Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/mZauGR10wTC4txi_1rLIXB9k9i8.roa
File: mZauGR10wTC4txi_1rLIXB9k9i8.roa (raw, json)
Hash identifier: 2r8k6X89AnOEcInvxKlejq8BpZzsmSXm0SnY5hCGQ2o=
Subject key identifier: 99:96:AE:19:1D:74:C1:30:B8:B7:18:BF:D6:B2:C8:5C:1F:64:F6:2F
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 018B7004F99D124470AE473F266A0D1938C9
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/mZauGR10wTC4txi_1rLIXB9k9i8.roa
Signing time: Fri 27 Oct 2023 07:24:15 +0000
ROA not before: Fri 27 Oct 2023 07:24:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
194.107.19.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.228.0/24 maxlen: 24
163.171.94.0/24 maxlen: 24
163.171.97.0/24 maxlen: 24
163.171.98.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
163.171.101.0/24 maxlen: 24
163.171.102.0/24 maxlen: 24
163.171.103.0/24 maxlen: 24
163.171.104.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.239.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
148.253.248.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.224.0/24 maxlen: 24
163.171.225.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.249.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
148.253.60.0/24 maxlen: 24
148.253.61.0/24 maxlen: 24
148.253.62.0/24 maxlen: 24
148.253.63.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 27 Oct 2023 08:59:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:04:f9:9d:12:44:70:ae:47:3f:26:6a:0d:19:38:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Oct 27 07:24:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9996ae191d74c130b8b718bfd6b2c85c1f64f62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:07:bf:a6:30:86:6d:27:e3:34:29:36:0c:0d:
40:07:9a:11:3d:38:58:d2:d3:1e:49:5b:94:74:a9:
09:39:2b:a5:ad:96:5d:cc:cc:22:8b:64:e4:eb:b7:
c0:7f:83:0e:be:e3:67:01:20:55:f2:bb:a2:8d:ad:
c9:c7:40:20:90:d6:e6:e1:3d:47:64:a1:24:a1:b5:
1f:d0:76:3b:84:23:15:b1:de:53:51:a1:cb:65:17:
ce:5f:93:06:d6:96:d1:d2:10:97:00:e5:a8:ec:09:
55:b4:cb:68:4c:78:b9:b9:83:23:a1:6c:08:eb:4f:
b1:c5:d0:da:cf:33:ba:16:ea:5a:8a:39:4b:e0:21:
e2:eb:b1:57:d1:5f:9e:39:2e:af:1c:6c:29:8e:53:
14:b4:92:e5:fb:b6:ea:f7:28:e3:3c:ac:ff:40:0d:
a2:99:fc:88:59:42:aa:1a:1e:10:31:97:30:d8:e8:
8f:fe:2e:1e:98:40:54:07:44:68:a9:36:b8:2d:62:
12:a7:66:1f:ef:94:25:a9:76:55:ea:90:d5:25:cd:
bb:8a:7d:21:9d:be:a9:f2:2e:35:46:76:f8:38:67:
13:b3:ad:68:23:e5:d5:b5:54:f0:79:f3:2e:6f:8b:
c2:04:74:27:b1:44:a5:5b:f1:13:5a:a9:ff:db:b7:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:96:AE:19:1D:74:C1:30:B8:B7:18:BF:D6:B2:C8:5C:1F:64:F6:2F
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/mZauGR10wTC4txi_1rLIXB9k9i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.60.0/22
148.253.228.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.239.0/24
148.253.246.0/24
148.253.248.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.94.0/24
163.171.97.0-163.171.98.255
163.171.101.0-163.171.104.255
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.224.0/23
163.171.231.0/24
163.171.249.0/24
163.171.252.0/24
194.107.19.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
16:0f:e5:7e:ef:19:a1:9a:c0:2e:69:b0:8a:69:1f:cc:b8:c9:
5a:41:72:6b:14:f5:d9:c2:e4:43:90:61:fb:95:fc:4d:f8:f8:
39:60:a7:88:55:08:0c:c6:1d:b9:e0:31:7a:95:af:c7:c9:cc:
01:df:ec:b1:12:a2:9e:5f:6b:71:10:a7:84:e2:2d:7f:89:8a:
96:2e:e8:c8:7c:93:c3:1d:bd:ab:d9:61:5a:73:8f:e6:82:71:
8d:43:22:ba:30:03:10:76:cb:60:48:04:ec:53:19:96:16:9d:
dc:c3:90:88:4d:39:3f:fb:b7:00:75:d8:54:98:15:d7:36:26:
5b:66:24:be:8b:0d:73:17:a9:e1:ab:a7:bf:45:9a:58:8b:82:
84:f4:84:43:00:d1:2a:9b:d1:51:9e:15:3a:fd:95:7c:5d:2c:
3b:d3:dc:f1:91:1b:8a:5e:16:e6:f1:23:e7:47:c0:97:4e:38:
f5:c5:34:2a:db:20:9e:e4:5b:26:d5:08:95:ca:13:2f:2a:28:
59:7f:22:f7:45:03:92:cf:94:21:23:9f:55:29:b6:50:2c:c2:
f7:19:43:77:0b:57:b1:3a:78:92:a1:15:bf:a0:45:c2:ce:fa:
20:1e:c3:3d:2a:b4:c5:4c:a4:e2:4f:6f:8b:9d:43:dd:1a:ec:
90:dd:21:c9
-----BEGIN CERTIFICATE-----
MIIFzTCCBLWgAwIBAgISAYtwBPmdEkRwrkc/JmoNGTjJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5
ZDcwNmEwHhcNMjMxMDI3MDcyNDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTk2YWUxOTFkNzRjMTMwYjhiNzE4YmZkNmIyYzg1YzFmNjRmNjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtge/pjCGbSfjNCk2DA1AB5oRPThY
0tMeSVuUdKkJOSulrZZdzMwii2Tk67fAf4MOvuNnASBV8ruija3Jx0AgkNbm4T1H
ZKEkobUf0HY7hCMVsd5TUaHLZRfOX5MG1pbR0hCXAOWo7AlVtMtoTHi5uYMjoWwI
60+xxdDazzO6FupaijlL4CHi67FX0V+eOS6vHGwpjlMUtJLl+7bq9yjjPKz/QA2i
mfyIWUKqGh4QMZcw2OiP/i4emEBUB0RoqTa4LWISp2Yf75QlqXZV6pDVJc27in0h
nb6p8i41Rnb4OGcTs61oI+XVtVTwefMub4vCBHQnsUSlW/ETWqn/27eUdQIDAQAB
o4IC2TCCAtUwHQYDVR0OBBYEFJmWrhkddMEwuLcYv9ayyFwfZPYvMB8GA1UdIwQY
MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt
YjVkODg4YWRmZDM3LzEvbVphdUdSMTB3VEM0dHhpXzFyTElYQjlrOWk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3
LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHuBggrBgEFBQcBBwEB/wSB3jCB2zCBxwQCAAEwgcADBABd
vIcDBACU/SIDBAKU/TwDBACU/eQwDAMEAJT95wMEApT96AMEAJT97QMEAJT97wME
AJT99gMEAJT9+AMEAKOrQAMEAKOrQwMEAaOrRgMEAaOrVAMEAKOrVwMEAKOrXjAM
AwQAo6thAwQAo6tiMAwDBACjq2UDBACjq2gDBACjq6YDBACjq7EDBACjq7YDBACj
q7wDBACjq88DBACjq94DBAGjq+ADBACjq+cDBACjq/kDBACjq/wDBADCaxMwDwQC
AAIwCQMHACoBU8D/xjANBgkqhkiG9w0BAQsFAAOCAQEAFg/lfu8ZoZrALmmwimkf
zLjJWkFyaxT12cLkQ5Bh+5X8Tfj4OWCniFUIDMYdueAxepWvx8nMAd/ssRKinl9r
cRCnhOItf4mKli7oyHyTwx29q9lhWnOP5oJxjUMiujADEHbLYEgE7FMZlhad3MOQ
iE05P/u3AHXYVJgV1zYmW2YkvosNcxep4aunv0WaWIuChPSEQwDRKpvRUZ4VOv2V
fF0sO9Pc8ZEbil4W5vEj50fAl0449cU0KtsgnuRbJtUIlcoTLyooWX8i90UDks+U
ISOfVSm2UCzC9xlDdwtXsTp4kqEVv6BFws76IB7DPSq0xUyk4k9vi51D3RrskN0h
yQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org