Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/6ZtpDPihSjqe1br5OEviw_kP-wY.roa
File: 6ZtpDPihSjqe1br5OEviw_kP-wY.roa (raw, json)
Hash identifier: m/Fh8gQmN97pORplsWpVaNDmJWOvPO9B2txMFuAiWVQ=
Subject key identifier: E9:9B:69:0C:F8:A1:4A:3A:9E:D5:BA:F9:38:4B:E2:C3:F9:0F:FB:06
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019183F90D1144ADD7FB6246937C68122005
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/6ZtpDPihSjqe1br5OEviw_kP-wY.roa
Signing time: Sat 24 Aug 2024 10:40:22 +0000
ROA not before: Sat 24 Aug 2024 10:40:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a0f:e000::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 07 Sep 2024 10:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:f9:0d:11:44:ad:d7:fb:62:46:93:7c:68:12:20:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Aug 24 10:40:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e99b690cf8a14a3a9ed5baf9384be2c3f90ffb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:b8:b5:c3:74:0a:08:54:b4:e0:58:59:48:
cb:66:42:a2:dc:e5:18:0a:bf:b9:bc:63:b5:05:79:
35:35:21:28:bd:ce:db:4b:34:58:85:3f:b4:7e:19:
bb:d5:f0:8c:3a:4b:7e:e2:69:7b:c0:10:5a:ef:1f:
f3:a1:ff:c1:d5:14:b8:fb:84:5d:62:c6:6d:af:0a:
86:45:22:c5:99:98:8b:6a:db:1d:70:fd:ae:dc:7a:
5e:d9:25:3e:c4:96:51:fd:d1:5f:57:37:ea:61:77:
b1:37:1e:cb:2b:91:fb:61:a0:d9:ee:c8:f8:8a:23:
7f:dd:e9:61:95:e6:93:d0:20:b3:bb:b5:bf:c7:98:
7a:ea:d5:a1:60:6f:18:4c:11:dd:ff:92:ea:0a:38:
75:c8:5c:d2:98:48:41:64:64:77:28:e0:60:fe:18:
cf:72:31:75:84:50:21:20:13:fe:4a:c6:32:b5:fb:
e4:33:60:c9:13:d1:9a:5f:68:7d:78:fb:32:3d:d5:
97:af:1f:f0:b4:0a:55:f7:8f:48:73:fd:01:10:8b:
90:24:1f:0d:28:d5:9f:ed:6e:b5:c4:71:c2:93:79:
25:12:64:3d:0c:55:ab:5a:e1:a9:47:a3:90:0b:49:
c7:39:b6:25:0d:88:f7:e5:7a:84:f6:44:f6:01:16:
07:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9B:69:0C:F8:A1:4A:3A:9E:D5:BA:F9:38:4B:E2:C3:F9:0F:FB:06
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/6ZtpDPihSjqe1br5OEviw_kP-wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a0f:e000::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f140::/29
2a12:440::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6b80::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
11:0b:a1:9b:bf:a1:6c:31:7b:99:30:4c:6d:4b:de:4e:d6:ad:
6b:48:4f:29:79:63:d9:81:85:f6:64:18:9a:95:83:84:f3:d0:
f9:f1:00:16:a3:ff:04:a5:97:d9:ae:72:0a:80:ae:77:e6:58:
6e:fd:4a:1e:3d:52:12:67:3c:26:aa:19:bc:67:ff:39:2e:73:
a6:f2:75:dc:12:35:13:48:42:8b:de:42:94:f5:fb:4d:65:42:
01:a8:15:f8:3a:f8:bc:93:e7:1a:8b:66:af:4d:b3:42:fd:73:
51:3d:a4:49:ce:b7:d8:72:b1:77:21:70:86:d9:3a:72:8e:4d:
bf:7d:4d:3e:76:be:ad:8b:82:ab:5b:6b:03:36:4a:c9:e8:6c:
4e:ae:e8:ec:29:c5:6a:37:33:76:3e:ce:3a:3b:49:53:dd:32:
bd:fe:41:ed:ad:45:0c:ee:6e:85:61:58:67:35:bc:b5:a4:7a:
32:f7:3e:cf:e9:50:8f:cb:f3:c3:b9:ef:3e:74:78:6b:c1:a4:
a2:f0:fe:df:2a:1c:f6:32:5d:f8:8e:de:18:c7:2f:9b:83:c1:
46:44:c9:fe:88:de:33:f7:69:a6:18:73:fa:5e:a6:88:7c:c5:
68:ef:6e:3a:f2:90:ee:c1:e0:28:ee:35:da:4f:06:c1:5a:ae:
fa:4c:c0:29
-----BEGIN CERTIFICATE-----
MIIF6jCCBNKgAwIBAgISAZGD+Q0RRK3X+2JGk3xoEiAFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwODI0MTA0MDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTliNjkwY2Y4YTE0YTNhOWVkNWJhZjkzODRiZTJjM2Y5MGZmYjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcC4tcN0CghUtOBYWUjLZkKi3OUY
Cr+5vGO1BXk1NSEovc7bSzRYhT+0fhm71fCMOkt+4ml7wBBa7x/zof/B1RS4+4Rd
YsZtrwqGRSLFmZiLatsdcP2u3Hpe2SU+xJZR/dFfVzfqYXexNx7LK5H7YaDZ7sj4
iiN/3elhleaT0CCzu7W/x5h66tWhYG8YTBHd/5LqCjh1yFzSmEhBZGR3KOBg/hjP
cjF1hFAhIBP+SsYytfvkM2DJE9GaX2h9ePsyPdWXrx/wtApV949Ic/0BEIuQJB8N
KNWf7W61xHHCk3klEmQ9DFWrWuGpR6OQC0nHObYlDYj35XqE9kT2ARYH/wIDAQAB
o4IC9jCCAvIwHQYDVR0OBBYEFOmbaQz4oUo6ntW6+ThL4sP5D/sGMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvNlp0cERQaWhTanFlMWJyNU9Fdml3X2tQLXdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCgYIKwYBBQUHAQcBAf8EgfowgfcwEgQCAAEwDAMEArmo
HAMEArnJiDCB4AQCAAIwgdkDBQMqBrPAAwUDKgbKwAMFAyoK4sADBQMqDneAAwUD
Kg/UgAMFAyoP4AADBQMqES9AAwUDKhE7QAMFAyoRckADBQMqEZYAAwUDKhHcwAMF
AyoR8UADBQMqEgRAAwUDKhIZAAMFAyoSKMADBQMqEmZAAwUDKhJnQAMFAyoSa4AD
BQMqEm9AAwUDKhKOwAMFAyoSzMADBQMqEuJAAwUDKhLwwAMFAyoTugADBQMqE9rA
AwUDKhQAwAMFAyoUAUADBQMqFAHAAwUDKhQIAAMFAyoUD0ADBQMqFH4AMA0GCSqG
SIb3DQEBCwUAA4IBAQARC6Gbv6FsMXuZMExtS95O1q1rSE8peWPZgYX2ZBialYOE
89D58QAWo/8EpZfZrnIKgK535lhu/UoePVISZzwmqhm8Z/85LnOm8nXcEjUTSEKL
3kKU9ftNZUIBqBX4Ovi8k+cai2avTbNC/XNRPaRJzrfYcrF3IXCG2Tpyjk2/fU0+
dr6ti4KrW2sDNkrJ6GxOrujsKcVqNzN2Ps46O0lT3TK9/kHtrUUM7m6FYVhnNby1
pHoy9z7P6VCPy/PDue8+dHhrwaSi8P7fKhz2Ml34jt4Yxy+bg8FGRMn+iN4z92mm
GHP6XqaIfMVo72468pDuweAo7jXaTwbBWq76TMAp
-----END CERTIFICATE-----
Generated at Sat Sep 7 11:46:24 2024 by rpki-client on console-ams.rpki-client.org