Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/eXkjO_JcJ2rEgVw13SrsW6UrMNk.roa
File: eXkjO_JcJ2rEgVw13SrsW6UrMNk.roa (raw, json)
Hash identifier: R5BMiwU0qFc5EogYRTQzQ9OzU7xAUU9EwEFcxovyFjY=
Subject key identifier: 79:79:23:3B:F2:5C:27:6A:C4:81:5C:35:DD:2A:EC:5B:A5:2B:30:D9
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 018A984B0EC5CF71E00B674472C41263EA58
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/eXkjO_JcJ2rEgVw13SrsW6UrMNk.roa
Signing time: Fri 15 Sep 2023 10:02:50 +0000
ROA not before: Fri 15 Sep 2023 10:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
194.107.19.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.228.0/24 maxlen: 24
163.171.94.0/24 maxlen: 24
163.171.97.0/24 maxlen: 24
163.171.98.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
163.171.101.0/24 maxlen: 24
163.171.102.0/24 maxlen: 24
163.171.103.0/24 maxlen: 24
163.171.104.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
148.253.248.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.224.0/24 maxlen: 24
163.171.225.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.249.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 18 Oct 2023 03:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:4b:0e:c5:cf:71:e0:0b:67:44:72:c4:12:63:ea:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Sep 15 10:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7979233bf25c276ac4815c35dd2aec5ba52b30d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:bf:25:5e:b3:2c:49:a2:76:79:6c:bb:bf:
ca:4a:47:0b:64:38:1d:b9:d6:04:85:c8:72:ae:46:
bd:b8:76:a6:46:e0:a3:51:d0:9f:e2:3e:4e:de:15:
f0:9e:0d:c0:1d:f6:44:66:d9:ea:67:b8:8b:b8:b1:
a2:6f:68:36:a1:1f:da:e5:be:78:e8:69:87:fc:99:
0e:5b:a3:2b:fa:d0:20:53:20:e9:1c:0a:83:38:5a:
87:54:08:e5:1f:bb:37:c9:7f:de:d7:86:eb:60:0b:
25:bc:82:78:d1:7f:33:34:5c:f4:1e:8e:55:b5:65:
17:9e:1d:55:83:a0:70:c1:f4:b7:57:1c:00:31:f6:
e6:02:23:2c:ba:ca:67:fa:02:a1:11:7f:94:af:58:
9e:d0:dd:10:45:ee:9d:17:61:23:69:44:2d:f4:cf:
6b:6b:b3:32:36:a0:7e:2c:71:94:68:2d:66:77:71:
e4:16:20:19:14:34:a0:c7:4b:4f:5d:bd:e8:fc:71:
ee:ee:62:5c:9f:b6:bb:55:e4:e6:bf:85:c6:ef:8a:
16:b7:53:01:ba:d8:46:5b:0d:ad:2f:43:1a:80:59:
46:d8:9f:82:1d:f4:6a:6d:c9:fa:f5:17:c0:e6:23:
80:0b:56:e2:42:77:2b:3a:86:80:c3:3a:25:1e:98:
e3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:79:23:3B:F2:5C:27:6A:C4:81:5C:35:DD:2A:EC:5B:A5:2B:30:D9
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/eXkjO_JcJ2rEgVw13SrsW6UrMNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.228.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
148.253.248.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.94.0/24
163.171.97.0-163.171.98.255
163.171.101.0-163.171.104.255
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.224.0/23
163.171.231.0/24
163.171.249.0/24
163.171.252.0/24
194.107.19.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
44:39:7d:72:86:0b:63:3b:c6:9d:85:2d:ff:f9:e7:d9:2a:12:
69:96:53:5b:ac:b0:4f:07:3b:5d:ed:47:54:dd:73:fa:52:1a:
0b:ca:a6:97:ec:b9:6d:dd:99:5a:59:e3:c3:54:8d:df:86:82:
cf:60:92:07:f9:7c:ba:8f:5e:1a:f0:44:b2:53:60:2d:ce:0d:
27:c9:5a:d3:02:74:38:e2:a4:b7:7d:31:84:4b:0c:00:79:cf:
8b:4d:2b:bd:3b:ba:e8:1c:5a:2d:1c:1e:91:6c:53:dd:e6:59:
c5:85:d4:34:c4:f9:a6:d4:ee:f1:f6:2f:b6:db:30:aa:44:52:
24:63:bc:5a:16:be:c6:37:6b:46:97:a9:83:6f:44:29:96:01:
80:e6:f5:23:a7:3f:63:dc:f1:77:57:1f:b9:ca:f7:a8:02:28:
5f:ba:1b:65:d1:be:44:9e:14:93:91:85:78:06:d7:de:7b:52:
fe:5c:6b:27:94:d7:c5:bc:1d:4c:14:d7:c6:8b:76:fd:c0:b4:
d7:4f:cf:c2:d5:91:0e:14:cb:ec:91:04:c3:53:83:7d:a9:f8:
76:42:27:64:9f:27:c7:97:a1:b6:e8:8f:51:6a:2c:a6:ec:78:
2d:fc:85:22:24:25:4c:bd:8c:15:4b:4a:41:73:e5:05:a6:92:
83:f1:49:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org