Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Sb373nsFjvxQ_tuAZmQIdz-Tpfk.roa
File: Sb373nsFjvxQ_tuAZmQIdz-Tpfk.roa (raw, json)
Hash identifier: UZLLHt//u018oiUPNq5PibX4btubv2THFaJ9HQf0gOo=
Subject key identifier: 49:BD:FB:DE:7B:05:8E:FC:50:FE:DB:80:66:64:08:77:3F:93:A5:F9
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01856E542B0111CA80CEF87C10FD79339275
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Sb373nsFjvxQ_tuAZmQIdz-Tpfk.roa
Signing time: Sun 01 Jan 2023 17:14:47 +0000
ROA not before: Sun 01 Jan 2023 17:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 07:40:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:2b:01:11:ca:80:ce:f8:7c:10:fd:79:33:92:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 1 17:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49bdfbde7b058efc50fedb80666408773f93a5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:46:ce:51:a7:85:54:1e:45:95:30:a8:20:
19:5c:03:11:eb:53:ca:e0:55:bd:5a:4c:22:08:b7:
be:a0:4b:e6:ed:6d:b5:93:bb:8d:5b:4b:18:00:d2:
62:ec:72:25:56:bf:95:4a:58:64:b7:01:8e:59:df:
43:19:84:42:27:49:5b:4f:90:30:60:85:5c:3f:be:
1f:1b:b2:31:c6:63:0d:18:c0:90:ff:91:8e:62:63:
d1:db:0f:52:89:9b:a1:0b:3a:82:f4:a9:f2:d4:f8:
8c:f2:b0:a7:a8:10:9b:9d:70:4d:e1:c1:96:42:4f:
ba:2e:98:b4:83:0c:30:bd:bb:e7:10:00:f4:fd:13:
ab:0d:af:d8:22:70:3e:63:ea:f8:98:ad:ce:6c:ca:
62:6a:f5:4b:85:21:63:6f:7f:3c:01:ad:1f:97:d0:
5c:1d:45:d0:6c:59:bb:fd:6c:dd:db:b9:2e:75:52:
4f:a8:65:fd:d4:cb:95:82:44:3c:b7:d8:18:71:51:
e3:a2:57:76:9d:76:44:dd:62:8a:3e:9d:b3:cc:a6:
fa:9e:83:cb:14:7e:20:94:9f:de:0e:09:e1:5d:c2:
86:6a:23:64:31:c6:38:a7:1c:b7:c6:03:ea:c9:1a:
60:b9:50:80:35:be:98:29:57:52:14:47:82:d4:41:
60:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BD:FB:DE:7B:05:8E:FC:50:FE:DB:80:66:64:08:77:3F:93:A5:F9
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Sb373nsFjvxQ_tuAZmQIdz-Tpfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/24
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cc:97:dd:9e:9e:51:97:74:9c:a6:d0:96:25:92:5a:86:e9:
bf:6b:e9:f5:88:bd:3c:45:17:08:25:5e:e7:ab:a0:07:5d:6b:
d0:d5:38:51:79:4d:fd:b7:11:35:d9:9e:9f:41:b3:45:bc:c1:
02:ab:6f:14:64:4a:66:56:0e:ca:55:f5:36:f4:f4:0c:34:13:
c8:e5:79:70:bb:3a:9c:7d:fe:fb:90:4a:cf:d9:76:b9:7c:f9:
b0:8e:11:a5:2d:c5:0b:a1:3c:f8:cb:0a:a6:ca:f0:b3:39:12:
26:87:b2:19:ba:af:ed:3a:69:0d:9f:50:f7:2e:96:3d:5a:04:
ec:08:3e:44:6d:8b:8a:28:0a:e1:75:7b:86:fd:0c:6f:0a:83:
70:3c:b6:ed:04:83:e5:16:57:a7:bd:a7:34:7c:ab:33:f6:66:
24:99:92:9c:89:4d:9d:f5:b7:06:1b:ea:18:28:07:81:2e:5a:
6e:f0:0b:13:f4:b3:8b:f9:5c:1b:57:a5:7d:74:72:9c:c5:4b:
4c:ec:f4:10:17:8b:66:8d:d0:81:23:e7:a9:ac:78:d9:61:dd:
43:1e:d9:87:1a:db:9e:49:0c:b7:56:08:68:2e:ee:51:d2:31:
c7:0f:ac:b9:34:54:72:cd:14:0f:51:50:26:fe:96:b0:23:50:
51:65:d0:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org