Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/yw0xv-0uOd31amBq58sAnBpj-WY.roa
File: yw0xv-0uOd31amBq58sAnBpj-WY.roa (raw, json)
Hash identifier: 6csXfMo5OEt7pWMCFbu4sx3CthwVZAZnSlVWbPC3Ag8=
Subject key identifier: CB:0D:31:BF:ED:2E:39:DD:F5:6A:60:6A:E7:CB:00:9C:1A:63:F9:66
Certificate issuer: /CN=bb8321c05d501edb499190c0c4a3089d246c5b76
Certificate serial: 0186506049118D07A5FE039B88005D5995FB
Authority key identifier: BB:83:21:C0:5D:50:1E:DB:49:91:90:C0:C4:A3:08:9D:24:6C:5B:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MhwF1QHttJkZDAxKMInSRsW3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/yw0xv-0uOd31amBq58sAnBpj-WY.roa
Signing time: Tue 14 Feb 2023 14:42:12 +0000
ROA not before: Tue 14 Feb 2023 14:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208068
IP address blocks: 85.208.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:60:49:11:8d:07:a5:fe:03:9b:88:00:5d:59:95:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8321c05d501edb499190c0c4a3089d246c5b76
Validity
Not Before: Feb 14 14:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb0d31bfed2e39ddf56a606ae7cb009c1a63f966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:98:82:f8:87:d5:13:c3:9b:1d:bd:38:be:c6:
88:73:be:19:c3:45:d7:70:ee:03:18:97:f6:3a:53:
19:ea:33:e8:d4:eb:74:b0:d0:26:21:1c:81:29:8b:
68:22:ef:3c:14:8b:34:ef:a7:86:e0:5d:a1:e5:36:
14:18:c8:38:c0:9a:82:07:51:8f:6a:17:93:97:42:
ed:d3:fd:3a:68:25:4c:1d:fe:cc:0d:ff:ca:75:af:
ce:c0:a4:0e:17:ad:f0:31:05:f2:39:98:6a:42:16:
28:6e:72:1b:3e:44:35:b4:71:2f:f6:b2:1e:dd:aa:
40:df:18:93:0b:d0:56:2d:d9:4f:8d:db:be:c3:fc:
c5:2e:f4:e2:f3:8d:63:4b:36:fe:f5:ef:8b:a5:9a:
3d:e7:4e:e5:9e:fd:f7:c3:15:e9:d0:01:ce:2a:b6:
35:a8:90:8c:ff:97:72:76:72:70:38:10:bb:db:d0:
bf:8e:a5:5a:a8:71:c6:66:61:65:2b:4d:b4:94:0e:
24:4b:b4:c3:fd:30:74:84:68:4e:07:09:cf:68:a6:
9c:67:2c:50:65:a0:32:c0:a8:7f:bd:16:37:20:7e:
8b:14:5e:69:f1:e2:01:98:23:08:12:ba:10:60:fc:
82:c2:9b:67:bd:fe:b9:5c:e3:fa:5b:c7:fe:c6:30:
39:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0D:31:BF:ED:2E:39:DD:F5:6A:60:6A:E7:CB:00:9C:1A:63:F9:66
X509v3 Authority Key Identifier:
keyid:BB:83:21:C0:5D:50:1E:DB:49:91:90:C0:C4:A3:08:9D:24:6C:5B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MhwF1QHttJkZDAxKMInSRsW3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/yw0xv-0uOd31amBq58sAnBpj-WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd2983-218c-457d-811b-5d42e1fa45b9/1/u4MhwF1QHttJkZDAxKMInSRsW3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.8.0/24
Signature Algorithm: sha256WithRSAEncryption
22:15:fa:b7:e4:3e:bd:95:1f:28:f9:24:ce:c3:b8:cf:80:89:
6c:e7:24:d4:9c:e4:b6:43:10:af:87:6f:4f:1d:1b:99:1b:fe:
1b:75:09:d2:a8:0b:53:5c:f3:39:2b:8a:77:74:6b:6f:8d:7d:
97:f8:49:fa:2d:9a:5a:66:0a:46:e1:e8:38:39:1c:e6:4f:a8:
ec:8d:34:fd:58:3b:b2:ad:3d:27:60:bb:3e:e7:33:9c:5b:c3:
ff:44:b1:e2:73:a2:96:d3:ca:d8:06:db:ba:28:96:46:a1:4d:
d9:3c:c2:7e:2d:46:07:a6:a2:d6:01:4b:00:0e:d4:f8:9e:31:
ec:9d:96:10:c5:65:31:41:8f:fa:76:01:b8:a5:97:3a:bb:a7:
d1:8d:bb:d8:83:18:68:f1:53:13:e9:30:9c:a0:72:c3:86:b6:
2d:4a:a7:d2:65:36:c2:fc:5d:a1:b0:ad:f8:c9:82:bf:f9:42:
8f:fe:d9:ab:4d:06:ff:3b:3c:8e:73:9a:cf:76:18:43:6c:64:
da:dc:fc:e5:0a:74:16:2d:1a:8d:ae:3f:f8:0d:8b:6a:7d:22:
43:be:88:e6:fe:a5:4b:2e:d1:ae:43:39:50:09:76:e7:5f:9a:
b9:2f:e5:a4:b6:cd:da:09:54:a5:ac:ac:09:b5:9e:eb:36:ec:
17:00:63:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:37 2023 by rpki-client on console-ams.rpki-client.org