Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/v2AAvmGf1k9HDsOsFmZJw5eF32o.roa
File: v2AAvmGf1k9HDsOsFmZJw5eF32o.roa (raw, json)
Hash identifier: oavicVpeOnt1CqZyJvw6A5tUFmEp6GjWNeuQYpvSLrE=
Subject key identifier: BF:60:00:BE:61:9F:D6:4F:47:0E:C3:AC:16:66:49:C3:97:85:DF:6A
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019016F8AFAA3E7AA3F632C3A769FB58CDF8
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/v2AAvmGf1k9HDsOsFmZJw5eF32o.roa
Signing time: Fri 14 Jun 2024 13:38:34 +0000
ROA not before: Fri 14 Jun 2024 13:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 18 Jun 2024 17:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:16:f8:af:aa:3e:7a:a3:f6:32:c3:a7:69:fb:58:cd:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 14 13:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf6000be619fd64f470ec3ac166649c39785df6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:fa:51:81:d1:46:9a:42:a5:ba:29:f8:e3:
fe:dc:1f:48:89:79:34:a6:4f:23:21:23:96:2c:07:
92:2c:ea:0b:a6:53:04:20:36:cc:e0:96:aa:d9:37:
00:77:a6:58:96:59:0a:67:b1:b8:be:71:c6:16:eb:
ba:55:32:20:57:42:c2:2b:cb:ff:58:c9:2f:dc:a2:
fc:f3:4b:14:69:b6:f9:f2:f6:1c:55:8e:3e:e1:ca:
6d:f3:62:c0:56:97:9d:a5:f5:28:0f:85:a5:1a:c8:
64:d9:4c:26:b4:5c:4c:67:d0:fd:a1:51:ee:6e:cf:
62:4f:88:30:58:8e:26:5d:22:52:70:4b:ed:72:38:
c9:ff:d4:c9:c3:e3:8c:65:01:7c:be:95:04:65:04:
df:e8:fc:7f:ad:47:99:5b:44:f1:91:47:e5:c3:f4:
ac:0b:b2:57:18:74:72:93:1f:b9:b6:c3:b9:9b:03:
d7:ec:da:e6:99:8c:0b:60:29:b5:8d:29:95:4b:17:
8a:c4:25:dd:c2:68:8a:3d:95:9e:3a:bc:b9:20:7a:
d9:08:bd:61:5a:8b:43:dc:6c:7d:15:57:f1:02:55:
12:8a:35:a8:12:78:c0:b7:19:66:ed:08:ce:0c:da:
e1:94:03:2b:89:e2:97:f3:2f:a0:b1:79:74:96:0f:
8f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:60:00:BE:61:9F:D6:4F:47:0E:C3:AC:16:66:49:C3:97:85:DF:6A
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/v2AAvmGf1k9HDsOsFmZJw5eF32o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
6f:15:2a:06:aa:0a:1f:5a:87:3b:86:3d:1d:2a:e9:aa:19:7c:
7a:7f:9f:bb:d2:23:82:fa:5e:03:ab:4f:2f:07:e6:40:4c:b8:
bb:41:65:0a:88:41:da:08:c0:2c:cf:99:71:76:7b:22:67:e1:
53:11:6d:2c:48:64:bc:54:ce:6c:33:a3:42:19:c8:3e:0a:90:
bf:6d:88:70:60:3b:6a:6b:be:8a:45:ee:aa:51:5a:d3:7c:73:
b1:66:d0:7a:66:b0:90:a8:56:4b:67:d4:23:2f:03:2e:08:a7:
c1:c3:b7:d7:4e:8c:d6:5b:61:3c:c9:c4:15:6c:ae:d4:99:fc:
1e:20:a6:d5:53:f8:9b:cf:89:4e:3e:b1:bc:c8:82:02:ac:55:
22:c3:1d:0d:44:36:58:72:5a:18:41:2c:2d:d7:7b:0e:49:e4:
7c:c7:51:c1:5c:37:48:7e:f8:2e:c6:53:17:e3:41:a9:9b:2c:
80:36:91:f6:df:17:c9:89:31:75:0c:2b:75:f8:16:f6:cc:48:
34:e4:bc:0f:66:ae:4c:5a:ab:1f:b0:c6:00:0e:ac:dd:6d:b1:
c1:f4:9a:60:b9:a4:02:e8:1a:46:dd:e7:97:b3:9e:74:05:2f:
56:6d:8b:7e:55:f7:cd:3c:69:b1:a9:7f:2e:f0:b5:a1:6d:47:
72:3e:1f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 23:03:03 2024 by rpki-client on console-ams.rpki-client.org