Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GHqqOdzAum3SWU6YLouAEoeIm3Y.roa
File: GHqqOdzAum3SWU6YLouAEoeIm3Y.roa (raw, json)
Hash identifier: 3sQ5U/2ZNElsmGzffLx7U/GMonzGct+Lv6NklVpgo1s=
Subject key identifier: 18:7A:AA:39:DC:C0:BA:6D:D2:59:4E:98:2E:8B:80:12:87:88:9B:76
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0191052A02A3C81010819AD477433B24CC3B
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GHqqOdzAum3SWU6YLouAEoeIm3Y.roa
Signing time: Tue 30 Jul 2024 19:42:04 +0000
ROA not before: Tue 30 Jul 2024 19:42:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 17 Aug 2024 11:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:05:2a:02:a3:c8:10:10:81:9a:d4:77:43:3b:24:cc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 30 19:42:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=187aaa39dcc0ba6dd2594e982e8b801287889b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:93:a7:f9:11:0b:c0:e9:de:d9:c1:52:3e:a0:
b6:1d:00:01:18:70:82:07:c2:5f:0e:f1:7d:cf:86:
57:ba:4d:58:e7:fe:36:73:ba:53:6f:de:24:9c:1d:
2a:2b:b7:42:f5:88:33:72:41:ef:d8:12:9c:39:a4:
08:16:18:e5:9d:63:ff:00:54:39:61:f8:ae:11:53:
15:26:1c:40:d9:fe:ad:d9:c2:ff:5c:f1:fe:0c:05:
7f:f6:3e:e1:ab:33:44:ea:b2:2c:f8:6e:2b:63:d1:
e6:56:63:67:4d:45:3f:7c:1b:82:b3:65:bf:3f:9e:
d0:fb:4c:cb:6d:0a:bd:03:4b:1b:49:55:e6:65:0f:
81:7a:86:b1:28:88:b4:99:ea:e0:51:41:0d:91:96:
03:3a:14:46:dd:7c:96:17:0b:63:27:b3:96:aa:d1:
46:68:ba:91:0d:01:49:5b:09:73:70:1e:0a:73:31:
f4:aa:d3:cd:21:9b:c2:15:33:a4:32:47:c1:a7:90:
65:44:41:9d:e0:c7:3c:1b:a6:95:4c:f7:60:a3:01:
ac:e1:a5:59:c3:d9:88:3f:f6:97:a0:f6:25:19:d7:
30:ec:9a:54:78:d8:4f:e3:89:d8:94:f4:1a:2a:43:
31:8c:d4:59:6f:b2:44:8f:91:e5:7f:85:85:17:05:
92:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7A:AA:39:DC:C0:BA:6D:D2:59:4E:98:2E:8B:80:12:87:88:9B:76
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GHqqOdzAum3SWU6YLouAEoeIm3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
13:9b:17:16:14:0d:66:27:1c:a8:25:e3:2e:de:d5:f3:e9:2c:
64:db:54:56:42:d0:5b:72:a8:0d:5c:12:91:a5:3b:b1:21:f6:
f6:90:a6:b1:bf:02:d3:43:16:12:cd:e3:63:d1:11:dd:4b:ea:
65:a3:71:f7:b6:ec:c8:0c:74:bb:cf:51:58:fd:b0:85:79:81:
29:72:b0:e7:51:fd:35:1c:97:40:2d:30:2a:98:da:98:a4:a0:
b0:12:af:4f:e4:4f:5c:46:0c:e2:5e:b6:b6:b4:59:9f:2e:ea:
bf:1c:47:2b:98:ef:3e:4b:36:27:a3:de:1d:93:f6:84:0c:c4:
dc:18:2b:e7:69:cd:ac:52:57:28:30:00:51:40:cc:65:c4:98:
d1:12:52:9c:cb:f9:c7:dc:a3:96:ed:89:d9:8d:25:51:ed:b1:
38:64:b3:9a:01:19:05:30:e5:96:3b:16:f0:25:c7:e9:99:e1:
6a:aa:f9:c2:d3:5f:0e:4b:bc:5f:6a:68:0d:a0:57:7c:01:c6:
7f:76:78:13:a7:84:0a:41:c4:59:3c:56:c8:d9:16:a3:ee:9e:
1d:18:0c:84:05:09:1e:d3:9a:4b:17:0e:ae:64:68:57:68:22:
c8:e4:7a:33:1c:36:28:7d:61:7b:d9:1f:8f:cc:44:09:a4:45:
05:2b:fb:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 16:28:12 2024 by rpki-client on console-fra.rpki-client.org