Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/g9xx8XTTnviDH0nx5AQIF3trnko.roa
File: g9xx8XTTnviDH0nx5AQIF3trnko.roa (raw, json)
Hash identifier: xn8J+bj0HhBUkio1K0bBxkHiq4JaDplY0KoPhWIMmMM=
Subject key identifier: 83:DC:71:F1:74:D3:9E:F8:83:1F:49:F1:E4:04:08:17:7B:6B:9E:4A
Certificate issuer: /CN=bb8321c05d501edb499190c0c4a3089d246c5b76
Certificate serial: 0188B540CEEB8A41BBB7F6557A21734CB567
Authority key identifier: BB:83:21:C0:5D:50:1E:DB:49:91:90:C0:C4:A3:08:9D:24:6C:5B:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MhwF1QHttJkZDAxKMInSRsW3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/g9xx8XTTnviDH0nx5AQIF3trnko.roa
Signing time: Tue 13 Jun 2023 14:55:03 +0000
ROA not before: Tue 13 Jun 2023 14:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.208.9.0/24 maxlen: 24
85.208.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b5:40:ce:eb:8a:41:bb:b7:f6:55:7a:21:73:4c:b5:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8321c05d501edb499190c0c4a3089d246c5b76
Validity
Not Before: Jun 13 14:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83dc71f174d39ef8831f49f1e40408177b6b9e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0d:16:5d:0f:2a:a8:13:b3:ef:61:7f:5c:26:
a7:37:92:af:78:a8:51:38:89:e3:4f:76:43:89:90:
ea:89:f3:d8:b8:90:e2:11:a0:7a:d3:5c:53:c9:30:
05:c4:13:77:b4:aa:71:41:75:95:c6:96:d4:27:95:
74:a3:e0:f0:b9:b3:20:45:c0:ec:77:45:d2:55:8e:
61:82:57:dc:53:51:01:66:58:fb:38:c1:f6:5e:d6:
29:76:55:42:1e:b3:60:3b:25:16:d2:c2:da:90:3a:
4c:6c:4e:03:11:8d:72:58:27:3a:cb:9d:60:98:72:
16:61:03:3b:64:5f:a8:07:2b:b7:e6:93:a4:c1:fe:
b5:cc:08:3a:ff:80:34:33:22:b2:f9:0c:4a:37:1f:
91:93:84:3d:ca:80:c6:f6:83:67:23:a0:07:d4:1a:
66:6b:d2:9f:d5:e1:2a:9b:79:91:9b:6b:27:b4:6e:
82:8f:81:46:e7:66:ee:6a:73:0e:09:2b:81:56:2d:
7e:c6:d1:71:d6:a1:ed:9c:23:dd:f5:49:a7:0b:df:
a6:84:97:7b:cc:56:55:c0:af:40:45:b1:84:b4:f5:
19:84:73:2e:9d:ea:69:d9:a6:74:11:d2:0b:3f:b8:
40:46:b1:7c:97:e9:0a:e5:bf:f3:3c:64:ce:70:99:
3b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DC:71:F1:74:D3:9E:F8:83:1F:49:F1:E4:04:08:17:7B:6B:9E:4A
X509v3 Authority Key Identifier:
keyid:BB:83:21:C0:5D:50:1E:DB:49:91:90:C0:C4:A3:08:9D:24:6C:5B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MhwF1QHttJkZDAxKMInSRsW3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/g9xx8XTTnviDH0nx5AQIF3trnko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/u4MhwF1QHttJkZDAxKMInSRsW3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.8.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:20:51:95:2c:e9:70:73:cd:85:1d:b9:f3:42:e8:ac:eb:40:
1f:16:f3:70:93:2a:2e:4e:9d:ea:78:d4:f6:96:0e:e3:0d:8b:
16:e6:04:51:73:1d:a3:6b:10:d7:ec:bd:68:46:2c:d6:a3:a9:
b3:7c:1c:0c:92:15:a8:fc:5e:fb:94:f2:76:68:24:fd:c7:22:
f3:7b:1e:a5:05:a5:27:c3:3b:a6:a7:c7:a1:09:a4:52:ac:ec:
08:e4:de:19:4e:89:b3:5c:43:eb:3c:1d:5a:b2:ba:17:22:1e:
5e:81:0b:f8:e3:03:77:2e:0b:25:a8:9c:eb:77:8e:37:ac:06:
65:b3:c9:fb:da:0e:99:5e:ee:bc:ca:a6:ed:14:28:5f:f0:56:
49:fa:86:30:e7:c7:3a:56:cd:63:a8:ec:2f:b6:cd:81:30:a4:
80:c8:db:26:ea:1d:f5:a3:e0:f7:54:82:19:8d:95:0a:b7:d8:
4f:1f:50:77:25:09:b6:c5:79:5c:b1:55:9f:57:c9:9f:66:83:
3d:7c:8a:56:1e:95:41:e2:11:37:24:61:cf:13:62:d8:c9:0b:
96:68:c4:1d:36:11:fd:c0:94:f6:07:05:b2:7f:77:a7:60:47:
d8:ea:a3:3a:98:5c:73:f8:09:2d:29:35:08:79:93:db:93:2c:
23:a4:ac:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:02 2024 by rpki-client on console-fra.rpki-client.org