Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ZevawsXWvIUK2z2-L2T3snlm5nQ.roa
File: ZevawsXWvIUK2z2-L2T3snlm5nQ.roa (raw, json)
Hash identifier: KUypS1ngekfJkTkdZtjoLdr6QRqPgrVHg8amlqboR6g=
Subject key identifier: 65:EB:DA:C2:C5:D6:BC:85:0A:DB:3D:BE:2F:64:F7:B2:79:66:E6:74
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF051DF734304B92F31C0E4F00A74B
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ZevawsXWvIUK2z2-L2T3snlm5nQ.roa
Signing time: Tue 26 Nov 2024 13:35:20 +0000
ROA not before: Tue 26 Nov 2024 13:35:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396599
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:05:1d:f7:34:30:4b:92:f3:1c:0e:4f:00:a7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65ebdac2c5d6bc850adb3dbe2f64f7b27966e674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:84:47:16:53:b4:d7:15:cc:89:61:a0:db:51:
fd:59:91:07:68:10:58:e4:21:e2:b6:df:e9:af:ba:
bf:de:57:dd:1f:93:79:13:ca:cf:28:b3:ed:6e:fd:
3e:fe:51:b4:a5:b9:9f:ac:18:42:8b:4c:62:16:ec:
6d:94:2e:cf:44:d4:51:6e:1e:93:09:19:cd:35:ff:
a0:9d:a7:c8:53:8b:f9:ec:ee:6a:7f:d6:74:e8:4a:
44:00:61:f3:28:f6:1d:cf:b3:4a:8b:76:52:79:f8:
86:51:38:61:e1:31:b9:da:61:37:42:fe:bb:87:6f:
e5:a4:c5:f5:ee:0b:30:73:ab:7f:14:91:70:a5:1f:
df:3f:99:49:a8:93:4c:31:49:07:69:17:78:04:2a:
13:33:49:e2:9c:af:09:23:7f:91:1a:60:47:71:3a:
d7:4a:e4:00:1c:ff:1f:c9:3a:7a:dd:65:a8:c5:d9:
f1:0e:61:7d:2f:82:6b:9f:ef:c6:2b:2b:8b:42:5d:
49:14:fd:98:13:ab:e4:36:fd:ea:45:8e:3c:9f:41:
fb:2d:09:52:9d:f5:f9:ef:3e:de:b3:68:3e:27:de:
eb:be:44:bb:09:45:19:ad:09:eb:a9:c5:5b:3a:25:
08:c6:d6:a4:19:a8:a1:7c:b7:dc:10:46:b5:39:33:
0a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:EB:DA:C2:C5:D6:BC:85:0A:DB:3D:BE:2F:64:F7:B2:79:66:E6:74
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/ZevawsXWvIUK2z2-L2T3snlm5nQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
4e:87:b3:0a:55:fc:73:a1:f5:fb:a2:1a:98:24:82:af:11:37:
a0:a1:be:7b:32:95:c8:df:2c:31:8f:49:f5:5e:9f:25:c9:2f:
66:ea:05:ec:25:df:c0:0d:2d:9a:d6:5c:c1:18:7c:0d:80:74:
b0:12:da:d4:a5:9c:fa:b7:01:ac:35:68:f8:f7:cf:91:a9:36:
f7:c5:f5:55:66:f6:d2:9f:78:e4:eb:48:29:c6:99:61:0d:84:
df:96:e7:2b:93:37:55:6f:3b:41:37:da:25:b5:07:b5:22:09:
c1:03:fb:b1:75:33:88:15:81:3e:30:57:62:51:dc:d5:35:0b:
bc:7b:47:3d:ac:50:21:1f:26:bd:b6:e9:75:a1:87:14:a8:63:
f0:9c:57:a6:96:95:ad:51:c9:0f:f5:33:05:fa:3c:04:c7:d2:
0d:1b:ae:06:90:fe:95:b5:64:cc:2d:46:23:ea:24:8e:2c:11:
3a:a4:7e:03:01:53:4d:ad:9c:be:32:54:2a:55:6d:3d:12:83:
c9:6d:db:c7:b7:d6:60:62:0a:db:43:75:a2:e9:73:e6:96:47:
49:f9:60:da:3c:e6:82:37:25:4a:47:f7:06:f7:bd:d3:0a:43:
b6:6c:72:e3:81:ed:92:96:e1:84:17:63:48:8b:8d:16:3f:98:
ca:2a:8e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:16 2025 by rpki-client