Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/avHTtz372hVe7SAYsQp7nxYmEgg.roa
File: avHTtz372hVe7SAYsQp7nxYmEgg.roa (raw, json)
Hash identifier: 8XvC9uT22cxTSnvVi4A1ZF1mSQynmNSD3t6EUrHs/Ks=
Subject key identifier: 6A:F1:D3:B7:3D:FB:DA:15:5E:ED:20:18:B1:0A:7B:9F:16:26:12:08
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F627242976E34AB466363CC95B70B7D
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/avHTtz372hVe7SAYsQp7nxYmEgg.roa
Signing time: Tue 25 Jun 2024 12:32:50 +0000
ROA not before: Tue 25 Jun 2024 12:32:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397204
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Nov 2024 13:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:72:42:97:6e:34:ab:46:63:63:cc:95:b7:0b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6af1d3b73dfbda155eed2018b10a7b9f16261208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:67:10:33:06:41:be:6f:47:d5:8d:73:6f:58:
1f:ad:9a:2a:51:09:7f:ec:a3:ea:45:36:bf:f8:40:
47:39:f6:8b:99:47:bb:da:b3:ae:1f:a2:a9:b1:8f:
f0:82:2c:31:2f:2b:34:09:44:b7:ea:48:4c:1d:f6:
c5:46:8e:40:d9:b4:ec:56:f8:c9:d9:8d:b1:b8:a1:
ba:c5:a6:b0:1f:2c:fc:6b:57:58:8a:c1:22:c6:ec:
d9:8a:30:56:d8:90:8c:2b:95:0e:00:a5:3b:d3:79:
da:4a:8e:14:8f:18:88:dc:01:e4:da:0e:53:fc:d5:
bb:d5:25:86:34:5d:f6:c8:19:7c:63:2e:47:a7:dd:
77:bd:1f:30:3b:94:d3:27:75:98:f2:b0:71:43:5e:
19:e8:75:ba:6d:75:f6:28:b9:05:8c:40:26:53:73:
a6:aa:c6:c6:14:0d:1b:95:1c:d2:b2:7d:e3:5c:ff:
8e:aa:96:bf:4c:9e:9d:a7:66:32:78:2e:e5:38:a1:
fe:35:b0:c1:64:b8:be:4d:6c:45:f7:d5:7c:88:fd:
8a:93:23:4e:9e:bc:27:23:18:d7:8e:78:5f:28:cd:
c9:00:09:d7:bb:9d:b6:0e:dc:f0:0d:f0:39:f8:b3:
f1:4e:c3:d2:1b:42:8b:ac:2b:ee:55:79:94:d6:79:
26:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F1:D3:B7:3D:FB:DA:15:5E:ED:20:18:B1:0A:7B:9F:16:26:12:08
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/avHTtz372hVe7SAYsQp7nxYmEgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
41:ec:57:c9:85:f0:fa:9f:e7:fb:2e:48:70:51:17:bc:08:cc:
ab:bf:86:82:39:fe:93:ad:ad:5b:f7:7e:60:f5:63:99:64:95:
7f:78:5a:89:af:73:f0:16:b6:5b:24:68:65:a5:e6:5e:bf:02:
9a:2d:54:f7:28:8c:6d:59:9b:93:66:e8:72:0c:d1:7d:8a:9c:
22:7b:8a:ed:a6:f2:82:cb:40:31:c6:40:38:d4:80:81:7b:49:
1c:ba:79:6f:e6:22:0a:d8:3d:bb:d7:a6:d2:51:8b:9e:59:b1:
88:58:e2:ca:4f:5d:23:6c:43:63:4d:64:5d:e8:db:06:2b:08:
e6:ed:74:ca:a4:81:ac:63:e8:ec:ad:c2:a7:9f:f7:54:3d:a3:
16:40:2a:40:34:73:9e:17:64:05:9e:77:dc:ec:28:fe:ab:ce:
1d:4d:79:ee:1a:10:6f:03:6f:be:61:fe:34:3a:8b:28:95:75:
2a:11:6a:34:15:0b:f9:57:4f:19:c0:44:6e:2f:14:03:99:37:
fd:4a:75:cb:0a:8f:76:e8:b8:8a:af:d2:34:32:92:fb:3e:79:
b6:36:ab:aa:1e:1b:14:6f:e1:5c:b2:9e:db:81:d1:25:4b:48:
bf:ee:0b:59:7d:d4:c0:4d:6d:3c:60:74:c8:2a:95:a6:4e:62:
33:9e:42:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:33 2025 by rpki-client