Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/pu7ooXFrkMMN_cMAY3bC7baFUjQ.roa
File: pu7ooXFrkMMN_cMAY3bC7baFUjQ.roa (raw, json)
Hash identifier: 1wpDx6q0N1DU3h1FTkmjwTUyfgjJH2uEM6uKIhCVPFQ=
Subject key identifier: A6:EE:E8:A1:71:6B:90:C3:0D:FD:C3:00:63:76:C2:ED:B6:85:52:34
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0187596239FAF4E6F258C3160FF324726F18
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/pu7ooXFrkMMN_cMAY3bC7baFUjQ.roa
Signing time: Fri 07 Apr 2023 01:43:42 +0000
ROA not before: Fri 07 Apr 2023 01:43:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.84.0/24 maxlen: 24
163.171.85.0/24 maxlen: 24
163.171.87.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
2a01:53c0:ffc6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Apr 2023 09:50:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:59:62:39:fa:f4:e6:f2:58:c3:16:0f:f3:24:72:6f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Apr 7 01:43:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6eee8a1716b90c30dfdc3006376c2edb6855234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3f:c2:16:a9:02:71:05:5e:5c:f7:fd:25:1f:
5e:6d:2c:92:0b:52:e6:2f:63:15:b4:80:4f:77:5a:
88:4c:ee:4c:c8:d1:b6:fe:13:94:63:6c:e5:65:30:
6d:7a:20:d5:e3:e1:4d:5c:f9:58:52:00:06:0d:76:
1d:de:83:05:8e:26:a2:71:79:de:18:64:d9:ee:24:
7b:ee:3e:cd:fd:20:54:e7:b0:79:35:b6:54:00:1c:
1d:37:39:8d:74:00:52:e2:c2:e5:85:e2:8e:97:52:
f8:9b:e1:3d:20:27:ae:b1:4f:a8:8c:37:f6:d5:42:
88:0b:4f:eb:1e:ee:2c:e0:c3:f5:ba:3c:06:24:c5:
76:97:0a:99:85:93:f2:85:06:3f:17:0b:41:75:31:
c9:6e:5d:1c:cb:87:02:02:ac:e8:c0:31:38:b7:d3:
8e:32:98:c1:06:03:e6:44:73:36:e0:87:6e:3a:52:
8b:48:25:70:ef:99:bd:03:1e:e6:3f:5a:31:1f:35:
f5:1f:12:2c:8b:e7:34:a2:18:20:1e:93:b1:53:72:
00:02:6b:fb:71:9e:a7:fb:96:20:23:21:ad:ab:92:
58:b1:94:1d:22:3f:5c:ac:49:24:f8:87:31:cd:f3:
d0:b3:94:f9:8f:ab:9d:98:7f:93:c4:c6:91:b6:27:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:EE:E8:A1:71:6B:90:C3:0D:FD:C3:00:63:76:C2:ED:B6:85:52:34
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/pu7ooXFrkMMN_cMAY3bC7baFUjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.84.0/23
163.171.87.0/24
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
IPv6:
2a01:53c0:ffc6::/48
Signature Algorithm: sha256WithRSAEncryption
a9:e3:ec:7a:b5:20:af:5c:2e:a2:fa:ae:22:1a:5c:c5:e5:fe:
25:41:83:4b:60:56:f5:5b:76:92:ce:b8:95:ca:f1:62:ee:6d:
52:13:55:46:ec:8e:ca:7d:d8:3f:b3:98:5e:90:47:34:c9:3a:
1e:2f:06:34:8a:fc:d1:8c:df:76:71:7e:c1:4a:49:ec:94:a0:
79:a7:8f:8e:80:d5:ff:d6:1f:96:ad:f9:ee:46:d0:0a:17:f3:
8c:0a:47:4a:21:ed:d8:d2:04:6c:1a:80:7e:10:b9:3c:8e:84:
e4:a6:02:67:35:23:0c:20:41:01:72:96:0f:2f:bc:b4:f4:b4:
05:fc:54:3f:33:ea:16:0b:98:72:e4:86:87:4a:4a:80:e8:69:
08:05:fa:39:84:47:d1:20:60:13:56:47:9f:51:ab:fe:cd:84:
de:aa:0f:25:09:4e:20:e1:19:fd:b6:2b:6a:30:77:3c:f6:3a:
ba:e9:89:71:ca:f2:98:3a:da:93:ed:32:40:64:1b:bc:1c:97:
f2:23:8e:66:b6:64:ad:62:cb:cb:f6:d7:19:7f:37:f7:5a:08:
e4:6b:41:d4:a7:d5:b1:7f:89:ae:86:b7:b2:01:cf:c3:d3:b3:
03:fd:3a:ad:e5:e2:72:a0:50:8c:24:47:20:a9:a4:c3:70:40:
a6:85:4e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org