Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6oHQh_TW97ek3Z6JYHX2jHLe4vY.roa
File: 6oHQh_TW97ek3Z6JYHX2jHLe4vY.roa (raw, json)
Hash identifier: RWy+K2DnVBrm1mn92DVbOExojmdxPupMx8xf/0oa3vU=
Subject key identifier: EA:81:D0:87:F4:D6:F7:B7:A4:DD:9E:89:60:75:F6:8C:72:DE:E2:F6
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 018EEB5341E7C7CE418BEB82DBC33FBD6D2F
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6oHQh_TW97ek3Z6JYHX2jHLe4vY.roa
Signing time: Wed 17 Apr 2024 09:11:25 +0000
ROA not before: Wed 17 Apr 2024 09:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54994
IP address blocks: 91.194.205.0/24 maxlen: 24
91.202.200.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
148.253.36.0/24 maxlen: 24
148.253.228.0/24 maxlen: 24
148.253.229.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.239.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
148.253.248.0/24 maxlen: 24
151.249.92.0/24 maxlen: 24
151.249.93.0/24 maxlen: 24
151.249.94.0/24 maxlen: 24
163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
163.171.94.0/24 maxlen: 24
163.171.96.0/24 maxlen: 24
163.171.97.0/24 maxlen: 24
163.171.98.0/24 maxlen: 24
163.171.101.0/24 maxlen: 24
163.171.102.0/24 maxlen: 24
163.171.103.0/24 maxlen: 24
163.171.104.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
163.171.176.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.224.0/24 maxlen: 24
163.171.225.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.249.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
194.107.19.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Apr 2024 10:24:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:eb:53:41:e7:c7:ce:41:8b:eb:82:db:c3:3f:bd:6d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Apr 17 09:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea81d087f4d6f7b7a4dd9e896075f68c72dee2f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:85:be:d8:2a:c3:a2:58:44:d6:20:f0:62:e1:
7e:12:a7:da:ad:28:e0:51:86:ba:fd:94:52:4f:d0:
a7:e6:a6:4c:1d:59:b6:af:ec:f1:a6:da:ae:d0:f9:
52:88:a0:8a:16:dd:d9:1f:8c:40:ac:e3:7f:b2:04:
a2:d9:03:29:86:23:b8:31:fe:3a:56:55:2a:a6:b2:
5d:41:48:60:29:89:9b:f3:ec:c1:7e:0b:16:80:de:
1d:a3:e4:41:eb:5b:27:51:7c:90:e2:12:d1:3b:35:
6a:2b:f4:12:62:a3:ae:23:88:c7:4f:ce:0f:1e:03:
af:42:4a:73:5a:8e:47:ac:90:80:1b:9a:9e:13:90:
3d:2a:12:9a:47:40:c8:d2:dc:ef:17:d2:7f:98:d6:
97:eb:33:a6:67:43:ee:f0:b5:46:4a:f8:1f:47:7d:
ce:29:f4:f8:f5:92:39:83:61:ff:0e:c9:0e:6d:76:
72:ef:a8:c7:60:0d:46:7a:b9:90:1d:43:94:b3:5b:
c3:af:6c:b4:8b:08:6f:ad:26:a2:23:4e:2d:9e:bb:
70:91:f6:12:5f:92:d3:a7:e6:2a:6f:80:25:6b:bd:
86:21:99:2c:25:6f:a4:b9:f4:9a:4d:5e:56:ad:c5:
2d:70:ad:bc:76:f5:de:b1:a7:e2:d0:8c:c3:dc:3c:
bb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:81:D0:87:F4:D6:F7:B7:A4:DD:9E:89:60:75:F6:8C:72:DE:E2:F6
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/6oHQh_TW97ek3Z6JYHX2jHLe4vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.205.0/24
91.202.200.0/24
93.188.135.0/24
148.253.34.0/24
148.253.36.0/24
148.253.228.0/23
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.239.0/24
148.253.246.0/24
148.253.248.0/24
151.249.92.0-151.249.94.255
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.94.0/24
163.171.96.0-163.171.98.255
163.171.101.0-163.171.104.255
163.171.166.0/24
163.171.176.0/23
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.224.0/23
163.171.231.0/24
163.171.249.0/24
163.171.252.0/24
194.107.19.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
c3:24:24:46:ef:fe:81:80:68:9e:c2:35:d6:c3:15:27:61:81:
cf:c6:a1:97:44:d0:c3:00:6e:64:cd:2d:65:93:1c:6f:74:27:
cd:26:0e:f0:5f:62:7e:e7:51:64:42:3a:da:8b:e7:22:90:af:
ed:93:bf:74:79:fa:fc:be:56:f0:da:af:b6:ec:1e:5e:f1:f3:
d7:d4:bc:67:71:c4:ad:27:74:69:1b:67:3e:19:ed:16:ca:a1:
73:3f:f0:76:6e:3f:13:17:d5:ac:76:46:33:99:3f:f7:71:8b:
8a:67:b6:35:43:c1:bd:a0:9e:68:ce:d7:d1:30:9a:29:e7:91:
36:84:e7:37:29:8a:6a:b6:b4:f0:e4:f9:fe:d3:55:96:66:73:
c2:eb:a9:b2:2b:06:06:7a:16:b5:fd:ea:d0:06:a2:00:1d:71:
2c:d2:71:48:a0:3d:a7:12:8a:5c:c0:b6:69:06:06:35:fe:9c:
fc:e9:d9:c2:2b:65:b5:e9:28:3a:c3:1c:da:2e:e4:bd:91:00:
01:04:d9:b3:3d:15:2f:7f:b5:0c:64:ee:e4:6f:9e:13:95:04:
2a:bc:77:18:7f:dc:14:c8:2b:8b:8e:73:38:2b:b6:cd:a8:9a:
55:56:a0:33:32:28:04:10:c8:61:35:c3:ce:34:15:88:48:a4:
41:9c:52:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org