Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/8s424-FHaYML6_kr4H6LDwv1-c8.roa
File: 8s424-FHaYML6_kr4H6LDwv1-c8.roa (raw, json)
Hash identifier: 8lUo0WpKYZ3cRtkl0RY+HqW/k2s6qJlffL/K0RTzr7g=
Subject key identifier: F2:CE:36:E3:E1:47:69:83:0B:EB:F9:2B:E0:7E:8B:0F:0B:F5:F9:CF
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 01895A1F5CCE98E51B52009BBE0B3821FD65
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/8s424-FHaYML6_kr4H6LDwv1-c8.roa
Signing time: Sat 15 Jul 2023 15:15:51 +0000
ROA not before: Sat 15 Jul 2023 15:15:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.237.68.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5a:1f:5c:ce:98:e5:1b:52:00:9b:be:0b:38:21:fd:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jul 15 15:15:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2ce36e3e14769830bebf92be07e8b0f0bf5f9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5b:9a:e7:8b:ef:e3:a6:11:85:f9:c0:4a:bc:
92:4a:23:04:55:ed:84:12:b3:cd:08:7b:4f:56:4c:
49:f5:ba:15:87:43:82:db:f3:8f:28:d9:0b:76:4b:
d8:4f:e8:8d:be:c5:e5:f4:63:aa:0f:95:95:ae:64:
76:23:c1:94:79:33:42:41:98:9f:11:9a:88:3d:5e:
1b:f0:04:0b:3b:5b:46:dd:50:55:ab:41:ca:dc:74:
89:07:23:cc:1e:68:b9:eb:7f:b1:3d:c3:16:81:bf:
7b:64:b8:d1:7d:b0:5f:0e:5b:5e:e0:67:85:f2:76:
de:56:a8:58:af:41:fe:e4:ff:5f:31:68:ab:e3:58:
12:74:3a:4c:13:50:36:0a:1c:b3:ac:0e:a2:db:45:
e4:6c:10:e7:f1:67:56:7e:88:42:61:13:d1:03:da:
be:45:41:9b:18:f4:ca:73:e8:1d:2f:0c:34:f2:48:
5a:80:d4:8e:5d:f5:be:aa:57:7b:e1:ec:92:ac:16:
9c:dd:0b:d5:f3:64:97:d3:84:22:ae:d4:61:8b:7d:
5e:02:c7:9e:a4:60:82:71:37:29:3d:e4:68:a8:f2:
4b:e9:85:d6:f7:8a:38:11:23:52:4a:ec:9c:0a:ed:
8b:54:5c:80:c6:ff:84:40:66:0d:b8:0a:0e:01:e4:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CE:36:E3:E1:47:69:83:0B:EB:F9:2B:E0:7E:8B:0F:0B:F5:F9:CF
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/8s424-FHaYML6_kr4H6LDwv1-c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.68.0/24
Signature Algorithm: sha256WithRSAEncryption
54:8a:21:d1:a0:a4:34:62:a9:e0:b3:19:17:70:70:92:67:ef:
c2:33:93:7d:46:6e:0d:0d:de:73:42:b7:f3:ab:11:6c:79:a2:
c2:6b:8e:bc:a7:6a:ca:79:2b:22:79:37:bd:ff:24:fc:e1:3b:
4f:ef:46:8a:b0:a5:8b:b0:80:c4:79:8f:48:7e:4e:4b:5b:45:
1d:01:f6:a3:21:a5:f0:cb:c8:5b:1d:20:ab:6e:48:0f:c7:ef:
f2:ad:34:d8:b7:76:8c:47:3a:96:71:7b:c2:3f:3e:d1:34:27:
bf:a9:c6:4a:5c:fe:29:6b:b5:b0:d6:ff:ba:f9:0b:52:fd:b0:
ac:6d:f4:bb:76:10:61:55:e6:dc:15:65:b5:65:0f:ae:a5:ea:
31:1b:a0:11:88:c9:73:69:df:31:23:c8:d1:8c:17:6a:eb:f1:
12:53:89:02:16:a5:da:8b:7d:dd:96:b9:28:85:a1:f9:98:51:
bc:b2:76:fb:f9:5c:75:72:76:13:f5:99:31:fc:3b:26:ff:64:
89:74:3c:1b:da:fe:f6:48:da:80:b4:e2:55:e2:c3:d6:df:02:
ab:8e:05:bb:c4:73:c9:87:ba:d8:38:52:06:11:66:72:c0:df:
ea:c3:15:13:30:cc:77:08:5b:07:de:8e:5b:3b:c9:b0:7a:45:
03:61:75:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:59 2023 by rpki-client on console-fra.rpki-client.org