Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1-e5LibLgTCOYhkhDgOriG6uYpzU.roa
File: 1-e5LibLgTCOYhkhDgOriG6uYpzU.roa (raw, json)
Hash identifier: fXqcRB8uP2Q/iRihw3QaQY6CoP73ptqyLSr/AAsQNdg=
Subject key identifier: F9:EE:4B:89:B2:E0:4C:23:98:86:48:43:80:EA:E2:1B:AB:98:A7:35
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0191CC00AFBDDD3F5C480652F673531BAEBD
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1-e5LibLgTCOYhkhDgOriG6uYpzU.roa
Signing time: Sat 07 Sep 2024 10:21:22 +0000
ROA not before: Sat 07 Sep 2024 10:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a0f:e000::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 09 Sep 2024 20:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:cc:00:af:bd:dd:3f:5c:48:06:52:f6:73:53:1b:ae:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Sep 7 10:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9ee4b89b2e04c239886484380eae21bab98a735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:13:32:44:fa:7a:43:f1:bd:2c:8d:2a:03:2b:
62:b6:d4:b9:4a:41:2e:55:a0:57:85:24:1b:99:86:
7c:38:88:59:6a:3b:11:b4:e6:8d:02:88:48:56:0e:
98:d4:8a:8f:ee:f0:ef:c2:72:21:fb:69:42:35:04:
bb:7e:b6:07:c9:da:dd:4e:ad:db:46:ec:4d:e4:34:
e2:6f:1c:e2:b2:73:e2:97:bc:16:bb:3e:53:1b:e5:
27:3d:82:df:b6:8b:5a:87:68:71:b3:37:0f:ed:7b:
9c:f0:44:c7:e7:ec:95:2b:1e:18:c7:b8:6f:68:d2:
7e:bd:6f:78:65:bd:33:74:94:5f:3e:8e:2d:ab:98:
ac:db:1d:11:fa:8d:61:45:e0:23:c8:19:68:cb:93:
24:e7:89:9d:32:6e:84:fc:f8:d9:dd:b9:e9:3d:69:
d0:4f:9b:55:98:81:12:3b:bf:5c:b6:ef:e9:42:8c:
d3:5c:9a:cb:a9:a1:4d:a6:1f:d6:be:8c:20:93:ed:
03:8e:77:5a:50:9c:7b:f6:5a:b6:7f:5e:ea:73:b1:
0c:3f:85:11:44:61:5b:70:ac:12:7a:4f:3e:13:c4:
8d:36:b4:3a:ce:9e:67:f2:bd:fe:2c:b5:5d:24:0f:
1f:91:d0:c1:2c:0d:0a:aa:56:b8:a3:ac:15:0d:36:
3c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EE:4B:89:B2:E0:4C:23:98:86:48:43:80:EA:E2:1B:AB:98:A7:35
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/1-e5LibLgTCOYhkhDgOriG6uYpzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:cac0::/29
2a0e:7780::/29
2a0f:d480::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f140::/29
2a12:440::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6b80::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
4b:6a:7f:34:2a:3a:43:72:2c:01:2d:f1:0a:9e:d4:8e:e1:b3:
df:7e:4c:a3:2e:a4:75:cd:d6:d5:0d:3c:b1:8b:9b:54:f7:35:
ae:b4:ab:36:1a:84:66:d0:f5:99:87:01:c9:cf:e0:e4:a0:d5:
57:6f:88:dc:ef:d3:04:31:f5:bf:6e:aa:3f:68:c1:e4:83:dc:
c1:4a:15:90:01:44:ca:78:74:bc:07:91:4f:5f:bd:17:5e:0f:
7a:c6:f6:db:85:46:21:b8:56:2a:ea:19:a3:b9:2e:73:f0:c2:
e6:34:c0:18:53:96:dd:f5:9c:a1:51:cf:73:37:b0:6f:1e:7d:
00:92:1c:a0:b5:fc:7a:ea:24:37:9b:b5:48:0c:ce:ca:66:96:
c7:24:09:e7:72:6c:b9:a8:eb:92:0f:f7:98:76:1b:d5:08:87:
f7:4f:94:ea:57:ab:5a:48:1d:3c:ec:cc:c4:a6:2d:32:59:9f:
ee:a0:21:a1:69:46:31:a3:95:70:29:dd:11:59:82:32:f1:a5:
f9:83:6a:a2:03:6c:37:0a:8a:52:5c:72:ad:00:db:29:13:62:
86:85:aa:4c:40:06:88:fc:3f:45:a5:21:ee:dd:fb:19:dd:ad:
7d:40:3b:a4:0e:e5:56:7c:dc:cd:33:91:3f:a0:5c:57:f1:74:
54:a2:ed:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 22:24:27 2024 by rpki-client on console-fra.rpki-client.org