Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/NbnyH6_s6r0Z96cSUwJ7KxMJ1yM.roa
File: NbnyH6_s6r0Z96cSUwJ7KxMJ1yM.roa (raw, json)
Hash identifier: 8ZGXRNxOT3JduTBULxjQjbYtsmB2gCJyDV5u1KFK+kA=
Subject key identifier: 35:B9:F2:1F:AF:EC:EA:BD:19:F7:A7:12:53:02:7B:2B:13:09:D7:23
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F35208D51EF2B9267D5539839DE2EC93D
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/NbnyH6_s6r0Z96cSUwJ7KxMJ1yM.roa
Signing time: Wed 01 May 2024 17:07:56 +0000
ROA not before: Wed 01 May 2024 17:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:d3c0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 May 2024 19:03:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:20:8d:51:ef:2b:92:67:d5:53:98:39:de:2e:c9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 1 17:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=35b9f21fafeceabd19f7a71253027b2b1309d723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:52:6d:30:52:36:57:fd:cb:47:98:8b:36:
af:e5:fe:d2:6f:a5:e9:0f:43:51:13:36:3a:e9:a2:
70:6d:fd:8f:13:41:06:4d:6f:49:f2:c0:42:bb:8b:
8e:e5:94:18:34:c2:88:9d:ab:14:20:0d:11:25:6a:
e1:57:80:a3:4a:80:83:cb:14:b6:28:4f:4e:57:7b:
34:f7:c6:0a:56:c3:68:ae:0c:bb:54:9d:19:14:9e:
8f:31:16:1e:a1:d9:5f:92:78:de:f6:51:e3:27:27:
92:37:57:dd:e5:10:08:c3:7f:7b:3c:44:65:5d:06:
5c:3d:d0:95:94:7a:77:a4:d6:29:4b:0b:09:62:bf:
8d:49:0c:97:39:78:3d:25:01:03:76:da:f3:0c:7a:
83:ef:a4:83:ef:44:c5:0b:3f:37:b0:61:e2:86:f5:
06:bb:e5:4c:c9:61:21:cc:af:1d:b8:1c:79:b3:5b:
8b:3b:41:7f:00:3a:38:0f:91:c2:89:48:fa:70:87:
7d:76:8e:72:59:c2:56:f0:fb:d8:71:a8:4d:7f:12:
b9:20:be:f1:fb:8b:ce:8a:03:c3:5f:3d:cc:c8:f1:
32:07:c6:f0:32:92:6e:2c:e6:07:7e:27:68:14:d3:
65:67:b5:59:3d:60:ff:31:e1:d2:4f:c3:53:5c:9f:
b7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B9:F2:1F:AF:EC:EA:BD:19:F7:A7:12:53:02:7B:2B:13:09:D7:23
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/NbnyH6_s6r0Z96cSUwJ7KxMJ1yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:d3c0::/29
2a12:e240::/29
2a12:f0c0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
70:23:1f:20:50:be:f8:a5:d0:92:0e:79:a2:6c:a5:fe:f0:d4:
12:5b:e7:a9:f9:f8:2b:b5:0c:c4:17:15:b5:fc:14:9b:4c:7f:
66:17:36:b0:90:ad:3b:43:12:54:89:b4:f2:2d:ce:b3:ca:dd:
df:41:77:b0:e1:f7:ff:fe:a9:ba:fe:f4:cd:21:a6:b6:05:dd:
4d:93:16:d1:a6:7e:27:6b:af:99:e0:30:eb:2f:3d:96:7f:ce:
a6:f7:93:0f:fd:13:1e:af:e8:de:7c:7b:fa:f4:4c:a6:01:6c:
2d:97:d0:83:2a:f8:b2:88:85:b9:22:72:df:ac:69:28:2e:07:
5c:9c:71:63:0b:7b:24:b5:f0:24:63:44:51:b6:4e:d6:b6:a5:
8d:f1:79:00:84:ce:ef:aa:35:b6:6c:4c:9c:b9:15:5d:d0:87:
e9:72:55:4c:59:50:f0:90:23:75:c0:4d:f0:08:a7:5a:39:90:
cb:cd:fa:7e:59:71:79:55:b9:fa:85:45:b0:6b:8a:2b:c1:33:
17:8f:c1:0b:8a:a2:f2:0f:8e:cc:d4:7d:db:83:be:02:18:b3:
b9:f5:26:ae:67:b4:b8:45:f9:15:2a:72:ff:86:31:1e:90:1b:
b7:2f:a1:53:55:9f:da:5c:f6:8b:61:33:05:7a:18:f2:67:cb:
33:43:97:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org