Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/r2SuQttsQo2xiKSjThBLP0Dyvpo.roa
File: r2SuQttsQo2xiKSjThBLP0Dyvpo.roa (raw, json)
Hash identifier: r3/FPejbi0MXxISjvAHsZ8p2GHkzUubQrj3kvKtpnk8=
Subject key identifier: AF:64:AE:42:DB:6C:42:8D:B1:88:A4:A3:4E:10:4B:3F:40:F2:BE:9A
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 01904F626AC6ADFF5AF4CFBBC62F92D525F6
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/r2SuQttsQo2xiKSjThBLP0Dyvpo.roa
Signing time: Tue 25 Jun 2024 12:32:48 +0000
ROA not before: Tue 25 Jun 2024 12:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396827
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Nov 2024 13:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:62:6a:c6:ad:ff:5a:f4:cf:bb:c6:2f:92:d5:25:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Jun 25 12:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af64ae42db6c428db188a4a34e104b3f40f2be9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f1:69:30:17:ca:d9:bd:48:a6:fd:da:5b:be:
89:8e:b5:ea:bc:e8:3f:01:ee:05:34:fa:2e:0a:e5:
c6:49:e9:6b:7a:9d:14:ce:fa:78:18:d2:64:2e:10:
9f:52:ef:46:41:09:2d:57:f3:38:ce:9b:cd:32:d2:
e1:c4:99:1b:13:6f:3b:02:a4:62:c9:61:e1:6e:a5:
f0:b7:b8:6e:05:b1:a0:ac:65:04:d7:2f:b6:42:60:
d2:35:c1:f8:c7:46:79:62:49:9f:1a:51:12:fd:40:
c6:b7:66:8a:0d:6d:d6:72:02:a6:1d:76:54:6b:a0:
77:b8:76:f2:c1:30:66:d3:78:3e:64:2f:c5:84:1a:
e4:74:a5:6b:e0:3a:70:ee:bb:66:fb:98:63:8d:3c:
c6:f2:82:aa:e0:86:06:39:ac:e2:40:0c:75:39:f0:
c5:ec:5e:5f:38:9a:c3:d0:ad:f1:fb:4a:c5:e8:18:
34:84:b7:ca:a2:4b:00:64:f7:2f:9a:83:f9:1d:e7:
da:f5:0d:07:93:e8:33:f3:16:00:98:8c:30:38:90:
b3:5b:9c:c0:c3:33:d2:80:ae:ea:ae:89:d8:97:77:
9b:d1:a6:3b:d3:0d:34:e3:d8:3c:ab:98:27:27:92:
ae:35:f8:96:31:30:67:23:aa:ce:c9:5f:ba:49:bc:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:64:AE:42:DB:6C:42:8D:B1:88:A4:A3:4E:10:4B:3F:40:F2:BE:9A
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/r2SuQttsQo2xiKSjThBLP0Dyvpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
Signature Algorithm: sha256WithRSAEncryption
83:7a:48:f8:ed:49:2e:8c:b9:87:6b:5f:61:b0:8d:1e:ba:11:
45:fe:2c:78:d2:13:b6:54:a6:5d:e8:2e:53:fb:3f:cb:43:40:
37:8e:fa:85:12:c2:93:9f:41:4d:96:3d:b0:cd:6a:f7:cf:73:
62:67:8b:ef:42:48:0c:28:9e:5c:c3:0c:52:15:1b:b4:36:ff:
8f:4e:ed:cd:a7:94:b9:e0:d9:e8:30:db:aa:48:be:45:82:d4:
b1:ab:0e:50:eb:81:96:e1:cf:54:c8:6a:58:51:55:ab:6a:76:
09:69:ef:23:b7:67:7a:cf:79:37:93:92:e7:29:bd:75:9e:e0:
2b:bb:28:bf:45:54:25:12:f8:3a:ec:44:f7:12:8c:a7:71:76:
89:15:49:75:a2:71:9d:d5:c5:dd:c1:66:73:c7:13:11:e2:14:
f0:8d:d2:9f:01:74:f4:e6:d6:ad:3d:7b:f8:a6:9e:c6:cf:54:
5f:eb:4c:36:b4:ea:71:ef:1e:72:cd:ce:90:a1:df:05:59:52:
99:71:c5:6b:a5:3f:58:af:60:f3:14:c7:b8:8d:d6:15:09:ce:
fe:47:5e:c1:29:e3:e4:ce:81:50:e4:da:1d:d3:3e:60:18:e7:
b0:81:d4:c6:ab:a4:5c:1f:83:51:3c:bb:15:07:3b:78:38:34:
e9:b1:89:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:02 2025 by rpki-client