Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-jLAz1kgfRll9Gi1DabuS3asTko.roa
File: 1-jLAz1kgfRll9Gi1DabuS3asTko.roa (raw, json)
Hash identifier: UpxrC3W7JUy8BS+/pEMkZxTYPH12VT1hmelHHNIC0Ms=
Subject key identifier: FA:32:C0:CF:59:20:7D:19:65:F4:68:B5:0D:A6:EE:4B:76:AC:4E:4A
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0188ADB26EC3EB9794B7FD179CC3B5A34214
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-jLAz1kgfRll9Gi1DabuS3asTko.roa
Signing time: Mon 12 Jun 2023 03:42:12 +0000
ROA not before: Mon 12 Jun 2023 03:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.228.0/24 maxlen: 24
163.171.94.0/24 maxlen: 24
163.171.97.0/24 maxlen: 24
163.171.98.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
163.171.101.0/24 maxlen: 24
163.171.102.0/24 maxlen: 24
163.171.103.0/24 maxlen: 24
163.171.104.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.224.0/24 maxlen: 24
163.171.225.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 26 Jun 2023 07:17:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ad:b2:6e:c3:eb:97:94:b7:fd:17:9c:c3:b5:a3:42:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jun 12 03:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa32c0cf59207d1965f468b50da6ee4b76ac4e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2b:66:7f:18:bc:d5:be:8e:36:16:9b:e3:e1:
91:ca:bf:b4:83:39:9d:96:e8:e8:4b:d0:c9:87:83:
f6:ca:54:de:8e:4b:b8:84:ce:37:30:48:d7:8a:a3:
51:50:4a:71:55:a6:ad:26:27:9f:da:94:20:96:2b:
4c:16:dc:9e:3e:1f:3f:ec:d5:d0:5d:e8:e6:32:a9:
58:f7:65:e6:bd:27:79:22:63:81:66:60:4b:a0:ec:
79:00:09:23:12:81:b0:8e:21:ea:8e:35:ab:b4:da:
8c:92:60:7a:9d:97:e9:78:71:2c:96:7c:7c:f9:af:
bf:1f:ac:80:31:7c:c0:23:6b:de:bf:3e:73:08:e0:
06:e6:97:7a:9c:95:1b:37:e7:e0:89:1a:5c:0a:5b:
b5:ef:c3:3f:ea:d6:e4:eb:3f:4e:eb:d5:84:37:24:
68:f0:be:7b:46:20:68:f5:9e:6d:12:e6:de:15:be:
45:af:93:39:4c:27:59:bc:e9:5c:56:29:d4:54:fd:
b6:4f:98:ed:80:d1:8e:22:dd:ba:a3:e3:3c:9e:13:
c6:12:4a:a5:fa:6f:ee:14:02:4b:5f:2c:2a:b1:dd:
25:66:b5:5d:0b:3e:e4:54:ab:14:09:1e:c9:d9:5b:
24:37:91:17:f3:ba:0c:38:e0:3c:43:70:78:f5:bc:
a9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:32:C0:CF:59:20:7D:19:65:F4:68:B5:0D:A6:EE:4B:76:AC:4E:4A
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/1-jLAz1kgfRll9Gi1DabuS3asTko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.228.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.94.0/24
163.171.97.0-163.171.98.255
163.171.101.0-163.171.104.255
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.224.0/23
163.171.231.0/24
163.171.252.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
c3:b6:d2:4f:55:65:3a:11:1b:d3:2f:f6:1f:22:5b:c1:c3:9d:
eb:5c:9e:19:f3:da:bd:ab:76:5c:8d:be:78:36:f1:ef:7a:99:
72:d0:85:f8:e1:fe:50:61:52:b0:4f:88:28:26:89:cc:e3:a6:
e3:bc:b1:85:88:d4:c9:e1:8b:14:e8:17:3d:7e:f7:e5:86:6e:
37:f8:8d:aa:67:fc:49:9a:f3:77:51:e1:b5:ee:fe:11:82:51:
37:59:4c:5a:cb:ef:53:7d:ef:f2:0c:54:06:6b:9b:ce:f8:21:
29:17:66:0b:47:b7:46:59:99:d9:05:42:95:b6:49:79:23:81:
c5:2e:72:9e:c4:47:8f:e6:1d:fd:22:44:c3:2e:1a:c9:cd:e5:
70:e6:91:ae:f7:d2:84:19:1e:bc:5c:19:6e:d5:e0:0a:28:1b:
58:4f:75:b6:71:f0:33:e6:98:d6:13:c4:31:e5:f4:35:c1:83:
2c:cc:05:89:d2:ed:b6:e5:72:88:c8:f5:7a:ed:d7:c7:dc:a2:
b6:3c:62:a3:89:b6:a0:6c:35:34:7f:54:8e:3c:1b:bb:a2:02:
b4:0c:73:2b:0c:22:f8:0f:f3:a8:d3:56:57:f4:ce:5a:cc:de:
91:fb:73:8a:0b:d9:55:51:0d:81:77:8f:3f:1e:8d:d3:0e:50:
44:c3:8a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org