Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/o6vQH451Rk3PF74TxyO88Py-ttg.roa
File: o6vQH451Rk3PF74TxyO88Py-ttg.roa (raw, json)
Hash identifier: hscJC8xYP/tS0iWhDpK/xH65fVXYmSK89b7u84asI1E=
Subject key identifier: A3:AB:D0:1F:8E:75:46:4D:CF:17:BE:13:C7:23:BC:F0:FC:BE:B6:D8
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019103FA0D2B58F5171291E4ED6EE79520CE
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/o6vQH451Rk3PF74TxyO88Py-ttg.roa
Signing time: Tue 30 Jul 2024 14:10:04 +0000
ROA not before: Tue 30 Jul 2024 14:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Jul 2024 19:42:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:03:fa:0d:2b:58:f5:17:12:91:e4:ed:6e:e7:95:20:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 30 14:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3abd01f8e75464dcf17be13c723bcf0fcbeb6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f9:56:4a:78:e1:c1:f3:04:34:64:25:50:17:
bc:bf:8f:79:a1:a3:02:cb:c9:5a:90:ba:b0:11:65:
a2:aa:48:4a:45:a5:9f:9d:aa:33:bc:e7:87:ae:ea:
3f:79:3f:57:64:4c:62:7a:4d:77:01:fc:0f:ba:e7:
29:30:31:b7:4c:05:4b:90:d2:0b:12:db:a5:de:bf:
1d:76:25:a3:a3:de:19:fb:b0:cb:71:e2:5b:ee:c8:
22:e4:23:fe:3a:83:2b:38:e9:46:e7:cd:b1:0c:14:
4e:ef:c5:c0:66:75:e2:ee:9d:ba:1f:a1:72:7e:07:
b0:62:cd:e7:e1:d1:0b:8a:02:2d:0e:c8:98:fc:55:
47:7a:77:65:5e:7a:31:38:79:ac:a7:2c:f2:2d:93:
7c:57:19:c5:62:7d:62:97:44:18:13:94:b0:98:50:
67:13:7d:e7:49:2a:40:9b:0d:a4:69:9c:c6:bb:3c:
d1:18:1e:b8:55:36:3c:5f:b7:51:cd:45:02:de:26:
19:db:61:ba:95:e0:1f:8d:06:0e:56:00:86:c2:57:
8c:37:33:0e:a8:23:e4:12:a8:e4:3c:01:73:42:ed:
f7:59:43:34:7e:3d:37:d3:2d:a0:3f:8e:b6:ab:c4:
c7:c4:8d:92:86:86:e5:28:87:c4:62:e7:4e:80:3f:
94:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AB:D0:1F:8E:75:46:4D:CF:17:BE:13:C7:23:BC:F0:FC:BE:B6:D8
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/o6vQH451Rk3PF74TxyO88Py-ttg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
08:27:93:c3:a0:8f:4f:9d:b4:d5:b2:cc:88:e1:63:a3:56:55:
2d:59:57:f2:db:e6:9f:60:ec:bd:88:42:21:cc:45:c3:58:70:
64:a8:1e:b1:67:e8:67:12:9e:87:d6:b9:d0:0f:21:6d:a3:2f:
0b:92:a5:0f:c8:f3:64:14:a2:4b:f7:f6:a2:14:5b:02:04:d2:
87:4d:f2:35:47:9a:38:22:a7:31:88:2c:3e:8c:a1:eb:f4:c6:
40:83:d7:4a:45:24:0e:96:c8:08:c3:df:d1:fa:14:8f:10:eb:
da:c8:12:30:4d:88:b6:9e:a4:53:40:52:3e:a0:45:fb:5b:62:
e5:60:48:9b:eb:e3:54:f3:29:b5:30:16:a7:c5:0a:3b:b4:39:
79:96:e5:26:b6:29:80:d6:e3:bf:1b:3c:f4:2a:70:91:50:bd:
18:bb:2c:ef:c5:7a:59:6f:c6:b0:45:c6:a4:16:c4:48:47:03:
96:b4:1a:8b:98:5c:57:80:1c:1e:e9:26:58:64:d1:ca:d5:2f:
7e:3c:7d:c7:c2:2f:86:8a:3a:6f:03:4f:6a:dd:ef:de:5b:17:
b8:1a:1b:94:c4:df:56:3a:21:03:2b:1b:81:ee:ea:38:7a:a3:
31:4a:5f:8f:20:50:46:9c:ce:7c:eb:74:76:b4:c9:e7:53:eb:
39:80:17:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 20:53:00 2024 by rpki-client on console-fra.rpki-client.org