Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hyo8mn4_QiCF1Detzl9xkg2IBew.roa
File: hyo8mn4_QiCF1Detzl9xkg2IBew.roa (raw, json)
Hash identifier: F4wbYQJAb2d61EKUjrGh3NyPJWDFiHnMz2XOK/kVhhM=
Subject key identifier: 87:2A:3C:9A:7E:3F:42:20:85:D4:37:AD:CE:5F:71:92:0D:88:05:EC
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 018CC26D2CADA97F900D564FF7C349F169A6
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hyo8mn4_QiCF1Detzl9xkg2IBew.roa
Signing time: Mon 01 Jan 2024 00:29:43 +0000
ROA not before: Mon 01 Jan 2024 00:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210368
IP address blocks: 94.45.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:2c:ad:a9:7f:90:0d:56:4f:f7:c3:49:f1:69:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 00:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=872a3c9a7e3f422085d437adce5f71920d8805ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5e:e8:82:c6:2b:a8:df:7a:9b:66:51:54:f2:
ff:96:30:05:3b:88:43:db:8a:a4:c1:b1:b9:dd:bb:
28:82:9f:c5:2f:de:14:b8:72:3c:29:a2:80:3c:f6:
e6:a4:f7:04:55:02:99:d4:d4:00:d7:2c:de:97:7c:
af:a4:3e:86:74:d3:b5:3c:d9:8a:f8:2a:c2:a2:1c:
23:e0:9a:8a:ec:d6:5f:33:ca:f0:f7:f9:15:04:92:
78:3b:29:40:85:00:94:19:d3:68:47:56:0d:a9:96:
92:1c:96:87:b1:ae:55:8f:2b:40:57:66:f5:20:92:
99:d6:26:2d:b7:0f:72:fa:6a:00:a9:6b:22:ed:6b:
ae:3a:5c:2b:d3:54:08:07:8c:58:13:1b:db:a1:20:
5e:f3:0b:4e:42:09:8f:04:2c:6a:7a:34:73:f7:f8:
b7:33:e6:2a:b9:a4:ca:f1:65:a3:5d:b8:11:4b:01:
58:0c:b1:99:ed:62:d5:ff:ae:54:08:b8:d4:89:69:
9c:c3:ee:52:40:9b:f2:11:ab:77:78:31:de:ce:e6:
56:e7:cc:64:bc:f7:f8:03:04:40:80:02:12:53:d8:
52:15:00:91:ff:f4:4b:cb:08:84:e1:22:79:38:ae:
bd:3f:4c:ce:41:1d:73:05:8b:1a:15:ec:b7:ad:cd:
cc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2A:3C:9A:7E:3F:42:20:85:D4:37:AD:CE:5F:71:92:0D:88:05:EC
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hyo8mn4_QiCF1Detzl9xkg2IBew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.144.0/24
Signature Algorithm: sha256WithRSAEncryption
99:25:4e:47:9f:e0:ca:4d:6a:c9:b5:f8:9b:f7:5e:5d:2e:1f:
de:08:52:2a:2f:24:1a:48:0a:af:ac:11:09:1d:71:49:2e:ca:
f5:ca:ba:cd:bf:18:56:e7:bf:8d:f9:b6:56:74:63:e0:7c:a2:
94:65:5f:66:dd:36:16:91:4e:16:a9:08:73:6e:70:ed:3f:12:
35:cd:d7:75:6f:7b:d5:05:a0:9c:43:f1:2c:1d:b3:1c:71:cd:
93:0c:71:ea:fa:14:4f:ec:23:c5:5c:0d:7a:e0:e0:e9:39:1a:
21:56:65:61:e8:32:f9:06:e4:a9:2d:e8:fb:ae:97:e3:4c:87:
62:37:15:60:44:93:6e:50:55:2d:3d:05:a0:47:9b:22:9c:26:
72:8b:ea:77:e8:3d:90:58:74:70:91:d4:9b:08:27:39:27:7c:
07:cb:f0:e9:40:bd:77:fb:81:82:0f:23:15:db:64:ad:8e:02:
b2:93:7f:0c:31:09:42:e8:a3:c8:72:39:b2:73:e4:9f:ae:bd:
fd:44:96:22:02:61:3a:a2:ab:dd:78:96:b8:b5:04:22:f6:73:
67:1f:9b:a8:20:d4:95:ee:61:2c:07:99:bf:a7:0c:d8:10:0e:
2b:c4:36:a3:01:40:05:84:dc:56:f0:62:95:60:dc:ce:3d:cc:
a1:56:7f:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:37:06 2025 by rpki-client