Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/lUeEmV06ZHWi9F35iUdkB64CqyI.roa
File: lUeEmV06ZHWi9F35iUdkB64CqyI.roa (raw, json)
Hash identifier: wFCYCwJO69drJw2YXTff9sOKC9IQrszKxT6g/WUG4Ic=
Subject key identifier: 95:47:84:99:5D:3A:64:75:A2:F4:5D:F9:89:47:64:07:AE:02:AB:22
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01856E5428B656E41BD7AC59B7E70670ABE0
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/lUeEmV06ZHWi9F35iUdkB64CqyI.roa
Signing time: Sun 01 Jan 2023 17:14:47 +0000
ROA not before: Sun 01 Jan 2023 17:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4787
IP address blocks: 163.171.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 05:24:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:28:b6:56:e4:1b:d7:ac:59:b7:e7:06:70:ab:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 1 17:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=954784995d3a6475a2f45df989476407ae02ab22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:62:e0:8c:10:45:4f:db:b7:78:c0:3d:87:29:
69:57:36:b0:ed:87:af:c1:c1:1b:05:bd:82:90:78:
43:a0:24:6a:62:59:05:33:a1:e4:65:f3:06:ff:f4:
32:a1:bf:bd:77:ba:3d:1f:c0:41:96:25:cf:d3:98:
07:8b:8b:41:57:c2:79:7f:76:9a:31:73:8c:62:1d:
bb:aa:79:4c:c4:72:5f:1e:be:59:9a:e1:cb:55:c0:
a3:05:e6:bc:11:2e:bb:9f:cb:83:21:85:61:68:da:
01:a5:2b:e8:88:e0:00:1f:3e:04:76:ac:38:3c:21:
b3:7c:1b:11:37:d0:c9:b4:84:f3:58:95:3b:66:34:
c5:36:c3:0e:15:4c:16:1a:25:16:9d:c3:04:a1:16:
a4:eb:c6:ae:20:8f:37:9e:e2:0b:d0:53:17:b2:09:
74:69:38:90:ef:20:03:b9:9c:c0:ff:7c:01:5d:56:
14:b2:c9:1b:2a:f3:a6:67:77:e6:db:5b:f9:91:e1:
58:25:27:bb:c7:ba:39:e8:e4:20:dc:f2:05:f6:92:
4b:5f:83:3b:ac:fc:01:ec:31:b3:8d:e8:4d:51:cb:
fb:fb:5d:03:97:4c:0b:72:2b:00:c8:5e:58:00:6e:
85:47:ad:e1:92:df:7a:6c:eb:4d:f4:6e:0c:76:bc:
0a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:47:84:99:5D:3A:64:75:A2:F4:5D:F9:89:47:64:07:AE:02:AB:22
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/lUeEmV06ZHWi9F35iUdkB64CqyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.67.0/24
Signature Algorithm: sha256WithRSAEncryption
76:2a:2d:a3:f6:42:ad:02:9e:0f:90:2a:12:38:dc:1c:41:2b:
db:4e:87:e5:e6:e5:6e:34:65:eb:e5:53:62:54:48:e0:ca:55:
db:56:72:ad:b7:cc:5f:13:41:51:d7:30:6c:19:a9:fb:71:71:
38:34:49:1c:fc:06:ea:30:62:53:fe:ef:40:79:12:4e:c3:34:
2b:ac:04:dc:f4:8b:2b:4e:d6:1c:c4:e6:fb:36:1e:22:e5:e2:
f4:ca:ef:5d:e8:bd:66:a3:85:1e:2b:6d:3f:06:c0:d6:71:e1:
02:22:06:72:54:d9:61:37:23:8f:18:2b:17:e5:b0:c1:42:48:
d8:ac:6b:95:a8:89:30:b9:61:52:1c:f4:06:fd:68:2f:ef:b8:
58:dc:ad:28:77:fd:f3:90:39:47:92:0b:69:41:c6:aa:07:dc:
c8:0a:a7:ba:80:9c:f9:b3:58:84:4e:ac:56:2c:a2:ce:82:e6:
e0:b9:c2:90:dd:28:d2:f6:3a:ec:ac:06:8b:e1:dc:a1:f1:58:
ba:41:0b:7f:a5:ae:f4:0a:20:df:77:24:5f:f4:97:2c:d5:15:
37:c9:fd:1a:06:98:e6:63:bc:af:7a:23:5e:37:48:5b:55:c0:
20:d2:8a:1d:04:3a:d5:c3:d3:d7:5a:f5:93:f9:89:98:00:8c:
3a:d8:cf:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuVCi2VuQb16xZt+cGcKvgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5
ZDcwNmEwHhcNMjMwMTAxMTcxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTQ3ODQ5OTVkM2E2NDc1YTJmNDVkZjk4OTQ3NjQwN2FlMDJhYjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomLgjBBFT9u3eMA9hylpVzaw7Yev
wcEbBb2CkHhDoCRqYlkFM6HkZfMG//Qyob+9d7o9H8BBliXP05gHi4tBV8J5f3aa
MXOMYh27qnlMxHJfHr5ZmuHLVcCjBea8ES67n8uDIYVhaNoBpSvoiOAAHz4Edqw4
PCGzfBsRN9DJtITzWJU7ZjTFNsMOFUwWGiUWncMEoRak68auII83nuIL0FMXsgl0
aTiQ7yADuZzA/3wBXVYUsskbKvOmZ3fm21v5keFYJSe7x7o56OQg3PIF9pJLX4M7
rPwB7DGzjehNUcv7+10Dl0wLcisAyF5YAG6FR63hkt96bOtN9G4MdrwKkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVHhJldOmR1ovRd+YlHZAeuAqsiMB8GA1UdIwQY
MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt
YjVkODg4YWRmZDM3LzEvbFVlRW1WMDZaSFdpOUYzNWlVZGtCNjRDcXlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3
LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAo6tDMA0G
CSqGSIb3DQEBCwUAA4IBAQB2Ki2j9kKtAp4PkCoSONwcQSvbTofl5uVuNGXr5VNi
VEjgylXbVnKtt8xfE0FR1zBsGan7cXE4NEkc/AbqMGJT/u9AeRJOwzQrrATc9Isr
TtYcxOb7Nh4i5eL0yu9d6L1mo4UeK20/BsDWceECIgZyVNlhNyOPGCsX5bDBQkjY
rGuVqIkwuWFSHPQG/Wgv77hY3K0od/3zkDlHkgtpQcaqB9zICqe6gJz5s1iETqxW
LKLOgubgucKQ3SjS9jrsrAaL4dyh8Vi6QQt/pa70CiDfdyRf9Jcs1RU3yf0aBpjm
Y7yveiNeN0hbVcAg0oodBDrVw9PXWvWT+YmYAIw62M9l
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org