Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8wd2XQfLtPOEaML76EaICYtk2pw.roa
File: 8wd2XQfLtPOEaML76EaICYtk2pw.roa (raw, json)
Hash identifier: P/Toe7h16YnnkEOB+X5JmbhWjf571q8OMTZJwBGlbNM=
Subject key identifier: F3:07:76:5D:07:CB:B4:F3:84:68:C2:FB:E8:46:88:09:8B:64:DA:9C
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FDCC0B594D753B71825AFE47C97132D34
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8wd2XQfLtPOEaML76EaICYtk2pw.roa
Signing time: Mon 03 Jun 2024 06:19:27 +0000
ROA not before: Mon 03 Jun 2024 06:19:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 03 Jun 2024 21:13:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dc:c0:b5:94:d7:53:b7:18:25:af:e4:7c:97:13:2d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 3 06:19:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f307765d07cbb4f38468c2fbe84688098b64da9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e0:a7:aa:66:35:f8:a8:7c:4f:4d:e9:ad:f4:
4a:e4:4c:92:73:4f:27:e5:3a:da:5f:36:6d:c5:e6:
82:9d:2f:98:b5:30:81:ba:c1:9a:ce:8d:41:a0:2d:
04:c0:7e:46:ef:1b:64:ee:dd:c9:7c:8d:3f:7e:29:
bb:26:a3:39:35:03:ed:69:7b:19:44:e3:9f:0a:71:
6f:50:25:f0:e7:38:84:3f:18:93:62:7f:61:2c:52:
93:c7:78:03:c0:21:50:2b:e7:b5:b5:38:1b:ec:82:
4c:35:3f:d5:05:45:2e:26:a7:c0:b8:e8:e2:9c:d5:
6b:1b:79:a8:e7:30:5a:ab:77:85:de:31:75:ea:8c:
62:8d:99:a0:d6:fd:00:d1:ef:b0:cf:ad:94:bf:f7:
e1:e4:e2:ec:38:b1:15:7f:f3:6c:54:f8:de:0e:da:
22:63:9a:fe:54:b8:59:98:c7:7d:e7:1f:21:86:33:
f7:1b:2f:d8:82:30:de:2b:ed:a0:ea:98:d2:f6:48:
4a:75:30:09:0a:77:7f:06:c2:05:4f:0f:66:73:99:
6b:53:9f:fa:b3:21:e6:15:c1:54:e1:39:f4:fa:4a:
59:ae:70:11:1a:00:47:0c:e0:ab:fb:ca:4c:6e:9c:
f7:72:67:68:5a:9d:24:f1:3d:23:25:b6:98:b1:aa:
71:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:07:76:5D:07:CB:B4:F3:84:68:C2:FB:E8:46:88:09:8B:64:DA:9C
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8wd2XQfLtPOEaML76EaICYtk2pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
67:6c:02:80:e2:c2:c5:f4:96:76:ea:f3:16:42:5f:b9:32:ba:
b5:82:bf:2b:34:48:fc:a2:82:09:52:26:4e:ba:3f:46:14:68:
6d:c0:a9:89:96:94:08:be:d4:98:a1:b6:9a:85:80:ba:1d:fb:
d7:22:c4:d2:cf:b8:81:f4:dd:e7:66:d9:31:75:59:8c:4c:47:
38:c1:ee:e4:fa:05:87:14:5d:94:52:c8:ba:a5:57:ac:7c:f4:
5f:c2:d0:d0:a0:f8:35:c1:8f:54:69:20:0f:a8:05:55:d7:47:
1e:b9:35:d5:63:88:82:41:6a:ca:01:63:b0:bd:07:24:e5:ef:
48:58:0d:63:56:58:fa:81:0b:25:55:87:f8:e5:1e:1e:5f:80:
d8:6c:c7:d3:c6:67:7e:5f:ce:97:3f:fe:3a:a9:88:31:bf:d6:
0d:64:90:2b:91:70:7b:38:55:c1:0e:04:63:6a:6a:a7:b3:08:
15:39:72:8b:b8:1a:26:2d:c2:0d:1f:e8:67:44:54:d8:08:7a:
86:5b:97:c7:bd:b2:3c:eb:73:c0:49:03:77:42:0f:61:fe:64:
b1:40:c2:da:3e:71:1d:bb:2e:c6:c4:f5:b6:cc:f0:19:6f:cc:
29:1d:1b:b8:b2:df:ce:6e:ab:ce:b1:0a:e7:b6:31:6a:4d:fc:
bd:d5:b8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org