Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eZnkpFJlm3mVexqX2ck3OEoTN9E.roa
File: eZnkpFJlm3mVexqX2ck3OEoTN9E.roa (raw, json)
Hash identifier: JJUoN4P3GItukpFZ2eHP/++FQ0MgWslb0RGXJmsddGI=
Subject key identifier: 79:99:E4:A4:52:65:9B:79:95:7B:1A:97:D9:C9:37:38:4A:13:37:D1
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEEB325716FFA6835F990E10F6949B
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eZnkpFJlm3mVexqX2ck3OEoTN9E.roa
Signing time: Tue 26 Nov 2024 13:35:14 +0000
ROA not before: Tue 26 Nov 2024 13:35:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211369
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:eb:32:57:16:ff:a6:83:5f:99:0e:10:f6:94:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7999e4a452659b79957b1a97d9c937384a1337d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:70:a8:85:55:a8:e2:d5:80:69:c6:83:e3:
be:39:57:11:97:eb:23:38:f8:d3:c5:9f:04:79:c4:
92:a8:f2:04:ee:20:12:1c:a0:5a:a5:bc:2b:f7:87:
4d:ff:f0:7e:fe:cf:ee:ab:87:13:f7:52:38:9e:5a:
c4:e1:0d:8a:aa:32:65:4b:5e:ed:04:4a:16:75:60:
d6:2d:61:44:53:67:13:64:fe:27:27:8f:75:c0:44:
29:14:f4:2a:2c:ce:13:90:46:f0:82:ee:f6:4b:87:
e3:8f:e7:1c:05:72:f5:a7:89:30:22:5c:b4:a5:c6:
2c:81:86:58:5e:43:8a:ad:3d:32:36:c8:e6:cc:47:
46:d9:fd:a5:e1:d9:16:b0:98:8e:ad:b4:62:69:7a:
b1:28:d2:57:38:4f:5b:bc:7f:97:d6:93:f8:ff:85:
19:86:da:28:37:6b:1a:f1:c4:5b:f4:de:f1:bb:ea:
63:3f:aa:e6:b9:53:38:25:55:dd:1b:28:80:8d:9b:
8c:d4:d1:dc:54:e2:81:05:17:f3:5e:f8:9e:cc:18:
4b:15:37:72:55:a9:f2:48:e0:af:12:3d:3b:4c:c4:
e7:41:c2:fb:6e:fe:f6:19:7d:32:29:7c:d6:27:31:
24:3a:5d:9c:e8:55:3b:42:d5:29:af:93:78:fe:50:
32:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:99:E4:A4:52:65:9B:79:95:7B:1A:97:D9:C9:37:38:4A:13:37:D1
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/eZnkpFJlm3mVexqX2ck3OEoTN9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
62:de:5c:56:21:fa:29:e6:6a:e6:2d:db:f8:fa:cc:99:2c:d6:
f2:e7:64:dc:a3:f5:42:a1:c2:9f:e7:4b:cc:19:3c:bf:10:09:
82:7a:8e:37:17:cd:c0:f0:06:ad:1a:83:3d:22:47:a3:12:76:
e4:94:f9:94:ce:a8:33:a0:bc:df:e4:1a:17:53:0d:f5:4c:d0:
62:f4:6f:8c:b3:82:48:80:8d:8a:43:68:85:02:32:8b:af:20:
b0:ce:39:50:10:d8:b1:fd:79:e0:e7:84:2b:c8:93:c2:d2:fc:
2b:49:d3:d0:8c:38:5a:76:54:40:eb:67:5d:db:d4:ca:df:92:
be:34:bc:af:b3:6f:88:2f:f1:34:20:50:8e:18:9e:23:b8:f8:
08:9e:bb:7e:88:72:4a:55:25:c3:37:98:f0:6e:29:5d:59:85:
62:94:1c:d8:e9:34:cd:b0:2a:e9:d7:57:65:1a:11:4f:2a:6a:
76:ea:62:80:36:4c:59:26:6a:f0:25:54:b9:11:93:8d:ab:e0:
25:12:88:54:84:fd:e6:70:d9:4b:48:09:92:8c:b8:ec:95:16:
b8:5e:0c:5f:a4:df:09:03:3e:9b:f4:10:08:14:5c:5e:8f:c7:
6e:ec:7a:e5:76:e8:30:45:af:b4:8a:3e:f8:9e:a8:de:fc:0e:
d7:0c:cc:e8
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorusyVxb/poNfmQ4Q9pSbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTk5ZTRhNDUyNjU5Yjc5OTU3YjFhOTdkOWM5MzczODRhMTMzN2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQJwqIVVqOLVgGnGg+O+OVcRl+sj
OPjTxZ8EecSSqPIE7iASHKBapbwr94dN//B+/s/uq4cT91I4nlrE4Q2KqjJlS17t
BEoWdWDWLWFEU2cTZP4nJ491wEQpFPQqLM4TkEbwgu72S4fjj+ccBXL1p4kwIly0
pcYsgYZYXkOKrT0yNsjmzEdG2f2l4dkWsJiOrbRiaXqxKNJXOE9bvH+X1pP4/4UZ
htooN2sa8cRb9N7xu+pjP6rmuVM4JVXdGyiAjZuM1NHcVOKBBRfzXviezBhLFTdy
VanySOCvEj07TMTnQcL7bv72GX0yKXzWJzEkOl2c6FU7QtUpr5N4/lAyxwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFHmZ5KRSZZt5lXsal9nJNzhKEzfRMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvZVpua3BGSmxtM21WZXhxWDJjazNPRW9UTjlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAGLeXFYh+inmauYt2/j6zJks1vLnZNyj
9UKhwp/nS8wZPL8QCYJ6jjcXzcDwBq0agz0iR6MSduSU+ZTOqDOgvN/kGhdTDfVM
0GL0b4yzgkiAjYpDaIUCMouvILDOOVAQ2LH9eeDnhCvIk8LS/CtJ09CMOFp2VEDr
Z13b1Mrfkr40vK+zb4gv8TQgUI4YniO4+Aieu36IckpVJcM3mPBuKV1ZhWKUHNjp
NM2wKunXV2UaEU8qanbqYoA2TFkmavAlVLkRk42r4CUSiFSE/eZw2UtICZKMuOyV
FrheDF+k3wkDPpv0EAgUXF6Px27seuV26DBFr7SKPvieqN78DtcMzOg=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:31 2025 by rpki-client