Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/_91k-2seynjapaElSJB0x84284Y.roa
File: _91k-2seynjapaElSJB0x84284Y.roa (raw, json)
Hash identifier: ptFWmkenhLzn4+FALyHMuNaFzgRZd2bvhBrImnnK44s=
Subject key identifier: FF:DD:64:FB:6B:1E:CA:78:DA:A5:A1:25:48:90:74:C7:CE:36:F3:86
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01932045418C771DAEA07BAB31EB98A524D7
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/_91k-2seynjapaElSJB0x84284Y.roa
Signing time: Tue 12 Nov 2024 12:07:09 +0000
ROA not before: Tue 12 Nov 2024 12:07:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214721
IP address blocks: 81.163.128.0/23 maxlen: 23
81.163.130.0/23 maxlen: 23
81.163.132.0/23 maxlen: 23
81.163.134.0/23 maxlen: 23
81.163.136.0/23 maxlen: 23
81.163.138.0/23 maxlen: 23
81.163.140.0/23 maxlen: 23
81.163.142.0/23 maxlen: 23
81.163.144.0/23 maxlen: 23
81.163.146.0/23 maxlen: 23
81.163.148.0/23 maxlen: 23
81.163.150.0/23 maxlen: 23
81.163.152.0/23 maxlen: 23
81.163.154.0/23 maxlen: 23
81.163.156.0/23 maxlen: 23
81.163.158.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:20:45:41:8c:77:1d:ae:a0:7b:ab:31:eb:98:a5:24:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Nov 12 12:07:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffdd64fb6b1eca78daa5a125489074c7ce36f386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9a:0f:d7:79:0b:88:22:af:6d:44:9a:bb:cb:
59:b6:0e:8d:5f:cc:43:fe:b1:e7:1f:e4:db:70:c9:
61:28:77:d8:03:27:b7:50:5f:d1:71:a3:24:fa:db:
6a:1f:66:35:99:fd:32:f4:ef:e9:d0:8c:50:51:85:
8a:0a:ce:0a:6a:63:28:a0:60:ff:66:0d:fb:eb:23:
1c:a4:29:4f:25:0a:08:c0:65:d8:9f:1d:f4:fa:f3:
af:83:59:49:b6:ed:13:45:d0:88:a6:ae:06:92:d7:
8f:9f:7c:14:92:b2:05:60:47:25:9e:b6:e9:68:d2:
ab:ca:2d:be:42:d6:54:1b:b5:8f:5b:3e:0d:ab:b0:
8b:80:96:4a:29:7b:a0:02:b9:d2:1e:b4:36:19:b8:
e4:65:67:78:4f:14:36:bc:61:5c:82:00:dd:0d:4b:
2f:fe:45:d5:81:92:4b:9e:aa:fb:ed:4e:d8:cb:db:
96:e3:09:9a:a6:ee:f4:e1:0d:68:ba:25:a8:f3:2e:
6f:f0:00:56:c0:cd:17:42:dc:70:be:9a:a1:10:01:
0c:c6:f2:bc:a8:54:df:e6:ff:96:ad:49:5d:e0:b2:
f9:83:86:da:64:43:c7:ee:49:68:57:30:74:64:2b:
5e:fe:fe:19:10:13:aa:56:66:47:4c:b3:15:49:86:
cb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DD:64:FB:6B:1E:CA:78:DA:A5:A1:25:48:90:74:C7:CE:36:F3:86
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/_91k-2seynjapaElSJB0x84284Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.128.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:03:8d:ac:6e:50:02:aa:5f:bc:3b:eb:45:51:01:a5:04:4e:
83:30:28:b7:b3:23:70:5e:ce:0e:c8:97:b0:6a:ad:02:02:20:
bb:3b:2c:c3:87:5a:b0:0c:e3:e8:3c:1a:ce:74:fa:30:92:07:
6f:23:6e:29:8a:ef:c5:3a:6d:26:d0:54:55:db:0d:d8:68:4e:
a0:20:0f:47:59:8f:de:00:43:e6:f6:6b:97:81:aa:ce:27:30:
55:41:4f:49:ab:9e:72:33:cb:6c:6a:ce:ba:a1:75:d8:42:67:
73:dd:6d:fa:56:9a:9d:0c:db:52:21:26:85:6a:f4:b5:10:ff:
b9:4c:25:a5:c7:de:a9:d5:0a:2b:2f:51:36:42:b7:1b:6c:9b:
15:a2:ba:c0:9e:ba:a2:ce:fb:ee:fd:f8:22:41:f0:2a:38:cd:
1e:84:10:8d:72:e9:96:42:75:c0:a2:df:9a:be:08:eb:ed:08:
e9:b8:26:aa:1a:16:5e:93:da:47:6f:e1:a5:cb:cb:de:53:5b:
16:5e:3b:00:d3:be:ff:60:35:c9:f7:0b:ea:75:1e:26:32:17:
24:cf:7b:82:55:ce:44:7e:8f:2b:9c:46:a9:93:6b:fb:64:91:
23:24:25:34:ef:f9:4c:df:c8:be:8c:cd:5b:c5:9b:9b:8f:64:
19:cd:3c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:36:52 2025 by rpki-client