Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GbXhxiPil6Fb0DlIC9JQqHsHL0Y.roa
File: GbXhxiPil6Fb0DlIC9JQqHsHL0Y.roa (raw, json)
Hash identifier: TPuI5BBR8kJdtgoJ68pDfghWJyGFiR/uJqwhdEq3c/8=
Subject key identifier: 19:B5:E1:C6:23:E2:97:A1:5B:D0:39:48:0B:D2:50:A8:7B:07:2F:46
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01902C92189236E443B8B98E83E5AF88F9A0
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GbXhxiPil6Fb0DlIC9JQqHsHL0Y.roa
Signing time: Tue 18 Jun 2024 18:18:10 +0000
ROA not before: Tue 18 Jun 2024 18:18:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 21 Jun 2024 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2c:92:18:92:36:e4:43:b8:b9:8e:83:e5:af:88:f9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 18 18:18:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19b5e1c623e297a15bd039480bd250a87b072f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3a:52:19:b5:89:88:19:d8:40:e9:ea:c3:28:
e0:8a:35:1b:59:e7:57:e6:cc:99:e3:ac:bf:e3:36:
50:1e:a9:6d:f1:28:bb:62:f1:51:13:81:e5:cf:ad:
2d:48:9a:13:fc:d3:b2:99:16:61:30:fd:ef:9f:66:
d0:11:36:af:4e:45:48:ef:2e:d6:47:ed:25:a6:dc:
ce:0f:db:fe:80:6c:ca:5b:18:f6:e0:06:73:fc:2a:
0d:d5:c2:13:32:5a:98:39:b0:8b:61:e5:29:5c:9b:
b3:ff:f3:f9:5b:bc:94:cf:d4:c7:83:5c:1d:e2:2c:
e8:e7:a4:23:08:2f:3a:3a:ee:07:22:b9:03:96:7b:
27:bc:75:1c:9c:46:a1:8b:9d:b3:98:2c:9b:66:f6:
d2:8d:4c:17:a0:1c:03:42:a5:5c:bd:11:31:de:a4:
cd:fb:45:92:d3:37:e0:26:e5:9f:7c:c8:26:c9:ad:
b4:da:4a:c2:2a:79:d6:26:79:30:14:08:ee:79:56:
bf:1f:a7:ad:bc:37:55:33:99:83:d2:83:02:df:0f:
e7:5f:28:87:60:1a:ec:2d:82:86:e8:6f:f2:60:4c:
1d:85:4e:e1:65:6a:c1:62:f8:88:ce:e3:c1:42:bb:
e0:5b:56:b0:79:26:42:54:4a:3f:1d:88:12:23:f6:
01:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B5:E1:C6:23:E2:97:A1:5B:D0:39:48:0B:D2:50:A8:7B:07:2F:46
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GbXhxiPil6Fb0DlIC9JQqHsHL0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
1d:91:bd:7d:77:97:73:05:55:72:75:2b:0d:e1:43:8d:d9:e9:
1b:d9:d8:af:16:80:fa:8d:df:07:39:95:a1:36:03:da:5e:ea:
e2:42:1b:83:8d:c4:26:4f:e9:d4:7c:8e:fb:cb:1c:a8:5b:6f:
7c:4b:11:48:05:78:6f:6d:96:74:8c:55:f7:2b:ec:d6:3e:c8:
75:d9:e5:10:d9:44:c4:4c:11:c6:9b:31:75:96:c9:db:fc:c8:
2d:57:7e:cc:0d:a5:30:4c:91:45:df:25:43:3e:2b:02:92:33:
bc:0e:53:32:74:26:e2:6d:e5:71:37:3a:26:e3:d1:31:70:d0:
7b:14:ec:86:db:ae:40:7a:cc:a3:c7:31:7a:06:c0:ad:0f:72:
2d:f1:dc:c8:2b:07:48:af:b3:09:c8:a0:13:29:82:69:24:d3:
2c:e3:33:e3:04:8b:1f:99:94:12:36:0d:2c:96:6f:e7:35:1a:
97:66:a3:21:1a:58:a2:0c:24:e9:9a:4e:f9:ea:15:15:72:4f:
de:3c:c4:b1:3d:81:9b:6f:c0:ae:aa:1a:f6:38:b0:85:21:23:
08:dc:fb:0e:92:4c:7e:22:14:a9:a0:98:c2:5a:6b:fa:a6:6b:
54:3f:ac:80:50:d1:c7:47:5f:d4:43:9c:a3:af:e6:d8:4a:59:
5b:a6:4b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:26 2024 by rpki-client on console-ams.rpki-client.org