Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/MOuveQphFIODhOAo_eH_2aoAHd0.roa
File: MOuveQphFIODhOAo_eH_2aoAHd0.roa (raw, json)
Hash identifier: b7+hteaYfBSUPrGsplpGuWkiGANyVq6f7qOIu+2LPDE=
Subject key identifier: 30:EB:AF:79:0A:61:14:83:83:84:E0:28:FD:E1:FF:D9:AA:00:1D:DD
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018FD323C5A06544A8646CAE5575D67DC827
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/MOuveQphFIODhOAo_eH_2aoAHd0.roa
Signing time: Sat 01 Jun 2024 09:31:27 +0000
ROA not before: Sat 01 Jun 2024 09:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 03 Jun 2024 06:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d3:23:c5:a0:65:44:a8:64:6c:ae:55:75:d6:7d:c8:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 1 09:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30ebaf790a6114838384e028fde1ffd9aa001ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:91:0a:bd:d6:e7:bd:dc:ca:53:a5:cd:7a:97:
1a:9c:e7:86:80:0a:df:21:a4:3e:76:27:64:45:69:
10:1e:7c:64:3b:12:2d:0c:bd:97:ee:5d:79:36:04:
f6:48:53:8f:ac:2f:61:8f:55:df:bd:0b:c1:90:6c:
ca:ed:d3:2b:35:93:15:22:c2:db:ec:c1:70:39:ee:
62:e0:0c:55:5f:ef:5d:f0:b9:50:c9:12:79:2b:64:
25:a8:4b:4f:c3:78:e9:91:92:c5:1a:c4:24:1f:db:
eb:b2:8e:dc:51:7b:0e:27:91:d7:46:f5:26:a3:1f:
c5:41:a5:a5:92:0c:87:f0:2f:4c:28:0a:a6:64:4d:
9e:1e:72:ba:70:d3:ca:08:ed:12:9b:f6:ed:23:ee:
7f:7d:27:73:51:5c:5d:6d:fc:9c:6c:2f:b5:9c:d9:
e0:4d:0b:83:7a:ee:42:94:1a:f2:12:4b:af:cb:54:
c3:55:37:55:a4:3b:46:69:aa:27:d9:63:8e:42:66:
76:53:18:09:25:cd:1e:a8:e3:74:73:fd:24:54:f2:
30:e0:25:8c:fa:41:20:b9:42:6d:f0:b8:5d:ae:4f:
fb:6e:b1:b6:bf:9e:33:51:8f:10:47:f1:09:09:73:
c1:d2:36:e8:10:e0:95:ee:c3:0e:ea:e3:2b:03:a9:
91:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EB:AF:79:0A:61:14:83:83:84:E0:28:FD:E1:FF:D9:AA:00:1D:DD
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/MOuveQphFIODhOAo_eH_2aoAHd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
8f:8e:6d:d8:7c:0e:3e:96:fe:b0:e6:98:3e:9a:f1:3f:87:66:
42:80:34:f5:15:25:93:0d:b1:80:21:ac:5c:b0:53:c9:ca:f7:
b2:33:4b:ac:3c:15:57:02:85:14:44:c3:36:38:0e:12:0b:b9:
89:9d:c0:de:15:d6:ba:8e:99:40:b8:ae:2d:17:08:64:d6:ee:
5b:e4:ad:c4:7a:9b:d8:e6:26:d3:59:6a:f4:32:15:a4:97:94:
1b:c5:6c:e8:2b:84:f9:3d:76:e9:da:9f:da:90:ae:63:40:71:
fb:88:70:ae:c4:c5:ba:29:55:15:17:c9:a1:ba:4a:f2:12:60:
6b:6f:e0:38:8f:e2:7d:68:3d:e8:fb:8c:c9:04:79:8e:0b:4f:
0c:83:bc:c0:cf:a8:58:59:ae:87:fe:1e:d8:e0:ed:1a:4e:ce:
5b:27:f9:da:04:84:ff:ff:67:30:be:87:5d:f4:04:cf:1f:c6:
54:66:07:64:4a:23:1a:12:44:49:83:ee:85:61:9c:83:e1:c1:
b4:9b:c0:aa:9f:c3:21:53:be:15:f0:7b:0c:bf:48:7c:38:7b:
40:4b:57:c9:76:b1:92:2f:69:fa:6d:cb:5d:5a:8d:ef:bb:c7:
71:d4:ef:52:3e:46:87:3e:87:6a:40:9a:84:e7:74:54:48:66:
2a:43:dd:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org