Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/uGg-uXe6F8ovIVIF3CntvACfsIc.roa
File: uGg-uXe6F8ovIVIF3CntvACfsIc.roa (raw, json)
Hash identifier: SWeQjsQ5FUeXxQqOowKrE3WN8j6tJPR6DbhmKo2NyEU=
Subject key identifier: B8:68:3E:B9:77:BA:17:CA:2F:21:52:05:DC:29:ED:BC:00:9F:B0:87
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF008F17667A6114B37AFF51651A3
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/uGg-uXe6F8ovIVIF3CntvACfsIc.roa
Signing time: Tue 26 Nov 2024 13:35:15 +0000
ROA not before: Tue 26 Nov 2024 13:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396549
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f0:08:f1:76:67:a6:11:4b:37:af:f5:16:51:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8683eb977ba17ca2f215205dc29edbc009fb087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7c:e0:d2:d1:5d:57:5a:b3:a9:a9:ee:00:30:
d4:0d:60:51:42:86:69:93:4e:4b:20:e8:b4:0d:df:
39:45:d9:65:92:b3:00:33:79:0f:86:3e:2e:86:04:
a5:86:03:9f:5b:5b:df:b7:37:cd:fa:63:d0:3a:24:
09:ba:42:32:66:cc:07:c2:a1:ad:14:80:ca:1e:9e:
75:3c:d7:a0:f7:8f:e3:63:29:39:e5:8d:19:a3:12:
fd:8f:5a:f7:ca:e2:67:3e:d0:6a:90:ce:76:3c:d9:
16:36:45:f9:74:3f:d3:90:75:3d:e7:7c:ee:b3:73:
cb:5e:e3:fe:ef:bf:e3:c0:a9:fc:47:e2:a2:42:3b:
2a:43:ce:fd:8f:81:42:49:74:8f:b5:39:9b:df:a7:
94:c9:8e:3e:cc:ff:e7:3f:9a:c7:96:da:bd:50:47:
00:89:60:67:3f:72:dd:9d:99:50:5b:48:af:ce:8f:
7d:69:58:d2:6d:ea:63:6e:f6:5f:f6:32:41:47:b8:
cc:a6:61:00:4a:43:c5:53:54:2a:bd:ae:79:91:b4:
32:34:7b:da:16:93:e5:96:3a:7e:6e:d1:12:4d:d6:
7a:c6:5c:08:3b:07:8a:ac:db:23:6a:0a:97:d5:c5:
8d:ed:86:1e:e0:c0:a7:17:18:87:1c:a0:94:ba:6e:
18:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:68:3E:B9:77:BA:17:CA:2F:21:52:05:DC:29:ED:BC:00:9F:B0:87
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/uGg-uXe6F8ovIVIF3CntvACfsIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
1d:f1:19:ad:04:a6:ee:38:f1:06:4f:2f:cc:b8:d1:38:81:19:
00:2e:b0:75:07:fc:f2:f6:e7:ac:ec:68:fb:a6:71:54:02:a5:
d5:80:94:0e:f2:46:f7:34:3e:f9:40:8d:8e:20:ec:24:c3:fd:
c3:82:bf:c1:2c:fe:fd:32:03:aa:d3:1c:57:1d:49:db:9a:3c:
47:40:12:5d:24:28:ec:ce:7c:fe:50:a3:f5:66:37:80:dc:d9:
fc:1b:1e:d1:64:c2:af:0a:56:83:a2:52:a1:90:76:7c:fb:6e:
cc:fa:9d:88:b2:f3:02:7e:82:a4:b5:f1:ff:01:db:f8:8a:42:
91:c5:e0:a3:d3:ca:d7:61:6e:cc:58:09:d6:93:19:a9:f7:a2:
9e:78:53:a8:a0:91:76:3b:97:b6:85:d8:e5:f9:ff:4b:82:64:
6b:9f:04:ad:83:e1:c4:eb:cb:b4:f5:9c:8d:5d:f7:51:a9:67:
6b:08:1a:95:24:1b:5a:57:f5:75:1d:ee:cd:88:0e:0e:d9:75:
9c:6b:46:2a:27:13:8e:bb:3b:c7:48:c7:c9:e2:b9:7e:2d:b4:
3c:6d:37:4d:f1:a1:fd:25:40:66:06:14:9d:60:35:0c:e1:00:
8a:fa:7b:c2:80:98:cd:b1:54:9a:a1:4d:00:bd:8d:db:3a:de:
4b:bd:80:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:12 2025 by rpki-client