Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d03EA76GqAlInyByZa7WzpNlI0g.roa
File: d03EA76GqAlInyByZa7WzpNlI0g.roa (raw, json)
Hash identifier: 0MYYJOKgu2XF4cZaekgZpW2ksew/VYqrSPSvJgoTm5Y=
Subject key identifier: 77:4D:C4:03:BE:86:A8:09:48:9F:20:72:65:AE:D6:CE:93:65:23:48
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF1F8263C96EFDED1CC814ED8DDBE
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d03EA76GqAlInyByZa7WzpNlI0g.roa
Signing time: Tue 26 Nov 2024 13:35:15 +0000
ROA not before: Tue 26 Nov 2024 13:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396555
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f1:f8:26:3c:96:ef:de:d1:cc:81:4e:d8:dd:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=774dc403be86a809489f207265aed6ce93652348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:aa:5b:d5:53:ec:e6:4f:4e:9a:d0:e5:2e:a1:
71:33:5a:c0:2e:1b:a1:ee:66:83:51:4d:b8:10:f9:
8c:39:6e:d0:3e:7d:d9:26:5b:8d:70:ae:01:69:90:
ed:a6:b5:15:74:21:e0:e7:5f:5e:b2:a1:40:09:69:
59:e3:23:1a:84:d0:52:c1:4d:6a:d2:6c:62:be:aa:
75:ba:0b:3d:8a:63:12:84:94:b5:ad:88:1d:c7:be:
6e:8d:f0:e4:80:91:02:9e:a5:42:11:84:7c:96:8c:
20:c8:c5:5d:55:3d:6a:1f:dc:67:96:70:55:bd:9d:
9e:27:8a:32:57:b5:b4:0e:78:c0:ce:97:86:4e:79:
31:38:5d:11:07:3f:f6:6d:f2:f4:71:ad:4d:47:dc:
3c:d1:86:e2:2a:a6:9c:fc:a2:01:96:07:07:df:70:
b6:5f:29:b8:fb:6e:56:ea:a8:c8:ae:5c:ae:53:20:
16:bc:fa:6e:70:c1:34:97:16:11:23:5b:40:1c:b6:
73:20:15:4e:a2:30:95:a2:f2:a2:c5:92:de:33:af:
a2:66:4c:df:67:5b:9b:f1:00:52:38:19:de:37:16:
44:0b:53:ea:b0:71:46:fe:45:4b:47:5c:1a:9c:c9:
65:fa:f9:9f:bc:ef:bd:61:d5:65:61:92:d8:e9:7f:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4D:C4:03:BE:86:A8:09:48:9F:20:72:65:AE:D6:CE:93:65:23:48
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d03EA76GqAlInyByZa7WzpNlI0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
8e:4b:4d:09:f6:68:ba:d1:f6:66:1d:5d:15:5d:8b:8d:b0:d0:
88:38:ae:a9:93:ac:c4:43:54:2f:e0:90:f5:43:2a:77:d6:56:
57:4a:61:d3:65:f8:ed:8a:01:5c:83:cd:97:10:1a:bc:89:78:
53:4e:95:d0:ab:7a:7c:e1:16:ec:dd:ec:c5:df:50:b2:e1:06:
ae:8d:5f:82:83:2a:8c:2d:09:64:d9:d4:97:2b:18:34:da:8d:
70:05:29:d9:aa:37:ac:06:69:c1:85:66:6e:e6:fa:57:76:19:
42:3a:a4:75:ea:cb:00:9a:09:53:cd:8a:7e:46:7c:97:53:04:
45:e6:ac:93:c4:44:5f:4c:5b:05:2b:3b:5a:81:2a:c9:55:92:
b0:a6:5d:20:8a:82:73:6b:00:07:22:88:a7:ac:9a:c2:3f:e3:
ce:1f:da:8c:55:fc:72:3b:7d:d1:4f:a3:57:48:6a:32:c4:f7:
0b:16:e1:dd:9b:be:54:e2:a0:c8:5d:e5:da:61:b8:27:62:ca:
0f:22:8c:c7:e8:62:60:09:be:06:77:8a:2a:23:5e:20:20:7c:
0c:1d:06:8c:db:bd:80:c0:9b:c0:43:a7:c7:7f:09:a4:bb:ad:
9e:16:d1:3d:a2:5f:b3:12:46:3b:48:70:58:2e:b9:2c:93:00:
da:63:f3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:04 2025 by rpki-client