Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/C8i6hmbfW6ORdXcc-8jpeBgSwu4.roa
File: C8i6hmbfW6ORdXcc-8jpeBgSwu4.roa (raw, json)
Hash identifier: N17RcMtGo47Kea85opUAe46oKoOd2C3+gh2c24dHrm0=
Subject key identifier: 0B:C8:BA:86:66:DF:5B:A3:91:75:77:1C:FB:C8:E9:78:18:12:C2:EE
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 01856F42E6EEE14592C45D6E6FDE26639515
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/C8i6hmbfW6ORdXcc-8jpeBgSwu4.roa
Signing time: Sun 01 Jan 2023 21:35:33 +0000
ROA not before: Sun 01 Jan 2023 21:35:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.21.0.0/22 maxlen: 22
37.1.184.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 14 Feb 2023 08:42:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e6:ee:e1:45:92:c4:5d:6e:6f:de:26:63:95:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Jan 1 21:35:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bc8ba8666df5ba39175771cfbc8e9781812c2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b6:e8:3c:4b:af:62:0a:2f:d1:96:d2:bc:7f:
4e:11:e5:d1:1f:d1:e6:19:56:e9:71:17:59:41:32:
3f:77:33:de:dd:51:2c:51:c5:5b:6b:35:f6:3e:16:
e1:cf:b3:98:ea:63:61:62:53:20:65:6e:5e:14:e2:
80:fb:aa:74:67:5e:28:eb:15:96:58:21:00:67:82:
c2:2e:75:02:59:72:a0:25:e5:72:c3:ed:07:8f:a4:
7d:5c:c4:34:77:90:b0:51:2d:22:5d:81:84:80:43:
0c:3f:25:c1:d0:82:ae:2d:99:46:0c:0b:28:f6:19:
a0:99:ac:fa:6a:b2:24:55:c2:cd:92:d9:68:6d:d0:
12:17:11:fa:a0:40:31:19:d9:66:ad:7c:89:96:a9:
73:b9:da:0e:d5:34:50:07:5d:ac:a2:e3:80:ce:f5:
1e:9b:9c:22:bc:b4:bf:1a:eb:e3:13:f5:c5:bf:74:
6a:13:29:7a:02:8b:82:df:47:ec:19:0b:b5:06:9b:
73:f2:7b:4a:5d:14:dd:b8:68:08:a0:0d:a0:c7:be:
82:e0:78:e8:c3:23:d9:a8:8c:b5:7f:10:09:a7:7e:
6f:30:bd:e2:5a:c5:5a:fb:19:34:a0:10:24:27:8d:
f6:c1:1a:fd:43:a6:02:44:13:7a:ca:7d:40:f9:39:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C8:BA:86:66:DF:5B:A3:91:75:77:1C:FB:C8:E9:78:18:12:C2:EE
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/C8i6hmbfW6ORdXcc-8jpeBgSwu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.184.0/21
185.21.0.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:7b:e4:5e:21:67:b0:06:83:10:cf:65:8d:9b:5d:7a:28:3f:
64:f5:0f:27:4b:ba:d7:e0:b7:14:77:bb:ff:c2:26:99:06:66:
b9:86:22:af:56:ce:e9:bc:f4:6c:69:c1:b7:2f:65:0c:ef:1e:
de:58:a5:b9:c7:a0:58:9f:17:87:34:6a:11:0b:a9:cf:fd:81:
01:9c:96:b8:cb:35:09:cb:7b:21:47:8b:3c:9b:e1:d8:d7:a6:
31:75:67:9e:3d:90:8d:46:4a:b7:7c:a3:84:f2:ec:55:43:0a:
95:4e:06:f4:ee:2a:9a:b7:e0:46:0a:94:ac:45:20:7e:8c:b0:
4e:5d:c1:2a:14:cc:e8:5c:70:b3:38:81:cf:c1:49:18:c6:16:
90:60:d6:d8:3f:05:40:c9:38:56:08:d3:c2:29:16:fa:b2:a7:
bf:aa:90:22:28:9b:a9:b7:9f:28:1b:bb:33:c6:e2:6e:d8:87:
84:f1:38:5e:17:78:35:2d:ea:82:26:32:28:1d:3b:0d:c2:2c:
b5:44:9b:3f:c7:af:d9:70:3d:d0:ca:9e:52:f2:fd:83:49:17:
d3:d9:2f:14:c8:8a:48:5d:13:2d:d1:cc:73:bb:3d:4c:db:ab:
de:2e:89:40:71:24:49:39:db:a6:3e:19:ed:3c:79:3c:a9:b0:
3c:ca:af:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:40 2024 by rpki-client on console-ams.rpki-client.org