Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/ywS5c2l3CO9lBMkd7DpsK6uFMz8.roa
File: ywS5c2l3CO9lBMkd7DpsK6uFMz8.roa (raw, json)
Hash identifier: T8hhJZZUA2DkSUHue+8VxRmth3j4K4K5xYvQKB0pkwA=
Subject key identifier: CB:04:B9:73:69:77:08:EF:65:04:C9:1D:EC:3A:6C:2B:AB:85:33:3F
Certificate issuer: /CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Certificate serial: 018A1C2E34EC14D46FA634C7386BC65B3130
Authority key identifier: 8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/ywS5c2l3CO9lBMkd7DpsK6uFMz8.roa
Signing time: Tue 22 Aug 2023 07:38:24 +0000
ROA not before: Tue 22 Aug 2023 07:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198037
IP address blocks: 80.85.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:2e:34:ec:14:d4:6f:a6:34:c7:38:6b:c6:5b:31:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Validity
Not Before: Aug 22 07:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb04b973697708ef6504c91dec3a6c2bab85333f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6f:fd:7a:9e:61:d1:84:7c:79:96:bb:80:dc:
c8:d8:cc:9e:02:e9:24:68:d8:6b:78:93:0d:0b:53:
f3:66:4e:a1:d3:df:33:e6:78:08:7e:5b:ea:21:e6:
c8:ee:84:2e:1f:cb:4d:91:ab:fd:98:ab:3d:26:d7:
27:85:b6:47:87:bc:56:5f:40:5f:21:69:2a:02:85:
c6:7a:0e:d5:0f:70:6a:a1:54:fb:6c:5b:b7:f0:96:
67:50:1e:c8:41:4a:13:9b:7a:5a:20:de:6f:ba:a2:
b4:2a:50:f6:65:fc:51:06:d0:2a:0e:3d:16:70:00:
33:9d:e2:03:74:2a:af:4c:2e:a0:78:ac:0f:99:54:
51:ab:31:02:ea:d9:19:18:98:e5:d3:db:6f:02:8c:
20:3b:08:ce:00:db:8b:74:07:05:12:2e:65:39:6e:
df:7a:f0:40:7d:c9:63:6a:ff:85:b0:52:0f:96:5f:
a1:74:1a:72:9d:9a:af:24:12:6d:f0:cc:70:e1:dc:
2f:e4:6d:6f:04:87:85:e6:4e:fc:2f:bf:c2:ef:6d:
98:8f:04:93:7d:c8:68:57:d8:55:01:93:b9:ed:87:
0d:67:e3:4a:f2:ae:60:29:28:4e:b8:dc:54:23:c8:
ae:c2:0f:c3:9d:2d:45:3e:7f:44:cf:97:5b:ce:6e:
f0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:04:B9:73:69:77:08:EF:65:04:C9:1D:EC:3A:6C:2B:AB:85:33:3F
X509v3 Authority Key Identifier:
keyid:8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/ywS5c2l3CO9lBMkd7DpsK6uFMz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/i90HS96_RRVKJr6_3OVTgpFTSwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.242.0/23
Signature Algorithm: sha256WithRSAEncryption
48:e5:cf:0c:71:b1:23:98:48:89:12:6f:eb:75:c9:96:48:30:
72:49:83:e2:e3:7d:21:b4:9b:f4:4f:b1:21:9f:ea:fb:11:5b:
33:db:ff:4c:2e:d4:ff:a8:04:70:4c:11:79:3d:d3:b9:71:e1:
c1:08:60:e7:cb:7b:6d:03:ce:2e:a5:8a:be:5c:19:fe:f9:e5:
9b:06:bf:7a:cf:01:1b:5d:f8:4c:eb:ef:30:97:3e:80:d4:2d:
8d:4b:71:eb:28:28:42:4b:fd:56:65:16:1d:22:6d:64:99:46:
cd:bc:35:4d:0d:d3:10:62:82:45:e4:26:a9:a1:96:f0:82:58:
c6:d8:cf:7e:30:02:ac:84:84:aa:6f:06:16:59:84:49:c3:3c:
3b:97:5c:cb:be:d5:7a:a6:86:8b:52:bb:14:d2:14:3c:1e:9f:
59:6e:5d:84:11:d3:54:0c:ac:d9:bc:ec:d3:84:59:ef:c8:8c:
9c:dc:ec:6f:bc:e9:11:24:4c:30:a7:b1:07:5a:15:d9:7f:fb:
61:16:6d:76:9e:bf:ff:af:70:8f:35:13:2e:18:25:08:ac:e3:
ce:ef:ec:0d:6f:2a:c5:a6:0d:22:0c:b0:cf:00:b1:5a:21:2c:
89:43:c1:5e:ba:b3:5d:77:16:09:79:02:11:3f:92:c2:e7:fc:
b8:97:4f:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYocLjTsFNRvpjTHOGvGWzEwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZGQwNzRiZGViZjQ1MTU0YTI2YmViZmRjZTU1MzgyOTE1
MzRiMGEwHhcNMjMwODIyMDczODI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjA0Yjk3MzY5NzcwOGVmNjUwNGM5MWRlYzNhNmMyYmFiODUzMzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkm/9ep5h0YR8eZa7gNzI2MyeAukk
aNhreJMNC1PzZk6h098z5ngIflvqIebI7oQuH8tNkav9mKs9JtcnhbZHh7xWX0Bf
IWkqAoXGeg7VD3BqoVT7bFu38JZnUB7IQUoTm3paIN5vuqK0KlD2ZfxRBtAqDj0W
cAAzneIDdCqvTC6geKwPmVRRqzEC6tkZGJjl09tvAowgOwjOANuLdAcFEi5lOW7f
evBAfcljav+FsFIPll+hdBpynZqvJBJt8Mxw4dwv5G1vBIeF5k78L7/C722YjwST
fchoV9hVAZO57YcNZ+NK8q5gKShOuNxUI8iuwg/DnS1FPn9Ez5dbzm7wLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMsEuXNpdwjvZQTJHew6bCurhTM/MB8GA1UdIwQY
MBaAFIvdB0vev0UVSia+v9zlU4KRU0sKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTkwSFM5Nl9SUlZLSnI2XzNPVlRncEZUU3dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9hZjcxZDAtZGY4MC00ODNlLWIwNTkt
NTBmYmY3ZTk1MDQyLzEveXdTNWMybDNDTzlsQk1rZDdEcHNLNnVGTXo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9hZjcxZDAtZGY4MC00ODNlLWIwNTktNTBmYmY3ZTk1MDQy
LzEvaTkwSFM5Nl9SUlZLSnI2XzNPVlRncEZUU3dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUFXyMA0G
CSqGSIb3DQEBCwUAA4IBAQBI5c8McbEjmEiJEm/rdcmWSDBySYPi430htJv0T7Eh
n+r7EVsz2/9MLtT/qARwTBF5PdO5ceHBCGDny3ttA84upYq+XBn++eWbBr96zwEb
XfhM6+8wlz6A1C2NS3HrKChCS/1WZRYdIm1kmUbNvDVNDdMQYoJF5CapoZbwgljG
2M9+MAKshISqbwYWWYRJwzw7l1zLvtV6poaLUrsU0hQ8Hp9Zbl2EEdNUDKzZvOzT
hFnvyIyc3OxvvOkRJEwwp7EHWhXZf/thFm12nr//r3CPNRMuGCUIrOPO7+wNbyrF
pg0iDLDPALFaISyJQ8FeurNddxYJeQIRP5LC5/y4l0+D
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:28 2024 by rpki-client on console-fra.rpki-client.org