Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eKMVIhRCWvH36ym6jJa5VASBkRI.roa
File: eKMVIhRCWvH36ym6jJa5VASBkRI.roa (raw, json)
Hash identifier: qBTmldmVl87hfL2IK0+IJ77300wMLJN99xukS934pwA=
Subject key identifier: 78:A3:15:22:14:42:5A:F1:F7:EB:29:BA:8C:96:B9:54:04:81:91:12
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEEA4BBADC88E0FE6BCB61A4C5CE72
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eKMVIhRCWvH36ym6jJa5VASBkRI.roa
Signing time: Tue 26 Nov 2024 13:35:13 +0000
ROA not before: Tue 26 Nov 2024 13:35:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40647
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:ea:4b:ba:dc:88:e0:fe:6b:cb:61:a4:c5:ce:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78a3152214425af1f7eb29ba8c96b95404819112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d3:42:82:58:89:c3:d4:c3:5a:6c:be:f6:e9:
e7:44:06:ac:36:d6:27:2d:25:a2:76:b3:e2:f8:a2:
ac:b3:79:c0:c4:06:04:2e:48:ed:34:b9:49:d5:45:
b4:87:8b:50:4f:34:8a:8f:b5:1c:3c:45:7b:2e:cf:
92:ed:83:5e:3a:f1:22:11:19:2e:7b:db:85:41:2f:
83:9a:12:52:bb:45:49:e5:e3:cb:0f:be:01:c4:3c:
7b:0d:42:eb:5d:cf:ff:89:c1:3f:1a:25:5c:e3:8e:
66:ad:32:07:45:05:fa:15:a4:99:92:55:dd:e1:5e:
3a:54:fa:a0:be:f7:56:b2:b0:9a:d7:d7:09:8d:35:
b8:d3:0a:09:28:40:1e:dc:8d:2c:82:5b:0c:61:7d:
ff:59:d9:53:2d:22:88:47:2d:4c:e3:a0:c4:d8:cd:
e4:40:24:5c:84:d5:23:9f:5a:15:9c:f3:ce:21:14:
31:8b:8c:2f:43:84:0e:f3:39:c6:97:50:2c:72:d8:
a0:7e:7a:f7:a4:c0:eb:0b:02:af:d6:b5:a8:7d:92:
bc:47:13:53:34:a0:db:63:0f:07:70:c3:ad:5e:b2:
b5:31:7e:08:e2:03:69:25:79:85:a3:23:e6:27:35:
77:06:46:6a:3f:07:b1:1c:8b:52:d6:a5:1e:61:ed:
dd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A3:15:22:14:42:5A:F1:F7:EB:29:BA:8C:96:B9:54:04:81:91:12
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eKMVIhRCWvH36ym6jJa5VASBkRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
16:cb:63:92:06:63:46:fa:a9:7d:1b:fe:64:cc:f1:ea:fd:8c:
d7:f6:b5:74:91:bb:99:b5:f3:c4:c3:67:f2:cd:70:cf:e9:f1:
22:99:be:fb:b0:1a:7e:6e:a2:8d:d1:6f:9d:05:15:96:2a:2e:
9f:82:44:62:62:32:d1:44:98:d9:74:70:d1:c6:9d:b8:85:96:
47:d7:9c:5c:3a:56:92:a3:23:df:ed:b3:41:b0:1a:2d:c1:10:
11:1e:4d:c6:4a:15:72:82:3f:48:da:53:c1:51:54:da:40:2b:
d4:8b:6e:04:20:17:d3:0c:24:70:55:bf:ac:f4:52:3d:e7:9f:
a4:55:9f:7d:36:7b:6d:f3:5a:fe:40:81:d0:ef:b7:0b:16:40:
90:3a:d7:c9:6d:e3:1e:4e:86:06:4d:e6:e9:60:9b:ca:95:c6:
e1:b7:69:6e:56:25:cd:b3:ee:cd:df:3b:86:89:fa:14:97:f5:
39:e3:da:1e:ef:b4:5f:78:be:c1:a0:dc:50:35:3c:f4:de:21:
de:37:e1:d5:41:af:0e:4e:70:64:89:ff:60:15:16:17:ea:5d:
af:6c:60:01:88:2c:eb:0f:02:9d:05:7a:04:cf:7c:2b:30:4d:
d5:e6:9c:69:e6:67:22:cf:84:56:e4:54:64:0a:5e:19:b5:40:
5b:06:24:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:36 2025 by rpki-client