Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/Fwlv6v92uiUGXd-WXWGeMZi1I20.roa
File: Fwlv6v92uiUGXd-WXWGeMZi1I20.roa (raw, json)
Hash identifier: VqqVthfJONReSdCG0GRc75HuswC9akxA3MVmaaM1fp8=
Subject key identifier: 17:09:6F:EA:FF:76:BA:25:06:5D:DF:96:5D:61:9E:31:98:B5:23:6D
Certificate issuer: /CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Certificate serial: 018F5A34BCDE4A63EFBC53858593983630DA
Authority key identifier: AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/Fwlv6v92uiUGXd-WXWGeMZi1I20.roa
Signing time: Wed 08 May 2024 21:55:56 +0000
ROA not before: Wed 08 May 2024 21:55:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57242
IP address blocks: 81.163.208.0/24 maxlen: 24
81.163.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 06:20:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5a:34:bc:de:4a:63:ef:bc:53:85:85:93:98:36:30:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Validity
Not Before: May 8 21:55:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17096feaff76ba25065ddf965d619e3198b5236d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6f:0c:06:e9:6b:1a:7b:fe:57:e8:e9:48:c8:
e4:d2:6b:83:37:d6:a8:06:8b:50:7e:55:5a:6c:86:
b2:1e:d8:73:99:7a:1d:2c:5c:af:40:4d:21:c1:e9:
33:ca:3e:68:2e:e0:4d:6c:85:38:46:77:f7:9a:76:
d0:c0:9a:86:0e:bd:cf:4e:0d:bf:56:2f:7f:e4:74:
c1:77:1c:b6:74:6d:c3:c3:45:cd:88:13:9c:29:0d:
33:05:ab:c7:85:d1:9a:8a:6d:b0:c1:a6:1a:0b:39:
2f:ba:5b:d2:b0:a4:01:4a:0c:74:64:f8:87:75:39:
1e:d7:d8:9d:44:f7:3b:a4:42:a2:d3:75:79:1f:15:
af:3d:6f:18:bc:97:8e:a8:e7:b8:16:b9:1f:33:d0:
fc:02:2e:dc:23:09:e1:c3:ee:07:5a:13:41:00:25:
e5:5b:fc:ec:cb:98:28:1c:01:95:9f:53:38:a1:42:
9d:33:7e:7d:5b:c7:2e:19:99:cc:b1:a7:55:40:c3:
71:ad:b3:1d:41:d3:9c:39:d9:ad:0a:d8:8a:d2:6f:
9a:82:ba:03:03:b7:1d:38:df:db:2d:93:b9:89:12:
af:fc:05:0b:91:78:78:70:f4:f1:7c:f4:c1:3c:12:
c5:7c:5b:b7:11:24:1e:17:b4:bf:4a:b3:ff:57:e6:
95:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:09:6F:EA:FF:76:BA:25:06:5D:DF:96:5D:61:9E:31:98:B5:23:6D
X509v3 Authority Key Identifier:
keyid:AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/Fwlv6v92uiUGXd-WXWGeMZi1I20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.208.0/24
81.163.214.0/24
Signature Algorithm: sha256WithRSAEncryption
78:30:47:0e:0e:88:9a:15:1c:ed:1a:8b:7e:c6:9b:e2:f9:85:
4b:5c:69:2a:6d:db:4f:64:01:99:f3:cf:b5:d0:ba:82:8c:fd:
09:ba:6a:83:f5:da:17:f9:b6:6d:80:db:63:88:5d:8f:60:43:
22:fd:ec:ea:ce:92:28:3c:df:a5:94:10:33:6e:3d:9d:91:27:
e1:6d:69:c9:3c:fa:ca:9d:92:ee:5e:1b:14:c1:19:49:e2:c7:
7a:83:0f:e4:12:ef:e9:95:3e:e7:b5:bd:0f:84:55:d9:40:43:
85:7e:80:74:ba:7f:66:95:05:a2:aa:39:01:02:cf:f8:f2:74:
70:f3:af:ec:8f:68:02:02:c7:a0:cd:1d:f4:a9:83:7e:7c:8f:
b7:54:e0:b9:49:6d:b8:b0:6b:ca:d7:24:73:3d:73:67:f7:e9:
6d:61:17:4f:57:d6:83:fa:9a:5f:e0:4f:d8:25:84:5a:49:52:
c0:90:9f:c2:64:92:1c:58:36:86:82:f5:d1:3b:db:13:03:ab:
8e:12:1a:d5:1e:64:0f:86:ee:ef:b0:3a:ed:e4:de:31:84:a4:
d8:b6:9f:59:20:ed:94:79:93:d6:55:cb:9b:14:5d:d3:52:66:
ba:23:9d:43:7c:08:93:e7:b1:46:23:02:67:b2:99:c8:cb:88:
c0:66:c5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 12:52:52 2025 by rpki-client