Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/UXiYM5iofMA0C4NDypoaIko4qc4.roa
File: UXiYM5iofMA0C4NDypoaIko4qc4.roa (raw, json)
Hash identifier: xtBab6druq+BkBuvcP7WSKmR2IHuN+R45WrIUfYBuUk=
Subject key identifier: 51:78:98:33:98:A8:7C:C0:34:0B:83:43:CA:9A:1A:22:4A:38:A9:CE
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 018EF19DAC14C4B2CCE7CE4BD93630CD56C0
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/UXiYM5iofMA0C4NDypoaIko4qc4.roa
Signing time: Thu 18 Apr 2024 14:30:26 +0000
ROA not before: Thu 18 Apr 2024 14:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8282
IP address blocks: 81.92.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 13:57:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:9d:ac:14:c4:b2:cc:e7:ce:4b:d9:36:30:cd:56:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Apr 18 14:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5178983398a87cc0340b8343ca9a1a224a38a9ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:32:0c:2c:f4:cf:71:20:82:d3:1c:6c:e7:
c3:6e:4b:db:3b:0f:01:f0:3a:f2:d1:1f:6b:08:a5:
43:da:13:19:2f:9a:8b:78:d7:10:4d:e5:f2:cc:a1:
d9:2b:45:41:1c:79:4a:1d:21:85:6c:a4:6c:e6:66:
78:0b:d7:92:92:cf:bb:fb:fa:80:8a:2f:86:36:82:
0a:9e:fc:10:35:ad:a1:01:57:d1:4b:e2:2f:64:68:
ab:fe:5c:72:fd:91:5c:ed:f7:63:93:fb:fc:2e:23:
21:29:da:3a:77:61:47:0e:9a:7b:6c:57:28:96:5a:
0c:a1:40:c6:c3:1f:0c:b1:35:71:9a:57:e6:15:21:
df:c4:7f:26:c0:39:22:d3:10:55:ef:81:d6:ff:eb:
61:cf:5b:68:8b:55:a9:14:b2:51:9d:b9:58:7d:cf:
fc:7c:43:1f:46:19:23:4f:75:06:17:79:01:25:95:
c4:a4:d2:d8:20:97:d0:91:fe:d8:bf:78:cd:38:70:
71:d5:5b:08:05:80:11:4d:7a:87:cb:d8:f5:76:03:
16:86:73:be:fc:52:ae:df:83:75:56:29:b8:e0:66:
6f:b2:38:51:b9:a4:e7:98:43:77:50:8a:ab:e9:a7:
6a:79:c2:3c:eb:ad:c0:94:b4:92:81:5b:84:60:96:
0b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:78:98:33:98:A8:7C:C0:34:0B:83:43:CA:9A:1A:22:4A:38:A9:CE
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/UXiYM5iofMA0C4NDypoaIko4qc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.219.0/24
Signature Algorithm: sha256WithRSAEncryption
32:2a:f3:17:dc:d4:20:dd:30:e7:20:61:e1:4a:4a:1b:b5:ce:
5d:d9:82:88:fc:db:4b:99:8b:5b:3b:1d:27:6f:39:0f:96:48:
d9:66:30:23:49:c7:d5:98:47:95:65:f6:fc:43:fe:48:22:0e:
93:76:d0:12:cb:cf:50:54:17:76:99:c1:1b:49:27:b2:8e:fc:
c8:68:53:a6:d3:35:9f:f2:28:f0:2e:41:e3:61:bf:88:03:f9:
07:aa:a2:ec:63:ca:45:71:ea:2c:6a:68:a6:34:bc:7b:5d:49:
de:f0:55:9d:d1:b9:4c:ef:eb:6f:3b:4d:5c:01:8b:0d:1c:25:
54:9b:5e:ec:78:44:f4:4c:ad:80:ca:55:44:10:8f:ef:f8:6a:
cd:c2:60:d0:d3:c4:cd:d5:d5:53:bc:c6:13:e6:32:66:fb:7f:
e2:7f:68:0d:a6:f1:e1:f6:c6:e4:f2:f7:f2:c5:07:6d:3d:23:
0a:96:0a:19:0e:cc:5d:32:73:23:2d:a5:05:9b:f7:c5:84:01:
7a:dd:8a:78:80:cc:ba:f4:69:b1:3e:ab:3a:ed:43:b2:ce:0b:
0c:26:10:48:eb:8a:f3:e2:a8:c8:16:11:5a:b4:13:d0:ca:84:
e1:2d:72:ec:d2:7f:31:59:3c:5c:90:9b:87:38:f8:96:6a:7e:
73:4a:10:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 18:14:23 2024 by rpki-client on console-fra.rpki-client.org