Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/IWQe2E9L_C1CRLOjriQvYGaARik.roa
File: IWQe2E9L_C1CRLOjriQvYGaARik.roa (raw, json)
Hash identifier: 2YBUvtuyxe/dq0e6OZE+Y3QeDKBtpn+QxoO0DDvURzo=
Subject key identifier: 21:64:1E:D8:4F:4B:FC:2D:42:44:B3:A3:AE:24:2F:60:66:80:46:29
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F3AB11C325E1C4E5A9F562B2386086090
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/IWQe2E9L_C1CRLOjriQvYGaARik.roa
Signing time: Thu 02 May 2024 19:03:56 +0000
ROA not before: Thu 02 May 2024 19:03:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:d3c0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 05 May 2024 11:44:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:b1:1c:32:5e:1c:4e:5a:9f:56:2b:23:86:08:60:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 2 19:03:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21641ed84f4bfc2d4244b3a3ae242f6066804629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:71:6a:3d:56:d4:20:ea:4b:bc:31:4f:e8:
9e:5c:df:33:e7:52:77:97:8c:52:d7:fa:3a:c0:57:
29:7c:21:5f:63:fb:7f:a7:04:27:2b:f5:93:80:5f:
58:d8:37:c8:8a:cf:dc:b1:6d:ae:0c:61:3a:2e:5e:
f8:bd:98:d6:bb:f5:ca:8c:36:6d:dd:41:4c:a1:4e:
2a:ff:cc:32:61:45:ee:50:35:ba:de:bd:87:d1:0e:
5d:4c:06:1a:fa:a4:a2:2b:16:dd:0c:44:d7:f5:08:
f0:bf:55:d8:5d:92:42:9a:f5:d6:a3:a5:09:e9:43:
2f:f0:c3:80:2f:5f:65:20:82:27:48:7b:88:39:43:
c9:30:7e:61:1c:3e:38:19:e6:0b:24:30:53:dd:0c:
94:d2:fb:6c:0f:f7:cf:a9:e4:30:41:7e:ab:90:d1:
39:f0:fb:69:d9:27:f5:10:67:16:59:d3:14:fc:82:
66:ad:d0:13:27:d0:a8:27:19:b1:45:ba:7b:93:4b:
01:d5:23:64:68:d4:fc:65:15:c2:66:4d:0b:47:a4:
a2:ee:db:04:f6:3f:82:c8:1c:48:fd:87:f2:45:6c:
95:c7:53:a5:af:07:c6:4f:39:8a:dd:c0:76:f8:13:
f4:52:5c:17:46:4e:0b:e1:a4:89:b9:d7:3b:3e:af:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:64:1E:D8:4F:4B:FC:2D:42:44:B3:A3:AE:24:2F:60:66:80:46:29
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/IWQe2E9L_C1CRLOjriQvYGaARik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:d3c0::/29
2a12:e240::/29
2a12:f0c0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
5c:0b:df:89:05:49:a7:9d:e1:b4:29:91:3f:45:ff:20:3a:bf:
c6:e4:77:79:a4:99:81:62:fa:d4:e0:30:42:b1:6d:33:ec:b2:
47:2a:c0:a5:b9:1c:f0:94:d9:15:e6:9e:d0:82:37:1b:9f:b9:
8b:33:23:43:17:df:b1:58:c8:6f:64:24:4a:c9:27:f7:c6:e6:
2a:5f:41:3b:10:bd:1a:82:0f:99:1b:6e:eb:b1:1a:fa:ff:85:
44:d6:0d:71:a2:31:53:ff:6d:46:23:70:62:6b:a4:0f:b9:7d:
a1:86:c1:6a:b7:fd:36:68:ed:95:93:85:36:f9:eb:0a:47:89:
44:83:f9:07:7a:52:e7:d5:7c:99:6c:a7:3c:8a:70:a4:c9:6e:
86:53:10:21:5c:ff:c7:c1:66:97:66:f1:9c:f7:06:f1:2e:de:
c4:b6:31:3e:af:14:8f:c1:d0:2e:3d:56:2a:33:70:ff:6d:af:
ee:a1:86:e7:9f:c1:90:11:96:82:7b:79:49:54:8d:80:8e:d5:
6d:2e:83:e7:8b:3f:95:4e:e0:e0:47:cb:5d:5e:35:27:fd:7f:
23:96:4d:f2:85:c1:de:3c:f0:ad:96:b4:ab:1b:db:7c:c1:78:
43:ad:5e:8b:53:8b:d1:ef:82:49:59:6f:8a:ac:a9:49:84:9a:
08:58:fa:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org