Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/e1Vq426mefudu1pKKujgVN8S_5o.roa
File: e1Vq426mefudu1pKKujgVN8S_5o.roa (raw, json)
Hash identifier: ZxtFVsi/o5tSQ0cmtnxFOXnvGXL13wYQTviV+OYMukk=
Subject key identifier: 7B:55:6A:E3:6E:A6:79:FB:9D:BB:5A:4A:2A:E8:E0:54:DF:12:FF:9A
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 018EE6F1BDA6B28BA390C6A2F20EED3FDDAB
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/e1Vq426mefudu1pKKujgVN8S_5o.roa
Signing time: Tue 16 Apr 2024 12:46:26 +0000
ROA not before: Tue 16 Apr 2024 12:46:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7342
IP address blocks: 81.19.193.0/24 maxlen: 24
81.19.196.0/24 maxlen: 24
81.19.197.0/24 maxlen: 24
81.19.201.0/24 maxlen: 24
81.19.204.0/24 maxlen: 24
81.19.206.0/24 maxlen: 24
81.19.207.0/24 maxlen: 24
193.109.220.0/24 maxlen: 24
194.110.75.0/24 maxlen: 24
217.30.80.0/24 maxlen: 24
217.30.81.0/24 maxlen: 24
217.30.82.0/24 maxlen: 24
217.30.84.0/24 maxlen: 24
217.30.87.0/24 maxlen: 24
217.30.92.0/24 maxlen: 24
2a10:eec0::/48 maxlen: 48
2a10:eec0:1::/48 maxlen: 48
2a10:eec0:2::/48 maxlen: 48
2a10:eec0:3::/48 maxlen: 48
2a10:eec0:4::/48 maxlen: 48
2a10:eec0:7::/48 maxlen: 48
2a10:eec0:8::/48 maxlen: 48
2a10:eec0:a::/48 maxlen: 48
2a10:eec0:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Apr 2024 12:55:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:f1:bd:a6:b2:8b:a3:90:c6:a2:f2:0e:ed:3f:dd:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Apr 16 12:46:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b556ae36ea679fb9dbb5a4a2ae8e054df12ff9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a6:65:e9:7b:20:b8:cc:e7:71:2a:c8:c1:e5:
ed:01:e7:7f:5e:fc:3b:66:d8:3a:61:d1:71:63:7d:
41:15:96:21:2b:ee:78:f3:fe:be:78:b5:ae:d0:29:
11:fd:d2:64:e9:5b:46:d9:34:bc:a8:99:65:71:04:
a6:03:3f:8a:94:85:c4:01:69:78:19:00:b0:d9:e6:
e8:03:1b:16:59:d1:ab:c2:9d:8a:67:71:51:1d:d2:
c7:b3:c8:34:fb:27:f8:2a:ad:3f:07:46:25:c9:8e:
09:d6:61:6b:22:98:c4:0c:63:7c:e6:52:08:41:26:
ae:60:42:c3:a0:0a:e4:d0:18:0c:96:58:d9:c6:88:
fd:ff:0d:91:8b:a7:c1:14:79:7c:cb:0d:1e:b2:59:
57:98:96:0c:0d:5c:ba:c3:81:29:05:67:d4:bb:dd:
c0:04:70:70:0f:40:1c:eb:88:d0:e9:37:f1:da:93:
9f:ed:1c:fb:54:28:a5:6e:69:b1:9d:69:af:8e:fc:
77:51:2e:d0:93:d7:2f:0f:11:c6:69:7b:d4:e4:03:
10:2d:b9:e4:fe:c8:57:f3:00:5e:52:e6:36:b4:76:
9a:27:29:57:d4:8e:80:da:6e:c3:00:b7:73:ce:69:
18:12:9b:58:ea:38:9f:ef:39:a2:4b:13:02:00:c0:
f8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:55:6A:E3:6E:A6:79:FB:9D:BB:5A:4A:2A:E8:E0:54:DF:12:FF:9A
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/e1Vq426mefudu1pKKujgVN8S_5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.193.0/24
81.19.196.0/23
81.19.201.0/24
81.19.204.0/24
81.19.206.0/23
193.109.220.0/24
194.110.75.0/24
217.30.80.0-217.30.82.255
217.30.84.0/24
217.30.87.0/24
217.30.92.0/24
IPv6:
2a10:eec0::-2a10:eec0:4:ffff:ffff:ffff:ffff:ffff
2a10:eec0:7::-2a10:eec0:8:ffff:ffff:ffff:ffff:ffff
2a10:eec0:a::/48
2a10:eec0:c::/48
Signature Algorithm: sha256WithRSAEncryption
87:f8:ab:d5:6f:5f:c3:3d:68:85:31:c6:c2:a6:92:c3:90:f7:
ab:30:41:cc:4e:e7:aa:78:4e:e1:e9:d2:08:c5:5c:e7:9e:97:
69:62:8d:47:b4:ff:54:e8:a9:ae:ba:29:98:3d:4c:85:3c:1d:
44:af:a4:41:81:e1:14:80:25:68:2c:45:36:a3:01:1a:ca:d9:
37:92:c0:14:ba:9e:fa:58:50:34:f3:fa:2d:b0:02:ae:13:a0:
93:68:5f:ca:19:66:19:df:06:2f:0b:f6:69:30:2b:e2:bc:b0:
9d:0b:94:9b:35:89:dd:0a:9a:6c:6b:1c:6f:74:88:cf:5f:f7:
ec:a6:35:b6:4b:a5:bc:2b:35:43:3b:25:4f:d7:b4:2f:5f:5b:
8b:53:b4:63:51:cd:8e:b8:80:76:ab:e5:8d:de:36:1f:11:1f:
2b:c2:9c:d2:18:bc:b6:2f:2e:02:02:ab:61:e5:28:b4:fc:6e:
b8:75:d2:0e:b5:24:66:f6:c6:55:33:a9:7b:34:88:b0:85:ba:
a7:89:8a:1b:cb:74:00:a4:f4:d2:91:d2:5b:20:4d:20:4c:4e:
6f:a2:6b:3c:62:e9:14:6f:fe:00:3c:b0:e6:57:bb:0f:38:b1:
a1:99:77:a0:2a:34:59:04:12:8d:d8:ef:c9:d3:fd:21:3c:e7:
8f:a4:da:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:26 2025 by rpki-client