Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/RBFC8N6UpD24vc5wl5ysX-q2v-c.roa
File: RBFC8N6UpD24vc5wl5ysX-q2v-c.roa (raw, json)
Hash identifier: UGI5oyDl7JxmybxGeSiQiKh65jBVT1JhqfnR9/yDBHM=
Subject key identifier: 44:11:42:F0:DE:94:A4:3D:B8:BD:CE:70:97:9C:AC:5F:EA:B6:BF:E7
Certificate issuer: /CN=eab9a157e12a2ef717d13231af06fd85454b3151
Certificate serial: 018573CCFBBCD47B4FAA3E4F333EAC524F22
Authority key identifier: EA:B9:A1:57:E1:2A:2E:F7:17:D1:32:31:AF:06:FD:85:45:4B:31:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6rmhV-EqLvcX0TIxrwb9hUVLMVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/RBFC8N6UpD24vc5wl5ysX-q2v-c.roa
Signing time: Mon 02 Jan 2023 18:44:51 +0000
ROA not before: Mon 02 Jan 2023 18:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198622
IP address blocks: 37.157.0.0/21 maxlen: 24
185.84.60.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cc:fb:bc:d4:7b:4f:aa:3e:4f:33:3e:ac:52:4f:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eab9a157e12a2ef717d13231af06fd85454b3151
Validity
Not Before: Jan 2 18:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=441142f0de94a43db8bdce70979cac5feab6bfe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e4:82:09:f4:59:51:21:65:fe:66:57:50:8b:
45:8d:2c:15:4f:55:10:51:47:33:20:de:ce:20:5b:
91:8d:9b:b7:dc:6b:f9:f0:5b:06:3f:d4:fd:cb:79:
6f:74:ab:2f:fe:aa:ed:53:1c:37:93:82:d1:0b:ad:
89:50:5a:09:3b:6d:54:bc:67:c8:04:85:de:44:e7:
9e:4b:72:a3:86:f2:cb:8a:6a:65:5e:d1:90:c8:aa:
ac:f5:dd:fd:7c:48:88:cd:d7:16:8d:f3:8c:2d:02:
5b:64:73:2d:f8:76:84:9c:b8:2a:0a:51:ea:b0:3c:
2f:e1:19:6b:bb:d1:e1:2e:b8:97:6a:3d:e9:a7:02:
d4:32:4d:e0:0f:6a:26:14:12:05:c1:e2:db:2f:41:
73:5e:f2:56:4f:29:72:05:7b:96:f0:22:80:ac:e2:
ff:90:a6:84:88:7c:cf:cd:2f:92:03:4f:9b:1a:14:
8f:16:58:80:c1:53:26:f3:90:81:6a:ee:a5:c2:73:
34:71:bd:33:28:6f:b3:34:e7:93:f3:9d:a8:cb:df:
71:7d:ce:8b:8b:c3:67:d3:4e:0f:97:ce:fc:9f:70:
14:c6:9d:06:72:b9:de:38:da:93:2a:d1:f7:61:85:
8d:fe:ac:e1:82:ca:2e:26:a3:9a:5c:19:92:93:f5:
18:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:11:42:F0:DE:94:A4:3D:B8:BD:CE:70:97:9C:AC:5F:EA:B6:BF:E7
X509v3 Authority Key Identifier:
keyid:EA:B9:A1:57:E1:2A:2E:F7:17:D1:32:31:AF:06:FD:85:45:4B:31:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6rmhV-EqLvcX0TIxrwb9hUVLMVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/RBFC8N6UpD24vc5wl5ysX-q2v-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4db770-d7f5-4bcb-ba44-857712720a35/1/6rmhV-EqLvcX0TIxrwb9hUVLMVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.0.0/21
185.84.60.0/22
Signature Algorithm: sha256WithRSAEncryption
73:a9:7e:90:c1:ed:1b:85:61:6c:1f:8c:e3:27:bd:66:a1:3b:
19:78:0d:35:86:26:32:19:e3:1f:95:ef:57:92:ef:99:b7:79:
fd:d9:2b:c9:96:ba:fd:8e:a2:6a:25:19:f7:c7:ee:01:4a:d1:
b4:f0:77:e0:f5:94:28:35:0a:1d:93:c5:31:84:74:69:18:0f:
cc:9b:67:60:37:3a:c9:28:66:a1:90:ee:d4:8f:8c:c0:72:d3:
d3:d0:6c:c4:31:f8:0b:8d:ea:65:3c:11:5e:f9:52:90:d0:40:
17:01:a7:bc:cf:24:c3:f3:0e:b4:1f:da:6d:68:91:7a:50:64:
cc:59:53:51:e2:68:98:a8:cf:35:84:3a:1c:96:98:f4:c0:93:
da:7e:da:9f:71:5f:15:f0:fa:88:33:27:d2:6b:aa:1f:bc:6f:
5d:15:53:0e:3e:f5:b3:45:e5:7d:35:95:21:ef:b7:77:4e:dd:
b1:04:fe:c6:f8:65:ae:96:e4:99:d0:fe:ed:bb:1f:00:fd:a7:
d0:db:b3:ce:c6:8b:c7:88:fd:c9:5a:57:6f:20:20:b5:05:af:
43:53:12:66:bf:09:0d:02:9d:ea:d7:8f:4b:c7:34:57:df:99:
4f:64:47:b1:f4:1c:2a:f3:c8:d0:59:5e:a4:52:b1:24:ab:4b:
56:3b:74:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:08 2024 by rpki-client on console-fra.rpki-client.org