Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YYHc9FTJ_yu_5piF0SKpISKLXp4.roa
File: YYHc9FTJ_yu_5piF0SKpISKLXp4.roa (raw, json)
Hash identifier: 3rzXfshF7lszv+5sPSFEK2AQgw6pr1JHdRxBxFQ2pqQ=
Subject key identifier: 61:81:DC:F4:54:C9:FF:2B:BF:E6:98:85:D1:22:A9:21:22:8B:5E:9E
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01879243ADB0A43AA3445F008AEC1E78DDAC
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YYHc9FTJ_yu_5piF0SKpISKLXp4.roa
Signing time: Tue 18 Apr 2023 02:48:41 +0000
ROA not before: Tue 18 Apr 2023 02:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.228.0/24 maxlen: 24
163.171.94.0/24 maxlen: 24
163.171.97.0/24 maxlen: 24
163.171.98.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
163.171.101.0/24 maxlen: 24
163.171.102.0/24 maxlen: 24
163.171.103.0/24 maxlen: 24
163.171.104.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Jun 2023 08:45:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:92:43:ad:b0:a4:3a:a3:44:5f:00:8a:ec:1e:78:dd:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Apr 18 02:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6181dcf454c9ff2bbfe69885d122a921228b5e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:18:08:64:70:50:06:11:c4:d5:51:88:c5:
4c:7c:26:4f:59:3c:35:2a:c7:17:f7:17:98:9f:15:
96:f4:61:0f:6c:77:ed:6b:41:95:e6:36:08:93:e7:
1c:7c:0f:b6:f6:d9:48:ed:46:69:29:16:01:03:b0:
87:cd:84:61:45:0c:fe:6c:8f:3b:fc:63:71:1a:5d:
c0:d9:dc:e1:ee:20:5e:46:7b:52:20:af:23:88:8d:
72:fd:d8:7a:bc:13:66:1e:20:b7:a5:b7:04:48:02:
4d:2c:fc:65:08:c4:ff:85:c8:3e:d2:0d:6c:a6:79:
4d:ee:dc:e0:5e:50:a1:de:e5:2c:e7:4c:48:02:80:
06:68:85:8f:0d:34:90:bf:df:89:27:59:4a:7a:fe:
e0:b7:81:c9:39:52:b3:4f:7c:51:b5:52:58:fd:38:
d7:f3:0f:8d:af:80:00:db:cf:75:56:53:4a:4e:73:
55:da:5b:a4:38:a3:11:b8:d8:e2:e0:f9:3d:c7:b2:
4b:c8:64:a7:cb:83:61:4a:b2:7c:29:a7:c3:5c:bd:
bc:82:f5:2c:9a:24:1c:0e:37:74:80:fc:5b:ac:29:
68:e9:57:9d:61:40:62:b2:60:03:56:99:08:82:87:
85:4c:9f:8a:96:05:b8:7a:4a:bb:43:43:b7:e6:fb:
75:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:81:DC:F4:54:C9:FF:2B:BF:E6:98:85:D1:22:A9:21:22:8B:5E:9E
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YYHc9FTJ_yu_5piF0SKpISKLXp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.228.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.94.0/24
163.171.97.0-163.171.98.255
163.171.101.0-163.171.104.255
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
ab:17:94:d5:c5:46:29:4a:1b:cb:0c:62:88:b1:07:86:e8:68:
74:22:86:7d:63:05:c0:17:9f:2a:06:ab:05:91:08:d4:f4:9a:
8f:80:49:e7:a4:6e:fd:6d:cb:6e:bd:a8:10:15:43:21:01:0b:
3a:e1:f6:66:c1:aa:57:d5:b2:e6:3c:79:0f:f8:6f:97:0d:f1:
71:03:40:d9:d5:4d:76:75:1e:49:bc:71:d6:86:d7:5d:0d:6b:
36:65:18:dc:ab:0e:0d:c9:32:a5:9a:7c:fc:10:a8:e8:e7:72:
55:36:e2:ab:06:90:a5:de:58:b0:cb:27:25:55:be:35:e7:67:
51:e3:b0:36:24:29:4e:48:d9:83:21:c9:e6:f9:84:6b:3b:96:
69:70:47:06:28:af:e4:3f:98:3c:1a:b0:7c:75:f5:99:bb:48:
f9:7a:20:28:7d:94:ed:bc:13:4f:40:3d:b4:2c:54:a2:73:17:
53:7f:2e:5b:06:81:c7:c5:fe:9f:d6:6a:1a:9f:4c:56:fc:e9:
20:0d:b9:d3:84:bf:52:f0:9a:23:d7:21:d4:67:0a:82:61:03:
2a:b0:6d:16:ae:d5:78:fc:29:f1:d5:ff:a1:2b:5c:a0:dc:10:
d9:65:17:ed:e1:55:63:7a:06:7e:36:7d:f1:1c:fd:5c:61:19:
00:6b:14:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org