Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M_hUOv8Pgj1JGDssHcyTJWrQKw4.roa
File: M_hUOv8Pgj1JGDssHcyTJWrQKw4.roa (raw, json)
Hash identifier: w4Gi6jLxCYrZcULaxZGQVzTUlhVPirP2W8ywuWtg8pM=
Subject key identifier: 33:F8:54:3A:FF:0F:82:3D:49:18:3B:2C:1D:CC:93:25:6A:D0:2B:0E
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 01896498F2E7D6C88A1B4C1529400EBD9010
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M_hUOv8Pgj1JGDssHcyTJWrQKw4.roa
Signing time: Mon 17 Jul 2023 16:04:52 +0000
ROA not before: Mon 17 Jul 2023 16:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34665
IP address blocks: 85.208.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:98:f2:e7:d6:c8:8a:1b:4c:15:29:40:0e:bd:90:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jul 17 16:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33f8543aff0f823d49183b2c1dcc93256ad02b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ad:5c:9c:88:f8:0e:f6:4a:de:e0:45:d3:b3:
46:43:48:9f:c0:e0:0b:2d:50:b7:22:ec:ec:21:35:
e2:f8:3c:1c:2e:d5:5f:cb:07:f5:24:f5:07:37:cc:
9f:d6:09:aa:c4:8e:cd:83:41:c0:c0:87:22:f2:98:
e3:a3:92:ac:58:36:ab:f5:b2:d2:bf:66:a7:e1:9e:
7f:6e:a8:d7:79:ba:86:aa:4f:ef:0a:00:c5:79:9f:
45:27:8f:51:08:4f:46:0f:7b:9f:b9:b3:b6:49:3f:
6c:2d:63:8b:e3:a8:db:90:9f:d8:12:a7:43:e5:9d:
6f:9b:08:fb:bf:83:91:54:f3:78:9c:5b:85:a6:32:
0b:7a:23:99:a0:29:b8:81:7c:23:84:e3:be:80:fc:
73:e0:1b:09:24:0e:35:c8:9a:1c:be:69:f0:ec:fb:
14:ef:dc:7d:35:4e:79:0e:e7:89:d5:48:cc:a3:ee:
cc:6b:ae:71:2e:c0:46:a5:65:64:27:e5:c5:cc:94:
47:33:c1:3d:81:42:8c:a6:93:25:80:40:f7:9d:20:
59:28:eb:14:13:ed:5c:9d:3f:8a:8b:5e:d7:03:61:
15:8d:eb:48:bb:56:49:ab:28:07:bf:53:ef:94:14:
ff:00:4b:9b:72:a8:63:e6:b7:90:4e:e5:8d:47:f2:
4c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F8:54:3A:FF:0F:82:3D:49:18:3B:2C:1D:CC:93:25:6A:D0:2B:0E
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/M_hUOv8Pgj1JGDssHcyTJWrQKw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.84.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:75:e3:17:d5:ed:ea:04:84:0f:bb:33:c7:fd:c8:98:23:28:
bf:eb:1d:05:e0:67:5a:20:6e:47:ec:9f:67:fc:bb:bc:88:1f:
00:9f:77:23:f6:88:d3:c0:e0:61:de:60:ca:b1:df:c2:dd:6f:
9c:72:c7:63:93:25:3c:ee:65:1c:7b:55:e5:7b:72:62:4d:2a:
38:c7:6e:28:65:85:64:8e:8d:36:a5:75:2d:10:0e:94:a9:64:
8b:47:1f:e5:bc:d5:29:67:8f:5b:99:72:27:31:d5:ff:20:28:
3a:49:88:b7:bd:57:d8:01:d8:45:35:5c:52:40:be:34:48:ea:
fb:99:27:be:9e:da:58:54:e2:47:22:9d:a9:65:90:c4:35:40:
28:36:41:2e:90:e2:5f:ed:01:e0:ef:b4:e2:10:f9:85:3d:2a:
b0:ea:a7:bf:06:1c:3f:1a:3a:9c:54:c9:e6:05:d6:f7:7e:dc:
6c:26:a7:eb:38:4e:50:72:b0:38:29:fa:de:a4:07:03:fb:dc:
6b:3d:d5:61:ff:3a:84:30:1c:6d:33:c8:fa:f7:62:dd:6a:8b:
fc:3e:7b:58:f4:36:ee:33:72:41:80:16:82:74:1a:12:ab:d1:
46:5d:4a:53:d7:b1:53:69:b3:8e:ea:91:c7:f8:12:68:53:30:
c0:25:fe:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:42 2024 by rpki-client on console-ams.rpki-client.org