Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/HYHeMkXCNXX4llA0zMIpjoOFs_8.roa
File: HYHeMkXCNXX4llA0zMIpjoOFs_8.roa (raw, json)
Hash identifier: SeoKmQnNGOKCqlRmj2UqZr2+98Tjrrvan87xw+TBsN0=
Subject key identifier: 1D:81:DE:32:45:C2:35:75:F8:96:50:34:CC:C2:29:8E:83:85:B3:FF
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 018CD63D42F2E62B3295BA3E8174DEC54F1B
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/HYHeMkXCNXX4llA0zMIpjoOFs_8.roa
Signing time: Thu 04 Jan 2024 20:49:48 +0000
ROA not before: Thu 04 Jan 2024 20:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39906
IP address blocks: 94.138.96.0/19 maxlen: 24
81.92.144.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 17:21:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d6:3d:42:f2:e6:2b:32:95:ba:3e:81:74:de:c5:4f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 4 20:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d81de3245c23575f8965034ccc2298e8385b3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:b7:7b:62:eb:f2:81:ff:ea:f4:bd:d5:5b:
79:15:0e:73:bf:07:74:cd:61:e6:7c:ab:e9:63:8b:
9e:09:1c:0c:45:9a:51:e4:5b:06:f2:ef:3f:87:3b:
b8:f8:5b:d3:1a:8d:67:54:e3:1a:91:0c:54:06:9e:
46:4e:ec:8a:12:75:22:b8:6a:5e:7e:3b:f2:ca:81:
48:aa:61:8c:b6:04:8f:f9:62:1b:08:55:11:47:ac:
8b:a0:cb:cb:78:38:1f:e5:41:6b:5b:8c:f7:98:6a:
06:56:89:c3:8a:a6:e5:85:51:4e:7f:b7:61:9a:45:
80:b9:8f:1d:a1:b2:5b:2a:72:ad:23:9e:29:2d:ab:
0e:2f:84:3b:98:0e:40:7e:6e:58:13:f4:28:a4:28:
af:4d:5d:66:7a:92:84:e6:fe:0d:99:a2:86:ba:d8:
76:44:a9:3e:e6:40:d8:d7:77:d4:25:b6:18:04:7c:
d2:5e:79:c6:15:1c:ec:ca:6b:0c:f9:74:95:b6:bb:
da:62:ab:af:ab:de:69:ad:6e:f9:d8:db:3f:54:f3:
70:47:39:8a:2d:0b:1a:d2:be:42:b3:d4:82:c2:f7:
56:41:1b:25:03:c0:a4:c0:ea:ba:ec:eb:fb:3a:22:
64:3a:86:b0:9b:09:d8:fd:f4:5d:b6:b5:ce:2f:af:
52:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:81:DE:32:45:C2:35:75:F8:96:50:34:CC:C2:29:8E:83:85:B3:FF
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/HYHeMkXCNXX4llA0zMIpjoOFs_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.144.0/20
94.138.96.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:d5:27:1d:5b:f9:77:b0:e6:71:b2:f6:78:0b:92:3e:fd:e1:
0f:ef:6a:50:d6:7b:88:7b:69:72:86:3f:b8:9b:bd:5e:db:32:
f0:d8:21:7e:b1:e8:e1:80:f5:d6:0b:06:6e:4f:59:70:a2:b3:
8b:60:c3:6e:a9:92:c5:2e:0f:70:7d:4a:18:11:31:f4:40:a7:
3b:65:6c:af:66:52:20:49:5b:86:1f:da:f9:c4:3c:e2:d2:d0:
16:ed:ee:c3:a6:66:ed:5e:31:7a:3f:ae:63:9a:a5:cd:5a:1e:
6c:02:3b:c6:cf:2a:57:f5:29:49:90:c3:64:01:09:7f:de:3c:
ec:22:ac:29:8d:7e:8e:f0:e3:0f:e1:99:e6:50:1c:91:82:60:
34:ed:c7:fc:30:8b:c6:26:d3:54:2e:5f:e3:b5:03:22:43:9e:
e7:30:24:12:1c:c2:80:0f:5e:38:53:f5:bb:df:2d:43:67:cd:
3c:54:9b:b4:7b:33:0a:c5:ed:36:c5:bc:f1:32:95:85:f0:9b:
e7:9f:33:5f:ea:a6:47:e0:cd:56:47:25:b0:08:ef:03:d0:ef:
e1:39:eb:d9:5d:de:b5:ef:78:1c:02:68:ce:30:84:ce:44:d9:
60:e1:cc:28:e8:33:33:37:63:86:0c:fc:c5:10:50:21:cb:36:
41:2d:74:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:59 2025 by rpki-client