Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/HaNGmJ8epcN4YRp5_wuleryt2uo.roa
File: HaNGmJ8epcN4YRp5_wuleryt2uo.roa (raw, json)
Hash identifier: BJ20DPX4uPTLTiEzO61lie+HX7i/JD80ZmBCsnGtW0M=
Subject key identifier: 1D:A3:46:98:9F:1E:A5:C3:78:61:1A:79:FF:0B:A5:7A:BC:AD:DA:EA
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 0192CF83D77899C9A80E4F7CE85979BBBFC2
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/HaNGmJ8epcN4YRp5_wuleryt2uo.roa
Signing time: Sun 27 Oct 2024 19:46:16 +0000
ROA not before: Sun 27 Oct 2024 19:46:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 62.164.224.0/20 maxlen: 20
62.164.240.0/20 maxlen: 24
66.9.96.0/20 maxlen: 24
66.117.8.0/22 maxlen: 24
77.223.192.0/21 maxlen: 24
77.223.200.0/23 maxlen: 24
79.139.64.0/23 maxlen: 24
83.142.200.0/21 maxlen: 24
84.247.59.0/24 maxlen: 24
88.135.96.0/20 maxlen: 24
89.34.171.0/24 maxlen: 24
93.119.184.0/21 maxlen: 24
94.26.110.0/23 maxlen: 24
94.101.103.0/24 maxlen: 24
95.178.8.0/21 maxlen: 24
116.50.16.0/21 maxlen: 24
121.127.56.0/21 maxlen: 24
176.222.48.0/22 maxlen: 24
192.200.192.0/19 maxlen: 24
195.133.202.0/23 maxlen: 24
198.145.112.0/22 maxlen: 24
205.134.244.0/22 maxlen: 24
212.32.96.0/20 maxlen: 24
212.32.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 18:28:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:cf:83:d7:78:99:c9:a8:0e:4f:7c:e8:59:79:bb:bf:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Oct 27 19:46:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1da346989f1ea5c378611a79ff0ba57abcaddaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:16:40:ec:41:5b:7e:67:da:0e:fa:09:5d:d6:
b2:ab:cb:62:52:19:64:3c:fd:c7:0f:0e:84:af:1f:
34:92:a0:68:18:90:e2:60:a8:7f:f6:66:1b:55:55:
b9:c0:9f:ce:bc:62:8c:16:43:11:2b:1e:d2:a9:06:
28:62:b3:59:ad:b4:d3:71:cc:46:43:f5:e6:f2:41:
53:05:0b:6b:cb:7a:42:f8:f5:6f:1b:a7:11:3f:83:
b8:a4:a9:f3:c5:5c:aa:b6:8c:86:25:05:f8:e9:2a:
8c:01:6b:59:6d:21:34:24:ff:d9:1a:91:5f:3a:b1:
81:a8:6c:82:b3:f1:2b:a4:ac:14:13:b9:67:63:8e:
76:ef:9f:37:f2:fd:c4:ec:bf:cf:fe:fa:f8:13:c5:
70:45:26:8d:c7:c7:1d:66:37:7e:ed:56:3c:1a:8e:
00:a4:ac:20:db:6e:07:e8:60:48:46:d0:b1:76:8f:
db:00:0e:8a:e2:3e:dd:36:6b:55:40:ac:5c:18:d7:
d8:e1:c0:b9:91:f6:38:a9:58:80:7a:6e:89:21:db:
b8:44:df:1d:93:8e:1b:9f:3a:d6:64:36:7a:e6:1b:
29:32:53:24:30:80:d1:13:b0:fd:fd:d5:91:c0:e9:
af:eb:38:8c:b6:ab:14:fe:9b:07:6f:31:e9:85:76:
a6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A3:46:98:9F:1E:A5:C3:78:61:1A:79:FF:0B:A5:7A:BC:AD:DA:EA
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/HaNGmJ8epcN4YRp5_wuleryt2uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.224.0/19
66.9.96.0/20
66.117.8.0/22
77.223.192.0-77.223.201.255
79.139.64.0/23
83.142.200.0/21
84.247.59.0/24
88.135.96.0/20
89.34.171.0/24
93.119.184.0/21
94.26.110.0/23
94.101.103.0/24
95.178.8.0/21
116.50.16.0/21
121.127.56.0/21
176.222.48.0/22
192.200.192.0/19
195.133.202.0/23
198.145.112.0/22
205.134.244.0/22
212.32.96.0/19
Signature Algorithm: sha256WithRSAEncryption
27:26:82:7f:9d:3a:8e:d2:38:3c:16:31:a8:90:67:b4:d6:bd:
5b:e6:3e:9f:6e:c9:f8:d9:63:a7:09:ee:af:ad:ce:18:51:da:
d0:f9:76:4b:74:49:93:16:08:96:37:c2:6c:69:de:36:2d:92:
c9:d7:d8:cc:5f:c6:74:4a:4f:cd:5b:cb:ff:e0:f2:d4:63:64:
4e:22:9a:66:19:23:da:be:6d:db:67:a2:36:1b:17:3e:7e:63:
dd:45:b8:03:10:ed:64:32:f6:cd:7c:74:be:7d:2b:84:8a:94:
e2:5f:75:47:15:34:ef:70:0a:14:a5:ee:9b:b3:46:27:a1:d7:
fe:b3:b0:1d:27:86:d2:05:ca:35:c0:36:e9:5d:b1:d7:01:25:
7f:21:fa:3b:78:02:54:61:65:58:99:d4:8d:57:90:1c:53:86:
14:57:84:55:af:9d:e5:b4:c8:0b:9e:19:d8:a8:ca:3c:c5:98:
fe:52:63:f8:40:0c:f8:78:ff:83:39:6f:cc:9d:85:c3:5b:66:
b1:1b:de:47:a9:3e:0b:de:8e:00:8c:db:8b:91:33:de:20:7b:
2c:f4:fc:6a:82:e1:bf:db:3f:86:78:fe:d2:e6:96:c9:a1:22:
42:de:f9:0f:a4:ba:43:59:c8:9c:dd:c9:99:81:03:e1:ad:69:
94:54:19:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:50:25 2025 by rpki-client