Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7Kf6Ihsb1RrhGVaDa5lOfT0U_-A.roa
File: 7Kf6Ihsb1RrhGVaDa5lOfT0U_-A.roa (raw, json)
Hash identifier: o7Mb26MNfxxzd7PILhzcCYfGgz9yJN9QSYrIPJCjvnA=
Subject key identifier: EC:A7:FA:22:1B:1B:D5:1A:E1:19:56:83:6B:99:4E:7D:3D:14:FF:E0
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01902C62DADD239FC8896BD5F02BFBF5AD51
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7Kf6Ihsb1RrhGVaDa5lOfT0U_-A.roa
Signing time: Tue 18 Jun 2024 17:26:34 +0000
ROA not before: Tue 18 Jun 2024 17:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 18 Jun 2024 18:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2c:62:da:dd:23:9f:c8:89:6b:d5:f0:2b:fb:f5:ad:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 18 17:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eca7fa221b1bd51ae11956836b994e7d3d14ffe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a2:27:6f:ed:6b:02:60:7f:a9:b1:55:88:5b:
a1:d7:59:fd:ac:12:bd:aa:89:f3:04:01:80:68:fa:
e5:ad:72:24:14:67:98:fa:d2:c3:a6:6c:56:2d:2d:
6f:22:7b:59:ec:36:9b:46:3d:0a:46:cc:20:e0:a4:
7f:d1:d0:3d:27:24:f0:bb:1e:f4:87:09:ac:c7:8a:
67:2d:00:c0:d2:a9:a6:01:93:2f:b4:38:4e:fc:2b:
88:a6:8a:64:c9:32:d3:46:95:ed:16:72:b7:27:61:
1b:31:93:98:1c:29:b4:92:be:fe:92:12:82:79:3b:
b5:92:90:2e:42:73:2f:34:6e:4b:31:94:d8:63:03:
41:d4:6f:bb:d0:95:2a:4e:38:dd:31:1f:c7:81:a3:
84:b9:a8:a5:24:39:f5:73:31:cb:e8:00:40:c7:9b:
2f:b3:73:3f:9a:e4:b7:c2:16:69:7a:bd:fd:3e:62:
55:f6:79:60:cd:e8:19:43:b8:83:34:76:c5:cd:32:
16:75:a7:02:6b:e4:e9:3d:f4:66:c2:f5:20:d4:64:
6c:37:55:82:de:0e:25:60:22:fa:6c:c3:4b:e6:97:
fc:39:6d:18:9c:9d:2d:15:a2:49:63:38:39:aa:7f:
9f:8c:e1:eb:e9:d4:3e:e8:1b:a2:23:0a:7a:c3:f7:
ed:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A7:FA:22:1B:1B:D5:1A:E1:19:56:83:6B:99:4E:7D:3D:14:FF:E0
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7Kf6Ihsb1RrhGVaDa5lOfT0U_-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
2a12:6740::/29
2a12:6f40::/29
2a12:7740::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
1b:7d:02:64:0c:20:c2:87:73:16:7d:d5:48:a7:12:1d:cb:00:
57:89:dd:28:fa:f0:de:2c:61:fb:c3:3e:07:3b:e7:b3:50:c3:
87:9f:d9:1d:2d:dd:ba:6e:50:d9:cf:98:8f:76:fe:5f:9f:3b:
35:d7:2c:2e:eb:18:0a:30:5d:24:ab:ff:45:98:9a:7d:f9:b3:
0a:08:01:7d:b7:c4:70:14:18:2d:3e:3c:7b:08:10:95:18:08:
2d:cb:58:07:d5:78:60:54:8b:a9:f5:3c:7a:3a:72:1e:cb:c0:
8f:d6:f4:d4:50:10:e3:34:66:f8:cc:c3:f7:0c:78:1c:79:aa:
a9:97:65:df:7c:f2:b9:ad:f2:44:ac:39:33:27:e1:ef:d0:a3:
18:30:d5:70:90:44:49:c6:9a:83:9e:4d:0f:c1:3b:b6:18:9f:
8f:d0:18:2a:46:3e:4a:25:22:5e:45:ee:12:19:62:25:c4:71:
e4:bb:bf:6d:e2:18:7d:76:1b:e2:47:f2:7a:85:05:59:f7:30:
96:53:b5:14:04:89:44:88:1c:87:b7:22:00:83:f5:a2:2c:5d:
8c:5d:ec:d3:77:f5:65:ee:16:45:32:0b:26:b7:8d:7f:bb:b0:
14:cf:44:4e:fd:c2:8c:a2:f2:7e:46:6a:1a:b2:0c:c1:9d:de:
03:ed:71:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 10:54:40 2025 by rpki-client