Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/XyGY0XVUuynIpjFzUnhjVs9F80s.roa
File: XyGY0XVUuynIpjFzUnhjVs9F80s.roa (raw, json)
Hash identifier: VJ0v1cPZxW9B9mdZC/fNW/RnQsvS6uxYbdY0mHgI0jo=
Subject key identifier: 5F:21:98:D1:75:54:BB:29:C8:A6:31:73:52:78:63:56:CF:45:F3:4B
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F489246D9A8B7F37D62502DE202BDE37C
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/XyGY0XVUuynIpjFzUnhjVs9F80s.roa
Signing time: Sun 05 May 2024 11:44:56 +0000
ROA not before: Sun 05 May 2024 11:44:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 May 2024 20:24:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:92:46:d9:a8:b7:f3:7d:62:50:2d:e2:02:bd:e3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 5 11:44:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f2198d17554bb29c8a6317352786356cf45f34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b0:94:ad:e1:a4:a2:38:1a:ad:21:f5:7a:4a:
11:39:2b:fd:6a:d5:46:cb:41:d1:74:33:24:5f:e4:
a5:9c:aa:43:4e:f7:03:26:09:99:31:d5:dc:a9:c7:
3f:6d:11:42:08:0b:8a:99:9d:66:1a:ed:1c:ac:8a:
9e:d4:76:5a:67:cf:1d:0e:0f:e1:11:1a:9f:d1:9e:
f6:23:cd:ef:8d:cd:b4:9c:cf:65:08:30:13:72:e0:
82:d7:61:6b:e5:ca:20:5c:ac:ad:da:26:9a:04:e2:
a0:6d:85:73:a6:22:e4:d7:ad:54:9d:a3:11:0e:46:
31:cf:3b:ff:9b:fa:8a:11:45:23:d9:2c:b0:a6:94:
41:a8:7b:e8:d1:43:7d:bf:c9:2e:db:44:90:d7:39:
dd:a4:bf:aa:5f:43:8c:0b:f8:25:6e:a9:8c:78:f9:
3d:9d:5b:a1:d3:0e:7c:7c:45:d6:a4:70:e9:c7:fd:
30:90:fd:30:2a:de:6c:26:b1:95:da:f3:4f:6b:17:
a1:7b:05:51:9b:df:9e:23:7c:0d:d9:e9:c3:a9:71:
85:19:95:70:7c:6d:6f:04:63:ad:06:e5:d1:fd:f7:
0b:b6:3f:bf:78:e1:2b:7c:8f:b5:41:18:b2:ee:6c:
17:b6:ab:b8:5d:23:e7:b2:20:c1:27:8f:47:e5:84:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:21:98:D1:75:54:BB:29:C8:A6:31:73:52:78:63:56:CF:45:F3:4B
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/XyGY0XVUuynIpjFzUnhjVs9F80s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:f140::/29
2a11:f240::/29
2a12:440::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
78:0c:03:a9:ff:6b:93:06:78:bd:8f:37:fb:a6:a7:48:80:bd:
ef:90:77:2b:cd:8e:c2:0e:5a:b2:94:2b:85:42:4b:df:7e:f4:
68:4e:14:d8:ef:94:02:3b:71:21:d9:1d:6c:f8:61:15:65:8b:
9d:33:35:41:4d:18:20:c3:b7:f9:a9:fb:a1:ec:c8:a9:36:89:
35:eb:aa:26:66:c1:5e:08:33:d6:b6:37:0b:7a:d5:4e:da:8f:
48:d5:09:af:b7:ec:32:b7:96:a8:af:1f:e7:62:da:6c:04:a9:
d3:1b:26:71:2a:49:e8:4f:37:a8:76:63:da:1a:9a:28:2d:d6:
22:9d:81:ae:5c:86:94:33:7c:77:c8:6e:83:74:4b:ae:b9:08:
9c:6d:37:de:9e:2e:9b:b7:48:4e:b1:f0:c3:7c:6b:7a:aa:fc:
d6:2c:13:a7:69:2b:4a:6a:3f:d0:d6:b0:b4:7b:a0:8c:9f:ac:
28:00:61:40:f2:0b:ed:ab:ee:d3:eb:8c:44:27:29:86:33:e7:
3c:5d:80:91:9c:78:25:c3:4f:85:b7:34:a1:77:ee:ed:ee:a0:
5d:35:1b:bf:76:af:5a:c9:d2:9e:69:12:65:a9:a2:0f:18:65:
7a:7a:16:0f:ee:63:5a:43:c4:5c:5c:b9:8e:1c:5d:00:7d:e6:
30:bc:7c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org