Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d4nazr7tYC-C7vtpgvMmF0jYOSI.roa
File: d4nazr7tYC-C7vtpgvMmF0jYOSI.roa (raw, json)
Hash identifier: 9OoGQyc2x9/5bHGmepFzGcCLWiYfloySIn+SYJgYj5s=
Subject key identifier: 77:89:DA:CE:BE:ED:60:2F:82:EE:FB:69:82:F3:26:17:48:D8:39:22
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F62454051E3029E4755BF7FD2764338
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d4nazr7tYC-C7vtpgvMmF0jYOSI.roa
Signing time: Tue 25 Jun 2024 12:32:38 +0000
ROA not before: Tue 25 Jun 2024 12:32:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396544
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Nov 2024 13:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:45:40:51:e3:02:9e:47:55:bf:7f:d2:76:43:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7789dacebeed602f82eefb6982f3261748d83922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:04:fc:28:d9:4f:fe:d6:93:fc:67:aa:00:
32:3b:d9:b6:88:36:49:89:47:75:30:34:48:46:31:
f4:af:7f:74:66:72:64:99:80:a5:43:25:dc:69:ae:
fc:e1:6e:74:84:bf:30:71:61:ae:f3:ea:fe:ba:48:
fc:19:a4:cd:24:74:e9:b9:1c:be:94:e6:5b:b3:12:
c9:76:25:65:2e:3d:b2:b6:f4:61:11:7e:20:81:fe:
11:67:e9:c2:bd:be:46:c9:c5:19:4f:04:03:60:17:
7d:96:ae:61:07:47:60:0e:7c:13:39:46:20:8f:90:
9a:d2:a2:15:37:83:6b:17:29:70:59:eb:f7:a5:1d:
81:cf:74:2b:6a:46:37:1d:9c:f6:b7:42:84:69:7f:
a8:07:75:47:c9:8d:9d:15:83:fd:b2:69:37:cd:d3:
8a:e3:0d:46:7f:cd:16:34:b5:c4:fb:43:9e:6d:79:
4c:e8:4a:6e:b1:18:76:81:02:19:28:b6:33:4d:b4:
0e:c8:ab:d6:67:51:d9:08:50:d7:50:c9:9e:bc:e4:
7f:b6:87:f5:3a:a7:98:cb:dd:f5:90:7e:8c:f3:7d:
ff:8e:99:00:67:5b:4e:ee:45:f7:cb:d1:91:cc:11:
3c:bc:85:11:71:ee:ba:f6:2d:ac:2c:86:22:31:10:
17:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:89:DA:CE:BE:ED:60:2F:82:EE:FB:69:82:F3:26:17:48:D8:39:22
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/d4nazr7tYC-C7vtpgvMmF0jYOSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
b3:88:5f:9b:08:6b:ad:28:2a:99:89:23:11:6c:05:b6:6b:7e:
37:2a:44:0c:c8:9a:91:68:b6:46:e1:97:d9:c5:94:ab:54:ca:
b7:aa:d5:15:22:b0:aa:90:be:6a:11:c0:56:1b:5d:2a:67:81:
d4:4b:d6:e3:d8:62:b2:d9:b0:9c:e1:12:54:d8:48:c0:de:6c:
db:c9:96:46:05:fc:dc:70:d7:bc:ba:32:43:30:97:68:51:5a:
b2:c9:a3:64:3e:5b:71:c6:83:53:6e:25:49:65:64:d1:e1:eb:
bf:6b:31:54:3b:f2:c4:75:8e:fa:31:06:e5:69:20:37:8e:09:
c3:47:d4:da:28:42:5d:96:e0:35:12:0e:c6:32:7f:a4:36:d9:
50:24:9d:b9:f4:e3:e4:be:27:7f:c2:d4:f6:e4:94:27:56:6a:
ec:d1:36:75:70:06:09:ef:ae:87:0e:86:76:81:81:56:35:e5:
3a:f2:1f:82:7f:be:44:80:b1:8e:8b:79:3e:99:b6:aa:04:c9:
42:6b:39:c2:6d:eb:ef:63:c5:b4:37:c9:06:08:d0:f6:fd:75:
d9:91:b3:c5:28:88:d2:2e:ce:0b:ca:16:d7:b6:0e:85:16:3f:
38:50:41:23:e2:8d:bf:2d:90:cd:ad:b6:c7:5d:de:30:72:48:
05:8f:8a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:01 2025 by rpki-client