Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/sqylyaetR7jPiRbQMzZ82abYlIc.roa
File: sqylyaetR7jPiRbQMzZ82abYlIc.roa (raw, json)
Hash identifier: 9caK6egj/Meo/eVPrnUt7UPr2FpkJX8EhL/HLZ8KGEY=
Subject key identifier: B2:AC:A5:C9:A7:AD:47:B8:CF:89:16:D0:33:36:7C:D9:A6:D8:94:87
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF0BBC80B332CE14A07E7E0D17BBCD
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/sqylyaetR7jPiRbQMzZ82abYlIc.roa
Signing time: Tue 26 Nov 2024 13:35:22 +0000
ROA not before: Tue 26 Nov 2024 13:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396612
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:0b:bc:80:b3:32:ce:14:a0:7e:7e:0d:17:bb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2aca5c9a7ad47b8cf8916d033367cd9a6d89487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:85:ac:f5:c7:fe:24:ca:43:fb:ae:a5:b0:86:
eb:5c:a6:89:49:ce:b7:11:fc:e0:9b:61:39:57:e9:
da:09:f0:11:a7:e6:05:1f:09:3a:e3:a7:3c:25:bf:
fb:fe:92:1b:a9:e7:b8:b5:7e:0c:13:e6:c3:b7:75:
4a:92:b9:d8:44:67:c3:db:4b:a3:a5:6d:fc:93:e8:
bd:6f:d5:89:20:f8:fb:46:f9:45:8b:e2:85:d7:d9:
83:f6:64:ed:42:d5:4e:0f:f8:ce:77:49:e1:08:c2:
35:7b:d0:10:a8:55:6f:f3:b9:20:02:12:20:1c:1b:
be:6f:e4:23:94:c9:23:14:17:18:9c:3b:2e:93:6f:
1a:30:b2:1a:1e:26:ec:6d:c9:47:e7:7f:35:ca:01:
a1:66:bf:27:0a:ee:10:9c:72:9b:eb:c2:64:2c:74:
09:96:dc:f6:56:df:a7:57:65:3a:73:58:82:d2:8b:
f8:de:4a:58:e5:4f:7e:b0:b1:5d:ba:66:5e:c9:e8:
3b:d4:3e:01:3d:67:a2:10:a1:72:1e:3a:b0:08:a5:
11:3c:0c:46:de:12:3f:d6:28:ca:0e:ae:33:92:4f:
48:ca:9a:c6:65:05:c8:27:a6:85:79:2c:da:bc:ea:
18:16:f7:d7:e9:92:05:fa:81:a2:c9:39:6f:07:0d:
ff:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AC:A5:C9:A7:AD:47:B8:CF:89:16:D0:33:36:7C:D9:A6:D8:94:87
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/sqylyaetR7jPiRbQMzZ82abYlIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
86:18:58:fa:7b:a4:fe:ea:be:b1:fe:07:42:08:73:b1:f1:29:
19:f0:a9:1b:06:46:34:e1:7a:96:81:bd:e8:b2:65:3f:1f:d0:
24:cd:c3:66:21:3b:0b:68:bc:5c:da:b4:f3:85:ff:3e:74:b6:
fa:8e:52:32:a9:7a:b4:3f:2d:32:01:e8:21:bb:84:0c:5b:93:
2f:af:93:b7:7d:52:75:f7:57:fa:b6:b1:e3:87:c6:0c:78:d0:
d6:c8:f6:b9:73:ec:22:d7:51:42:ff:24:70:25:0c:05:1e:f0:
ef:b6:0b:c1:15:37:bf:64:2e:53:6e:b7:e3:bf:2d:c3:8e:7e:
1d:c6:9f:b1:0a:3d:12:2b:6c:2c:13:3e:bf:90:46:63:60:b8:
6b:c6:aa:cb:9d:a7:3d:68:68:3b:a6:f2:e0:dd:bb:b3:9f:d8:
6e:9e:f0:81:2b:df:94:71:01:2a:0b:43:d4:35:66:22:ce:e5:
6c:d5:60:f0:ec:50:2c:75:22:70:4b:43:ba:15:27:09:00:6e:
f5:ad:8c:3f:d7:cb:7d:c4:58:fe:c3:4d:a5:a1:88:3e:8a:35:
d2:48:1f:9c:a7:78:d3:85:c4:bc:85:47:fe:8c:14:d0:1c:70:
b4:86:f7:a2:3e:47:9d:52:84:24:41:f3:f7:03:88:82:a2:f7:
fa:96:2a:11
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorwu8gLMyzhSgfn4NF7vNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmFjYTVjOWE3YWQ0N2I4Y2Y4OTE2ZDAzMzM2N2NkOWE2ZDg5NDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIWs9cf+JMpD+66lsIbrXKaJSc63
Efzgm2E5V+naCfARp+YFHwk646c8Jb/7/pIbqee4tX4ME+bDt3VKkrnYRGfD20uj
pW38k+i9b9WJIPj7RvlFi+KF19mD9mTtQtVOD/jOd0nhCMI1e9AQqFVv87kgAhIg
HBu+b+QjlMkjFBcYnDsuk28aMLIaHibsbclH5381ygGhZr8nCu4QnHKb68JkLHQJ
ltz2Vt+nV2U6c1iC0ov43kpY5U9+sLFdumZeyeg71D4BPWeiEKFyHjqwCKURPAxG
3hI/1ijKDq4zkk9IyprGZQXIJ6aFeSzavOoYFvfX6ZIF+oGiyTlvBw3/1wIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFLKspcmnrUe4z4kW0DM2fNmm2JSHMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvc3F5bHlhZXRSN2pQaVJiUU16WjgyYWJZbEljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAIYYWPp7pP7qvrH+B0IIc7HxKRnwqRsG
RjThepaBveiyZT8f0CTNw2YhOwtovFzatPOF/z50tvqOUjKperQ/LTIB6CG7hAxb
ky+vk7d9UnX3V/q2seOHxgx40NbI9rlz7CLXUUL/JHAlDAUe8O+2C8EVN79kLlNu
t+O/LcOOfh3Gn7EKPRIrbCwTPr+QRmNguGvGqsudpz1oaDum8uDdu7Of2G6e8IEr
35RxASoLQ9Q1ZiLO5WzVYPDsUCx1InBLQ7oVJwkAbvWtjD/Xy33EWP7DTaWhiD6K
NdJIH5yneNOFxLyFR/6MFNAccLSG96I+R51ShCRB8/cDiIKi9/qWKhE=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:58 2025 by rpki-client