Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8LY2H3c329f8sAFULDVkKIC7suM.roa
File: 8LY2H3c329f8sAFULDVkKIC7suM.roa (raw, json)
Hash identifier: vBn1CyLeB9sh51VlEBR260IFYYS1CUDAdyjGszhBVG4=
Subject key identifier: F0:B6:36:1F:77:37:DB:D7:FC:B0:01:54:2C:35:64:28:80:BB:B2:E3
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 01884D69079A699C2D358AE6ED401BF4B523
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8LY2H3c329f8sAFULDVkKIC7suM.roa
Signing time: Wed 24 May 2023 10:58:28 +0000
ROA not before: Wed 24 May 2023 10:58:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 85.208.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:69:07:9a:69:9c:2d:35:8a:e6:ed:40:1b:f4:b5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: May 24 10:58:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0b6361f7737dbd7fcb001542c35642880bbb2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e3:f8:8a:0d:23:14:91:d9:9f:77:ea:c1:ed:
24:60:e2:69:ad:7a:d9:11:78:d2:36:26:21:65:45:
8e:03:4d:ee:01:67:e1:ee:73:0a:dd:bc:9c:f8:b4:
1d:4d:20:ff:60:13:43:d5:23:9e:7f:87:4c:93:7c:
b8:8a:e4:6c:7d:b5:eb:22:85:bf:b4:0f:c7:11:62:
7a:08:65:4c:72:24:8e:c7:00:a4:bb:e2:72:51:72:
69:2f:5a:11:0c:42:df:a5:d2:c9:a8:a1:67:b4:93:
76:17:af:89:a8:c7:9e:86:87:99:21:8b:d4:5a:77:
d1:0a:ca:79:e1:ee:35:0c:4d:d7:1b:30:33:de:94:
b4:6d:05:18:b7:f4:f5:41:39:0c:0c:84:52:61:11:
46:54:c0:1c:6e:3f:b0:7b:cf:26:b4:63:0a:ad:79:
39:5b:66:94:7a:21:97:bc:5d:d0:78:8f:25:c0:ae:
24:ea:b6:cd:6d:59:dc:b9:64:b9:17:c9:8a:a3:4f:
52:6b:1c:28:0e:52:ce:ef:be:1b:a7:25:b9:e5:ac:
ab:e7:20:18:32:2b:6d:55:82:3b:35:ae:81:ef:7e:
b9:11:3e:81:f6:5b:8a:33:0d:78:69:ee:a3:08:00:
3a:4a:0c:af:ca:7e:15:0e:5c:be:56:cf:51:2a:21:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B6:36:1F:77:37:DB:D7:FC:B0:01:54:2C:35:64:28:80:BB:B2:E3
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8LY2H3c329f8sAFULDVkKIC7suM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.46.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:c3:c1:5c:e3:12:3e:9b:14:a1:c8:5e:d8:e9:81:52:19:4a:
4a:21:c3:68:ce:e1:e8:a1:ca:d8:56:49:2f:ac:6a:28:e3:e7:
4c:ac:84:61:bb:aa:0d:5f:98:5f:67:2f:9b:33:7f:fe:92:cd:
fc:bd:4d:77:ce:4b:a3:05:c8:6c:20:4b:70:dd:92:29:00:8e:
0a:c2:92:ba:96:c6:88:c0:15:d6:7c:22:04:8f:9b:c8:61:69:
c4:2d:a0:c9:44:0e:8a:19:3b:81:ff:55:a2:93:d0:81:ff:13:
1f:bf:06:65:83:24:2a:f2:3d:a1:5d:ca:5f:78:4f:aa:41:ea:
41:ae:4c:ca:c0:6c:28:7d:d8:d2:84:b6:7e:67:1c:f7:a8:93:
ef:a1:72:42:ca:87:ea:98:13:b3:48:b5:da:2c:e9:4b:45:c5:
69:0f:1a:bd:1d:42:62:19:b2:86:bb:af:98:d9:d5:42:0e:e8:
9e:27:78:35:3c:3e:a7:df:a0:b5:c3:38:2e:88:b2:45:17:29:
9f:f4:c3:ad:a7:76:a2:c0:65:24:37:29:42:60:30:64:6f:32:
21:0c:41:98:78:39:1a:c9:e9:68:8b:a0:d5:59:52:65:2f:45:
4b:ac:9e:e8:86:a5:04:8a:22:3c:98:54:1e:43:52:dc:93:9f:
da:cd:1a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 20:54:07 2023 by rpki-client on console-fra.rpki-client.org