Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/8rdsHhut_F8XhqGcZOVIHH_FKjo.roa
File: 8rdsHhut_F8XhqGcZOVIHH_FKjo.roa (raw, json)
Hash identifier: DkdvnQaZz/i+VjBFiHG6DAW7Wi6SpWdMTAlgCdWQnkQ=
Subject key identifier: F2:B7:6C:1E:1B:AD:FC:5F:17:86:A1:9C:64:E5:48:1C:7F:C5:2A:3A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018894A43F078B298875982A1AC220DC90DC
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/8rdsHhut_F8XhqGcZOVIHH_FKjo.roa
Signing time: Wed 07 Jun 2023 06:56:11 +0000
ROA not before: Wed 07 Jun 2023 06:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.209.245.0/24 maxlen: 24
77.242.159.0/24 maxlen: 24
88.209.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Jun 2023 07:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:a4:3f:07:8b:29:88:75:98:2a:1a:c2:20:dc:90:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 7 06:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2b76c1e1badfc5f1786a19c64e5481c7fc52a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:6a:a7:97:9a:75:f5:13:1d:3e:e2:49:11:
a1:79:d7:7b:27:23:db:ad:2d:c6:a6:23:ae:81:33:
fd:03:1a:c0:d5:d7:87:88:f3:7b:14:67:45:b7:eb:
b1:6e:bf:e8:09:9a:21:20:6c:1c:ee:af:6b:76:11:
11:2b:b6:4d:91:22:ed:f2:9a:1f:3b:be:c5:e0:06:
9f:f5:b6:42:d7:6d:df:f7:de:f0:47:d0:b3:60:30:
88:d2:fe:38:94:d7:4d:f3:b6:27:18:50:26:b2:19:
38:e4:94:db:de:f2:86:f1:12:8d:c1:78:85:e3:5e:
bf:88:b2:7b:71:d2:10:9b:a1:2b:87:5a:8f:ed:b3:
aa:da:df:c4:b6:66:e2:a1:91:8c:22:2d:a8:62:05:
11:e4:64:9c:08:e9:25:67:7e:f9:2c:92:7b:a3:8f:
21:f4:59:fd:29:bc:63:53:51:3b:5f:3c:58:06:f2:
fd:22:7f:6d:0f:8f:17:69:30:12:23:3d:ba:66:a4:
2d:eb:ec:86:d6:ff:85:0d:23:8e:a1:32:eb:da:dc:
74:b4:fe:73:25:ef:8a:49:4f:be:cb:f6:a4:5f:86:
7d:2d:fe:0b:43:5b:00:6c:b9:38:5e:a3:72:e6:90:
90:81:90:15:8b:e3:95:ce:e7:01:0f:24:3e:e1:21:
c5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:6C:1E:1B:AD:FC:5F:17:86:A1:9C:64:E5:48:1C:7F:C5:2A:3A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/8rdsHhut_F8XhqGcZOVIHH_FKjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.159.0/24
88.209.211.0/24
88.209.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:50:64:6a:61:23:3b:70:e3:22:d0:c9:03:98:81:d3:31:c4:
94:a9:24:a9:34:de:75:96:57:ac:64:02:cc:14:eb:1d:9e:99:
df:0c:92:c8:3f:24:f7:72:fd:3e:f6:17:d1:bd:ed:04:36:31:
d6:5e:41:0a:d9:57:7a:d0:cd:cd:9a:7e:65:38:2d:7e:35:b9:
57:50:91:cf:c3:5e:b8:bf:fa:c6:44:4b:b3:13:52:25:3a:35:
ab:78:2e:aa:78:4d:52:84:d9:27:ef:3c:58:f3:b0:6b:8b:92:
40:b7:7c:76:68:4f:6d:17:3f:07:34:4b:38:66:28:72:e6:77:
6b:08:fc:ea:29:53:7c:61:36:86:ac:bd:ee:15:4f:02:96:5c:
e6:f4:49:6c:6b:61:67:b2:f9:66:8c:19:2d:9b:3b:0b:9e:ba:
da:99:8b:8e:02:19:07:8d:ef:a5:59:ca:67:1c:f9:94:3b:6f:
a5:ba:67:b4:0b:11:96:6e:52:9d:7e:df:d3:84:00:00:4e:fb:
db:bb:f8:82:1c:68:e8:72:cb:2b:c6:6d:cf:28:93:20:8a:3f:
ea:89:0a:c0:f0:40:90:fa:8c:03:e5:6c:ed:d5:0c:7d:b9:9e:
8a:34:81:9d:50:bf:2b:aa:d5:2d:5a:31:f1:f3:fb:d6:7b:8d:
82:ed:09:cf
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYiUpD8HiymIdZgqGsIg3JDcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwNjA3MDY1NjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMmI3NmMxZTFiYWRmYzVmMTc4NmExOWM2NGU1NDgxYzdmYzUyYTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbRqp5eadfUTHT7iSRGhedd7JyPb
rS3GpiOugTP9AxrA1deHiPN7FGdFt+uxbr/oCZohIGwc7q9rdhERK7ZNkSLt8pof
O77F4Aaf9bZC123f997wR9CzYDCI0v44lNdN87YnGFAmshk45JTb3vKG8RKNwXiF
416/iLJ7cdIQm6Erh1qP7bOq2t/EtmbioZGMIi2oYgUR5GScCOklZ375LJJ7o48h
9Fn9KbxjU1E7XzxYBvL9In9tD48XaTASIz26ZqQt6+yG1v+FDSOOoTLr2tx0tP5z
Je+KSU++y/akX4Z9Lf4LQ1sAbLk4XqNy5pCQgZAVi+OVzucBDyQ+4SHFKQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPK3bB4brfxfF4ahnGTlSBx/xSo6MB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvOHJkc0hodXRfRjhYaHFHY1pPVklISF9GS2pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQATfKfAwQA
WNHTAwQAWNH1MA0GCSqGSIb3DQEBCwUAA4IBAQAcUGRqYSM7cOMi0MkDmIHTMcSU
qSSpNN51llesZALMFOsdnpnfDJLIPyT3cv0+9hfRve0ENjHWXkEK2Vd60M3Nmn5l
OC1+NblXUJHPw164v/rGREuzE1IlOjWreC6qeE1ShNkn7zxY87Bri5JAt3x2aE9t
Fz8HNEs4Zihy5ndrCPzqKVN8YTaGrL3uFU8Cllzm9Elsa2FnsvlmjBktmzsLnrra
mYuOAhkHje+lWcpnHPmUO2+lume0CxGWblKdft/ThAAATvvbu/iCHGjocssrxm3P
KJMgij/qiQrA8ECQ+owD5Wzt1Qx9uZ6KNIGdUL8rqtUtWjHx8/vWe42C7QnP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org