (raw, json)
Hash identifier: By7Zq5E7lHSE81Bt2sZEu5vtOzrUY7P8YwTSyCI16CQ=
Subject key identifier: 4E:4D:31:36:D3:93:14:4F:F3:7D:4A:7E:2C:17:31:87:E7:C4:74:36
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF015CD39F281F6BBBEAE124308610
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/Tk0xNtOTFE_zfUp-LBcxh-fEdDY.roa
Signing time: Tue 26 Nov 2024 13:35:19 +0000
ROA not before: Tue 26 Nov 2024 13:35:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396590
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:01:5c:d3:9f:28:1f:6b:bb:ea:e1:24:30:86:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e4d3136d393144ff37d4a7e2c173187e7c47436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7a:44:88:b0:f8:f8:72:e9:bd:c0:38:fe:2e:
b2:9b:f8:78:c3:02:36:86:e0:ee:80:5a:c9:14:3a:
47:21:56:5c:a3:03:4c:b1:31:60:22:43:30:dd:c0:
d7:3a:79:4f:86:bc:18:bb:27:0d:73:20:57:17:1f:
bc:5b:23:a7:3a:24:4b:4b:b4:4e:36:9c:db:6a:c3:
73:20:c3:fd:92:ab:d8:61:14:18:f8:97:e9:1a:c2:
bc:31:12:52:80:27:6f:e5:cf:de:9c:8e:4d:21:32:
76:96:7f:6b:de:9c:89:84:73:b6:22:42:ab:fa:47:
2d:be:10:7c:2b:0c:9e:85:02:c7:89:42:1f:ab:be:
89:aa:bd:21:9d:af:32:da:70:38:f1:db:c7:0f:ba:
20:24:39:db:e9:81:ab:7d:41:a5:0d:5b:af:fc:9c:
81:c0:78:7c:71:cf:0c:94:5f:95:f9:f2:d4:fd:d7:
c0:9a:00:92:f1:e9:92:50:ba:b5:58:e8:40:7e:53:
4e:09:2a:d2:35:a4:ea:39:68:b2:b8:7b:bf:b4:ee:
8e:72:b3:78:f1:d6:18:53:19:d0:03:ab:6f:70:f9:
82:26:da:04:86:62:96:36:ec:8f:65:69:d6:f1:c8:
0a:5d:78:12:a7:dd:de:a2:22:9c:4b:d5:81:13:c3:
d7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4D:31:36:D3:93:14:4F:F3:7D:4A:7E:2C:17:31:87:E7:C4:74:36
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/Tk0xNtOTFE_zfUp-LBcxh-fEdDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
ae:c5:a8:e2:23:8b:bc:34:94:ac:97:6d:3b:27:fd:66:ed:a6:
71:19:06:7a:27:39:37:ba:2d:a3:f3:3e:d4:45:20:09:d8:dc:
e2:8e:5e:9d:93:9e:0e:f9:85:0f:6f:89:3e:a0:9f:f5:2d:5f:
c0:88:35:90:cd:01:25:fa:e8:cd:7a:39:44:6e:fc:cc:01:56:
2e:31:37:4c:e3:a8:3e:a8:09:24:af:8d:b7:7b:e2:b7:18:0f:
37:e1:53:cc:c3:33:d2:eb:9c:83:2f:d6:3c:7a:8e:a1:38:01:
08:b9:77:46:2a:64:e3:b7:0e:42:dd:38:8e:63:80:4c:a7:8f:
33:b8:5c:17:8d:3c:db:34:79:22:76:cd:36:ed:7a:ee:8d:84:
fa:a4:04:df:7f:02:56:8c:33:f6:7b:35:59:3e:46:c8:24:81:
06:c6:b1:54:de:02:3c:22:16:8e:b7:7f:00:18:ca:f4:5c:62:
36:e5:df:79:e9:83:34:cc:a4:9f:be:45:97:e7:a2:5c:99:3d:
c8:7a:4e:66:c4:91:ed:14:8a:75:b0:cc:69:1d:23:a7:43:3d:
25:c8:38:50:41:bb:b9:f7:4f:99:b4:cc:71:51:41:7d:ec:b9:
0a:73:bf:86:f6:c0:c7:0c:48:9c:75:9c:28:39:f1:59:60:09:
b8:9a:25:0b
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorwFc058oH2u76uEkMIYQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTRkMzEzNmQzOTMxNDRmZjM3ZDRhN2UyYzE3MzE4N2U3YzQ3NDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHpEiLD4+HLpvcA4/i6ym/h4wwI2
huDugFrJFDpHIVZcowNMsTFgIkMw3cDXOnlPhrwYuycNcyBXFx+8WyOnOiRLS7RO
NpzbasNzIMP9kqvYYRQY+JfpGsK8MRJSgCdv5c/enI5NITJ2ln9r3pyJhHO2IkKr
+kctvhB8KwyehQLHiUIfq76Jqr0hna8y2nA48dvHD7ogJDnb6YGrfUGlDVuv/JyB
wHh8cc8MlF+V+fLU/dfAmgCS8emSULq1WOhAflNOCSrSNaTqOWiyuHu/tO6OcrN4
8dYYUxnQA6tvcPmCJtoEhmKWNuyPZWnW8cgKXXgSp93eoiKcS9WBE8PXDwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFE5NMTbTkxRP831KfiwXMYfnxHQ2MB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvVGsweE50T1RGRV96ZlVwLUxCY3hoLWZFZERZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAK7FqOIji7w0lKyXbTsn/WbtpnEZBnon
OTe6LaPzPtRFIAnY3OKOXp2Tng75hQ9viT6gn/UtX8CINZDNASX66M16OURu/MwB
Vi4xN0zjqD6oCSSvjbd74rcYDzfhU8zDM9LrnIMv1jx6jqE4AQi5d0YqZOO3DkLd
OI5jgEynjzO4XBeNPNs0eSJ2zTbteu6NhPqkBN9/AlaMM/Z7NVk+RsgkgQbGsVTe
AjwiFo63fwAYyvRcYjbl33npgzTMpJ++RZfnolyZPch6TmbEke0UinWwzGkdI6dD
PSXIOFBBu7n3T5m0zHFRQX3suQpzv4b2wMcMSJx1nCg58VlgCbiaJQs=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:11 2025 by rpki-client