Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/qpyejXJsLGeV-1w7d70WtUEr5OQ.roa
File: qpyejXJsLGeV-1w7d70WtUEr5OQ.roa (raw, json)
Hash identifier: xupEpZqVwkpO34pI0QCBtfcAZQkc22ws5eSju7pRmoc=
Subject key identifier: AA:9C:9E:8D:72:6C:2C:67:95:FB:5C:3B:77:BD:16:B5:41:2B:E4:E4
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F625CE702E8475A591D3F3B5D417244
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/qpyejXJsLGeV-1w7d70WtUEr5OQ.roa
Signing time: Tue 25 Jun 2024 12:32:44 +0000
ROA not before: Tue 25 Jun 2024 12:32:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396589
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Nov 2024 13:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:5c:e7:02:e8:47:5a:59:1d:3f:3b:5d:41:72:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa9c9e8d726c2c6795fb5c3b77bd16b5412be4e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d0:5d:86:e3:85:14:cb:b0:86:b6:61:09:14:
16:38:4e:5f:f6:c4:fb:bb:73:c9:05:03:8f:5b:2f:
28:70:b6:d1:08:03:f2:6e:51:be:9a:dd:c5:cf:e8:
5b:1d:2c:4f:93:23:75:e5:6a:47:dd:7d:d7:12:36:
25:9f:2c:ad:0d:f1:28:de:fe:50:ae:dd:ec:eb:e4:
82:a0:70:29:9b:90:01:37:f6:9c:c3:81:56:67:7b:
a3:5e:8e:c3:8b:af:ee:90:b8:f8:1c:5e:58:5f:05:
34:10:f3:99:4d:37:73:a5:fb:ff:52:b7:e9:18:e1:
0c:0a:41:f2:ea:35:61:d6:88:16:fa:c4:82:9b:69:
28:3b:2e:b5:9a:4b:66:80:f1:f5:4a:51:d3:d1:d5:
44:43:f0:43:66:16:94:86:40:e4:7e:21:5f:be:c7:
c8:56:c6:fa:d6:38:f2:bd:8c:07:38:77:83:74:ae:
dc:81:be:5c:80:8b:80:45:d8:4e:ba:e3:9b:36:9e:
91:aa:f6:f0:58:10:93:12:2f:b1:cd:1f:78:22:8b:
c2:82:77:0d:a7:c3:24:45:83:45:ad:94:45:df:11:
97:12:3a:50:8a:f0:1c:5c:04:6a:f7:a4:95:11:16:
bb:69:5d:a1:3d:5b:16:21:6f:dc:9f:75:60:d8:9b:
95:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9C:9E:8D:72:6C:2C:67:95:FB:5C:3B:77:BD:16:B5:41:2B:E4:E4
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/qpyejXJsLGeV-1w7d70WtUEr5OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
a4:1c:b7:30:ee:f1:5f:28:da:42:f7:74:d0:ff:d0:e7:b9:95:
2a:8d:99:e3:17:16:f8:cf:d1:f4:7d:48:63:06:3e:fe:d0:4c:
92:78:32:a5:03:ac:01:50:41:5b:7f:0e:6d:f8:9a:ca:db:f3:
61:13:9a:7c:28:9c:e2:2e:1d:bf:94:80:10:f2:0f:a8:c6:00:
cb:66:cf:b6:31:1f:d6:50:03:d2:58:73:b1:ff:6e:03:ef:5a:
b4:13:91:7c:96:de:2b:a9:2f:62:1a:d6:a9:21:43:0f:99:4f:
d6:0f:d2:80:a4:bc:9e:ae:e1:81:70:9b:79:a0:fb:65:17:bf:
5f:50:b6:cf:df:ff:2e:6d:bc:fa:3e:f6:91:5e:e5:3c:29:af:
91:be:bc:93:15:ee:87:3c:a5:5d:78:25:2c:0e:42:9f:8d:80:
00:d3:e1:32:67:ac:0d:71:19:ce:46:9c:c2:af:36:08:58:2a:
8f:ca:3f:7f:b9:04:00:67:72:14:93:69:cb:49:48:a6:01:be:
16:56:ef:13:e6:9d:b1:78:85:a7:b5:97:4a:ea:97:cb:65:ce:
c5:e5:0d:b9:fc:c4:58:93:dc:dd:fe:9e:67:4d:e1:d8:db:99:
68:da:5f:80:f6:31:32:8f:e3:1d:a8:c5:82:83:6d:ee:8d:51:
b5:d4:85:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:24 2025 by rpki-client