Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/cePqDByw1dNYL9yj3QUo4USyiTM.roa
File: cePqDByw1dNYL9yj3QUo4USyiTM.roa (raw, json)
Hash identifier: Y+0Kq4rxjaqeGFKv6etXzySpaoH/1cXPpp5UJVRd0ac=
Subject key identifier: 71:E3:EA:0C:1C:B0:D5:D3:58:2F:DC:A3:DD:05:28:E1:44:B2:89:33
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF6A2B18CE55C1C308D486900B7F6
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/cePqDByw1dNYL9yj3QUo4USyiTM.roa
Signing time: Tue 26 Nov 2024 13:35:17 +0000
ROA not before: Tue 26 Nov 2024 13:35:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396569
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f6:a2:b1:8c:e5:5c:1c:30:8d:48:69:00:b7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71e3ea0c1cb0d5d3582fdca3dd0528e144b28933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ce:dd:7c:d9:ce:64:af:59:e7:53:ab:50:ad:
11:ad:00:19:86:ec:e1:62:82:32:f4:55:cd:0a:18:
0c:92:26:53:81:30:11:4b:8b:b5:2f:c3:78:18:af:
a8:58:be:c9:85:6b:ed:13:76:dd:26:d4:75:82:af:
7d:d7:f9:fe:8b:4a:10:fd:f6:52:f6:c9:4e:f3:70:
46:1a:8d:47:e4:af:cc:39:81:c7:73:1e:2a:45:fd:
2b:41:7c:6a:ae:5d:2d:ff:f8:ab:1f:fd:97:16:66:
d6:cb:ef:c9:84:42:5e:70:d2:72:9a:a8:ea:f7:14:
99:50:c0:72:ad:f5:b1:1c:3d:3b:85:af:51:96:59:
76:c5:fa:d6:fb:9a:f3:c2:e9:53:f8:87:39:11:06:
65:41:28:e9:22:14:88:e9:15:49:e2:f2:0a:98:91:
06:50:1d:29:e8:4d:e7:c3:4c:f5:64:57:dd:45:d6:
69:d7:59:35:b1:49:98:39:67:95:2d:36:8a:be:a4:
53:e1:8f:7d:98:df:e7:8e:20:95:07:9a:5d:6d:2e:
33:fd:82:1e:62:61:dc:d8:5a:11:e2:fe:dd:8a:40:
b9:ea:01:78:db:fb:f5:45:5b:05:4e:26:20:9c:41:
9c:b6:89:5e:34:d9:a0:64:61:4a:4e:49:be:66:2a:
fe:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E3:EA:0C:1C:B0:D5:D3:58:2F:DC:A3:DD:05:28:E1:44:B2:89:33
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/cePqDByw1dNYL9yj3QUo4USyiTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
52:de:67:92:c3:44:c5:6a:91:76:07:26:37:c1:1c:d5:12:84:
97:ef:96:4c:5a:26:00:f7:85:52:3f:3a:2a:20:ab:39:18:9d:
8c:4b:f2:93:70:69:18:01:b2:26:6c:07:09:e6:89:b9:e9:ba:
48:88:c9:17:83:df:d3:4d:d4:fb:0b:ef:ec:18:ce:ce:37:de:
84:67:ba:6b:49:80:ef:59:7b:db:d0:96:c2:1d:21:a2:2f:c5:
73:75:84:4e:0b:c5:4a:fe:c4:05:7c:3a:52:e0:67:8b:b5:e6:
cf:62:e4:65:22:20:8b:95:fa:7c:3b:01:96:b7:67:a3:b6:2e:
23:d0:03:d9:f6:14:5d:58:be:03:c8:72:8f:59:21:de:4f:9c:
85:55:b8:5a:89:91:10:25:d6:1e:bb:8d:0b:90:66:44:42:d2:
bb:65:60:50:41:7f:db:ca:1d:e4:f2:bf:03:61:16:42:9d:8d:
b5:6d:99:e1:88:d2:5a:71:d8:11:7d:da:34:58:57:da:26:b9:
11:b9:1f:87:2f:48:ec:88:05:6e:10:26:87:ba:d3:d5:a0:bd:
50:9a:32:e9:93:6c:08:8a:67:85:26:c3:6d:07:67:9c:3e:65:
e8:a3:11:16:93:32:33:31:c7:1e:3c:6b:06:59:08:f2:ba:12:
84:79:b9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:09 2025 by rpki-client