Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-6HinUvaIu6-DHHfAX0T1XPRLOc.roa
File: 1-6HinUvaIu6-DHHfAX0T1XPRLOc.roa (raw, json)
Hash identifier: bFm6bJlgKtx5OqvSFYRJa5dXztpP4vnOSXMh2fOePXc=
Subject key identifier: FB:A1:E2:9D:4B:DA:22:EE:BE:0C:71:DF:01:7D:13:D5:73:D1:2C:E7
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01872285F2E2D755A6F0BCFB4E83503D885F
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-6HinUvaIu6-DHHfAX0T1XPRLOc.roa
Signing time: Mon 27 Mar 2023 10:03:36 +0000
ROA not before: Mon 27 Mar 2023 10:03:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Apr 2023 01:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:85:f2:e2:d7:55:a6:f0:bc:fb:4e:83:50:3d:88:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 27 10:03:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fba1e29d4bda22eebe0c71df017d13d573d12ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bd:c8:d3:9d:c6:50:ca:f5:94:3b:80:3b:2a:
45:74:d8:77:24:13:4d:1f:d9:63:48:c4:29:d5:bf:
43:1d:09:25:26:bd:28:3b:8e:e3:8b:72:0a:b5:ed:
b7:94:1b:59:29:6d:c4:b8:34:be:99:30:e2:3c:27:
03:90:8b:f2:55:18:e8:c0:d6:15:89:88:eb:28:05:
ff:98:f8:5e:1e:4f:00:37:4a:01:a7:85:07:74:2a:
17:7e:28:61:55:cb:0a:2f:e1:05:77:a5:37:17:92:
9c:65:e7:9a:35:d4:99:72:c6:5a:2f:2f:ce:51:a5:
ec:bb:a2:c4:93:c0:9b:3e:55:14:ac:72:a4:c0:e6:
83:a9:ac:0c:36:34:01:95:bf:d0:df:c2:a2:5e:bd:
16:40:c3:b6:b5:ef:70:1e:a5:37:c4:fc:b4:e8:ec:
96:f2:0e:c2:87:b2:71:d8:6d:90:32:1c:5e:01:5c:
52:8b:b7:d2:f1:fd:10:d6:10:0a:bd:1a:80:33:f0:
bc:91:9d:aa:29:9b:8c:05:36:53:f0:88:4f:70:8f:
8c:37:70:56:08:08:b0:33:7a:c1:63:6c:cb:05:f3:
1f:4a:d6:f4:87:eb:b0:b2:35:20:34:61:10:bd:df:
10:f9:c6:eb:4b:14:4e:ad:6d:ba:66:7e:ba:cd:0b:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A1:E2:9D:4B:DA:22:EE:BE:0C:71:DF:01:7D:13:D5:73:D1:2C:E7
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-6HinUvaIu6-DHHfAX0T1XPRLOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
15:a1:83:ec:72:a0:f6:35:0c:f2:bb:ec:4a:84:3e:62:0f:f8:
6d:89:91:5d:4d:ee:2c:c0:37:ce:ce:cc:61:6f:96:61:39:e8:
50:98:08:3c:cd:13:49:0a:6d:86:87:db:9b:b7:53:5e:54:6e:
83:06:cc:82:75:4d:2a:b0:0f:c4:43:7a:86:cd:e8:e8:c9:d9:
04:0c:46:df:2e:6c:2a:4f:8a:ca:90:9f:9e:d6:63:93:60:bd:
83:6a:92:d2:cd:12:de:04:a2:32:45:7c:e5:be:00:f1:cf:bb:
fa:03:a9:1b:7c:a6:f0:64:af:53:f5:23:07:19:a9:58:61:45:
2b:c9:fb:4b:92:30:a2:53:fa:fd:83:45:7d:6f:71:00:10:1d:
2a:b2:1b:30:80:83:82:49:70:ee:02:d2:b9:13:06:92:53:63:
23:36:90:b0:f6:b4:9c:83:88:f3:47:e0:bc:bb:d3:04:27:9d:
4c:87:cb:e5:94:c4:4e:06:43:8e:e5:5e:72:6c:fb:da:81:40:
e5:a9:32:2f:37:9e:be:6e:51:cc:93:97:f8:c4:72:1b:46:c3:
2c:a0:ee:ed:78:38:8b:30:a1:94:2f:ac:60:47:22:03:68:f1:
ae:ac:36:35:d5:1c:7d:b3:db:c9:34:86:49:08:07:e5:ab:5c:
7e:b3:97:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-fra.rpki-client.org