Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/bS2eDtr0xAlXnwIZq8wi8vSXZc4.roa
File: bS2eDtr0xAlXnwIZq8wi8vSXZc4.roa (raw, json)
Hash identifier: DYhKLlhLySF4a04+qnr1HrDK9DwI+dFjH7eNPnO2gks=
Subject key identifier: 6D:2D:9E:0E:DA:F4:C4:09:57:9F:02:19:AB:CC:22:F2:F4:97:65:CE
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0185769347B143B2E89BF4FCCF703B14DBE4
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/bS2eDtr0xAlXnwIZq8wi8vSXZc4.roa
Signing time: Tue 03 Jan 2023 07:40:41 +0000
ROA not before: Tue 03 Jan 2023 07:40:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 07:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:76:93:47:b1:43:b2:e8:9b:f4:fc:cf:70:3b:14:db:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 3 07:40:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d2d9e0edaf4c409579f0219abcc22f2f49765ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:36:d8:24:e9:ef:53:1e:5d:ec:9f:61:81:97:
93:12:ba:e2:19:bc:06:80:b2:79:69:1f:a1:ef:34:
8f:aa:ed:91:2a:9f:34:3b:7d:45:87:0d:f8:66:1a:
2d:3e:21:58:ba:08:6a:27:a3:39:2c:df:0e:25:8b:
aa:32:07:e0:81:00:d3:06:34:d4:a3:11:5d:1a:ac:
11:f9:84:a3:23:ad:a1:ce:28:a7:19:24:64:77:7b:
2e:9f:6a:73:6d:a3:e2:c1:d7:30:dc:93:1f:67:4b:
2c:c3:65:25:08:82:83:f4:2e:3a:8e:8f:f9:85:21:
b3:37:b2:be:07:76:4b:2d:38:57:09:45:9d:c3:30:
ac:4d:92:cb:67:dc:0c:84:2a:bb:02:6c:89:0e:93:
4d:a6:cc:8d:2a:95:c1:39:06:fc:da:9f:fb:50:95:
2d:66:4a:8f:df:68:6b:02:a9:f7:19:d9:b6:b6:7f:
81:6a:9d:34:25:3d:3c:93:40:b4:73:4f:a7:20:89:
93:4f:09:44:2c:cd:da:c1:0a:46:ed:7f:0c:6e:02:
92:02:6d:d2:f8:16:b0:be:30:27:7a:d2:bc:9f:3a:
6b:46:fe:70:59:8a:d0:8d:16:2e:26:42:c5:e4:82:
f2:21:9b:65:38:89:d9:36:49:da:b4:8c:34:6e:24:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2D:9E:0E:DA:F4:C4:09:57:9F:02:19:AB:CC:22:F2:F4:97:65:CE
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/bS2eDtr0xAlXnwIZq8wi8vSXZc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:5b:55:99:db:b2:5c:7c:7a:48:f9:bd:73:01:43:88:fc:35:
51:ee:72:42:69:c1:b3:63:b5:73:93:e2:e6:39:09:a7:ea:05:
53:da:ee:51:ee:51:e7:86:3d:9b:23:e2:59:61:fb:5d:20:89:
b6:4f:33:cc:5b:bd:8b:8d:5c:4a:13:eb:93:d6:38:2d:00:35:
b1:00:3f:0c:31:f5:bc:79:eb:86:fc:23:b1:fb:ac:b1:4a:0c:
22:24:01:3e:a7:0d:83:29:b3:80:60:71:59:f0:f5:fa:3d:fb:
21:54:58:0f:36:bb:44:8c:00:ac:7d:2c:88:93:90:a9:37:bf:
d9:6a:89:93:00:08:24:cd:38:ef:26:5a:ca:c7:1e:ac:6c:61:
4e:0d:ef:ac:42:41:3d:ae:c4:16:91:f9:b9:f5:79:e0:47:ca:
ce:4c:02:ac:53:16:e2:be:bd:aa:de:94:66:59:df:a5:24:15:
da:24:27:59:49:aa:a3:a9:c8:29:0b:43:35:49:14:00:0f:03:
8d:3f:28:d2:71:05:5d:70:92:a9:ab:05:8b:38:d9:a1:6d:83:
46:06:34:fd:ca:2d:b2:1a:47:5a:d4:ff:5d:49:48:8a:0d:61:
b2:a0:5e:6f:ca:9d:b9:1c:1f:9f:af:67:55:0b:4b:73:11:a0:
a4:1b:45:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org