Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Jymi22YAl2LuPD2TK4y6dKRg8hA.roa
File: Jymi22YAl2LuPD2TK4y6dKRg8hA.roa (raw, json)
Hash identifier: 87ZUsAq0gXRuxNnONRMWgMoJuiGs9aI5eRtWa23wiEk=
Subject key identifier: 27:29:A2:DB:66:00:97:62:EE:3C:3D:93:2B:8C:BA:74:A4:60:F2:10
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019091753F8B1FB26D34B2177127D09C61BC
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Jymi22YAl2LuPD2TK4y6dKRg8hA.roa
Signing time: Mon 08 Jul 2024 08:28:18 +0000
ROA not before: Mon 08 Jul 2024 08:28:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Jul 2024 14:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:75:3f:8b:1f:b2:6d:34:b2:17:71:27:d0:9c:61:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 8 08:28:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2729a2db66009762ee3c3d932b8cba74a460f210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:d3:3c:64:5a:c6:27:c5:19:1d:23:22:fb:
25:a3:c0:55:e0:f0:43:93:13:3a:f2:c8:bb:97:78:
70:0c:60:4f:99:ec:b0:96:7e:6f:03:17:85:f8:02:
26:c1:77:17:64:ff:8d:6e:7c:9a:ca:e7:0f:b2:f7:
97:29:55:5e:75:9b:c4:73:9d:8a:38:0d:6e:20:08:
68:97:92:49:ce:3b:fa:52:59:68:b8:a8:ce:f3:9c:
db:38:4d:11:86:57:c4:85:be:d9:c3:47:ff:72:d5:
3a:59:05:d8:85:e6:5e:b4:db:f3:80:e3:e1:39:83:
d6:e6:dd:70:39:b1:e3:c6:f5:d3:21:62:03:a4:69:
26:d6:5a:83:35:ca:11:3c:bd:77:63:a2:db:f5:a1:
0e:e1:2c:7d:db:ca:45:14:20:79:54:1a:d4:aa:7a:
41:d0:87:a4:9e:f8:c7:fe:46:3b:9b:df:f0:e7:09:
29:5d:b8:59:3f:25:0c:f9:c0:d2:58:10:50:58:39:
2e:46:1d:c7:6b:f1:ff:51:fd:b1:9e:6c:20:aa:a9:
c7:ae:f6:0e:40:9a:10:e9:3a:51:48:db:18:45:3d:
93:c7:43:4b:89:94:4d:3f:53:80:26:2f:99:6c:8f:
00:d3:2e:4f:9c:21:01:1c:fe:43:d1:77:7d:9a:f1:
fc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:29:A2:DB:66:00:97:62:EE:3C:3D:93:2B:8C:BA:74:A4:60:F2:10
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/Jymi22YAl2LuPD2TK4y6dKRg8hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f240::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
11:3a:11:67:40:e3:ac:41:fa:a3:2f:6a:8c:5f:55:a0:62:8e:
af:3f:b4:67:6b:ea:db:c0:3f:84:f7:6b:af:39:0d:2d:9d:a9:
09:02:1c:73:f1:32:c3:3f:66:be:8c:9a:37:45:49:53:f5:bf:
4a:e6:d5:49:1e:f6:9a:06:4d:c8:ea:7a:a5:59:0d:46:f2:0a:
1a:30:e1:8e:12:32:aa:d0:25:0e:08:a5:13:7a:ee:8a:f8:de:
9a:8b:62:f4:20:d8:73:c1:a9:e3:b4:88:43:81:17:52:40:7c:
a5:d7:f4:cd:12:13:b6:95:c3:57:a3:2c:97:c8:0c:67:f9:e9:
97:55:a6:8b:58:cd:58:d6:7a:ca:09:7f:73:2c:15:a3:f2:3d:
13:74:55:8c:fe:a8:63:38:17:17:32:7b:7c:11:a2:8c:a1:8d:
97:fc:f7:73:34:98:75:ff:1c:3f:97:66:7e:a0:40:f2:0e:ea:
e2:74:0b:c0:1e:07:ac:83:37:f8:2e:4f:76:73:b3:5d:93:2e:
61:bf:b8:de:ee:4c:1f:63:54:48:f2:64:11:e4:75:0d:cc:3d:
41:9e:56:aa:73:c8:cc:33:c2:0f:8b:6f:31:e5:ba:86:dd:3b:
46:ae:e1:2e:bd:0b:e1:33:d2:82:1c:16:6e:f1:ab:6c:01:8c:
84:a5:e7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 17:42:17 2024 by rpki-client on console-ams.rpki-client.org