Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3mrFTqKMS-Jp9J-6YB7hv16D9cU.roa
File: 3mrFTqKMS-Jp9J-6YB7hv16D9cU.roa (raw, json)
Hash identifier: /Z1Fj6f47aczpzhs3HZaX36j0udk3j7LGd25skw1mjo=
Subject key identifier: DE:6A:C5:4E:A2:8C:4B:E2:69:F4:9F:BA:60:1E:E1:BF:5E:83:F5:C5
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019222F8E143696585EA75E5C95F6D7C0D38
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3mrFTqKMS-Jp9J-6YB7hv16D9cU.roa
Signing time: Tue 24 Sep 2024 07:39:48 +0000
ROA not before: Tue 24 Sep 2024 07:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a0f:e000::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 08 Oct 2024 07:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:f8:e1:43:69:65:85:ea:75:e5:c9:5f:6d:7c:0d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Sep 24 07:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de6ac54ea28c4be269f49fba601ee1bf5e83f5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:4d:3a:34:76:48:b1:f1:01:57:14:0f:ec:
45:44:31:98:e8:67:68:a5:d8:7c:cd:9a:d1:63:35:
8f:93:45:b0:8a:a3:f6:9e:35:0a:ce:ad:c4:44:7d:
e3:89:77:1a:9a:5d:e0:71:a5:73:9e:37:5a:f2:e8:
b5:ac:68:b9:ba:5b:b0:ad:5d:af:81:7f:4a:79:5d:
39:11:63:e5:5e:2e:ac:f0:32:3f:a8:0a:22:84:9d:
e8:35:d9:05:20:4b:43:de:18:f3:5e:ab:62:62:c2:
9c:8b:0e:80:b4:31:5f:20:2e:2f:4e:41:8b:f8:3b:
fe:e9:99:3d:17:59:6f:4a:dd:d7:2a:6a:2d:e6:ba:
4a:71:72:13:98:53:29:0c:56:0a:17:5b:f5:7f:34:
55:71:d6:65:c1:29:f6:90:16:aa:b4:ab:9e:fc:7a:
db:a2:5e:36:bf:6f:5e:8b:5e:00:52:9d:2b:98:9a:
01:bc:e1:17:47:d3:40:37:aa:1f:52:b4:ea:60:6a:
42:45:79:7b:b8:1f:78:8f:5e:e1:8e:dd:0b:84:b6:
f7:68:00:2b:e2:da:b9:d1:cf:45:b7:92:a8:1c:36:
4c:16:6b:61:4b:6f:ee:13:22:61:7a:60:ef:61:10:
63:40:5a:9f:a9:c3:4e:38:15:7d:62:42:fa:b4:ad:
96:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6A:C5:4E:A2:8C:4B:E2:69:F4:9F:BA:60:1E:E1:BF:5E:83:F5:C5
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/3mrFTqKMS-Jp9J-6YB7hv16D9cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0e:7780::/29
2a0f:d480::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f140::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6b80::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
4d:d8:90:58:9d:db:01:41:c4:aa:b2:61:bc:ea:92:e6:6d:75:
96:3b:72:10:d6:c6:16:24:b4:0e:d5:dc:bd:dc:7d:96:0e:88:
16:30:3a:d8:aa:a8:98:84:fd:43:55:01:7b:63:32:5b:aa:55:
2a:2d:bf:a2:63:ee:40:c6:79:f6:0a:65:94:3c:25:a3:a7:b2:
94:50:d0:03:7a:5b:fc:17:61:ba:d0:be:36:28:25:ba:37:9b:
20:94:db:3c:51:24:1b:5f:47:78:c5:70:c6:0f:ee:63:4e:00:
8a:9a:cb:72:db:8e:27:12:06:d1:63:d6:c2:d3:ae:79:ee:fa:
2b:84:67:ae:e2:0e:72:65:0e:19:bb:35:d2:9c:de:67:e3:41:
46:5a:10:43:f7:be:b0:e6:d9:24:70:4a:8d:e4:e9:f9:21:9c:
e9:48:7b:82:b0:48:b2:8b:54:ab:d7:f1:09:37:88:5c:a6:53:
36:53:52:3a:e8:0a:1f:aa:4c:9c:5c:3f:7e:84:16:ae:5c:04:
b6:31:e5:dd:8b:a6:ad:10:85:1d:3d:f7:a6:f6:1e:75:a3:17:
8c:15:ef:24:e2:91:97:ab:2f:59:6c:76:35:72:01:2e:3a:9f:
b6:37:a5:05:55:f5:c0:c3:69:3a:a7:b2:90:f2:c5:a6:78:46:
54:8d:0a:24
-----BEGIN CERTIFICATE-----
MIIF8jCCBNqgAwIBAgISAZIi+OFDaWWF6nXlyV9tfA04MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwOTI0MDczOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTZhYzU0ZWEyOGM0YmUyNjlmNDlmYmE2MDFlZTFiZjVlODNmNWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq69NOjR2SLHxAVcUD+xFRDGY6Gdo
pdh8zZrRYzWPk0WwiqP2njUKzq3ERH3jiXcaml3gcaVznjda8ui1rGi5uluwrV2v
gX9KeV05EWPlXi6s8DI/qAoihJ3oNdkFIEtD3hjzXqtiYsKciw6AtDFfIC4vTkGL
+Dv+6Zk9F1lvSt3XKmot5rpKcXITmFMpDFYKF1v1fzRVcdZlwSn2kBaqtKue/Hrb
ol42v29ei14AUp0rmJoBvOEXR9NAN6ofUrTqYGpCRXl7uB94j17hjt0LhLb3aAAr
4tq50c9Ft5KoHDZMFmthS2/uEyJhemDvYRBjQFqfqcNOOBV9YkL6tK2WVwIDAQAB
o4IC/jCCAvowHQYDVR0OBBYEFN5qxU6ijEviafSfumAe4b9eg/XFMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvM21yRlRxS01TLUpwOUotNllCN2h2MTZEOWNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBEgYIKwYBBQUHAQcBAf8EggEBMIH+MBIEAgABMAwDBAK5
qBwDBAK5yYgwgecEAgACMIHgAwUDKgazwAMFAyoGtEADBQMqBsrAAwUDKg53gAMF
AyoP1IADBQMqD+AAAwUDKhEvQAMFAyoRO0ADBQMqEXJAAwUDKhGWAAMFAyoR3MAD
BQMqEfFAAwUDKhIEQAMFAyoSDsADBQMqEhkAAwUDKhIowAMFAyoSZkADBQMqEmdA
AwUDKhJrgAMFAyoSb0ADBQMqEo7AAwUDKhLMwAMFAyoS4kADBQMqEvDAAwUDKhO6
AAMFAyoT2sADBQMqFADAAwUDKhQBQAMFAyoUAcADBQMqFAgAAwUDKhQPQAMFAyoU
fgAwDQYJKoZIhvcNAQELBQADggEBAE3YkFid2wFBxKqyYbzqkuZtdZY7chDWxhYk
tA7V3L3cfZYOiBYwOtiqqJiE/UNVAXtjMluqVSotv6Jj7kDGefYKZZQ8JaOnspRQ
0AN6W/wXYbrQvjYoJbo3myCU2zxRJBtfR3jFcMYP7mNOAIqay3LbjicSBtFj1sLT
rnnu+iuEZ67iDnJlDhm7NdKc3mfjQUZaEEP3vrDm2SRwSo3k6fkhnOlIe4KwSLKL
VKvX8Qk3iFymUzZTUjroCh+qTJxcP36EFq5cBLYx5d2Lpq0QhR0996b2HnWjF4wV
7yTikZerL1lsdjVyAS46n7Y3pQVV9cDDaTqnspDyxaZ4RlSNCiQ=
-----END CERTIFICATE-----
Generated at Tue Oct 8 09:36:57 2024 by rpki-client on console-ams.rpki-client.org