Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/wQgparA7DpxAu_wQGIjOpihW4RA.roa
File: wQgparA7DpxAu_wQGIjOpihW4RA.roa (raw, json)
Hash identifier: B+Cj/o0s8ptFYKwSIdkyKma6/w+nwkTLNv0rXR3rxoU=
Subject key identifier: C1:08:29:6A:B0:3B:0E:9C:40:BB:FC:10:18:88:CE:A6:28:56:E1:10
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01872B760B382D59EEBE205B69B047AF69B8
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/wQgparA7DpxAu_wQGIjOpihW4RA.roa
Signing time: Wed 29 Mar 2023 03:42:49 +0000
ROA not before: Wed 29 Mar 2023 03:42:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 163.171.77.0/24 maxlen: 24
148.253.239.0/24 maxlen: 24
148.253.240.0/24 maxlen: 24
148.253.243.0/24 maxlen: 24
148.253.241.0/24 maxlen: 24
148.253.249.0/24 maxlen: 24
148.253.250.0/24 maxlen: 24
185.27.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 05:56:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2b:76:0b:38:2d:59:ee:be:20:5b:69:b0:47:af:69:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 29 03:42:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c108296ab03b0e9c40bbfc101888cea62856e110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0e:17:af:e8:c5:7b:b5:57:c7:5a:d4:a7:36:
aa:1e:17:e5:d9:2d:7c:2d:ef:ab:e5:25:8c:42:b2:
77:30:fc:3a:eb:86:6c:24:21:f3:40:48:10:dd:02:
eb:1b:90:2b:a7:8d:3c:cb:3c:f6:4e:17:cc:94:c6:
9e:26:5e:c8:a1:60:0b:f8:bd:94:cc:8e:0a:59:27:
d2:37:7a:0d:5b:c5:ac:1b:7a:4b:0f:ad:7f:59:37:
82:bb:43:c2:e3:2f:82:50:01:45:f3:3e:3d:42:b8:
8e:d9:6e:67:13:27:1e:b6:5b:3a:df:8d:18:0f:f3:
08:6c:21:02:d6:bc:2a:a1:13:27:5a:44:21:7b:f4:
23:3a:41:21:72:54:4f:c8:89:c9:16:ef:d9:d6:05:
02:3f:21:87:28:5c:f8:99:d4:bc:10:44:bd:4e:83:
57:d6:20:78:56:06:5d:29:7e:1f:4f:d1:cb:12:9a:
6f:a0:5d:98:ac:30:94:57:6c:81:ed:0d:e8:8a:22:
9f:6e:f4:9f:66:17:7c:9b:32:dd:c6:64:59:4f:bf:
0d:64:ac:14:91:db:73:dc:e2:fa:9c:67:f9:4f:ed:
fd:21:53:6b:c6:42:55:6b:24:b5:a4:23:69:91:35:
b8:09:0b:c7:e5:2b:44:7d:cd:f7:1c:ba:b5:fc:36:
28:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:08:29:6A:B0:3B:0E:9C:40:BB:FC:10:18:88:CE:A6:28:56:E1:10
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/wQgparA7DpxAu_wQGIjOpihW4RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.253.239.0-148.253.241.255
148.253.243.0/24
148.253.249.0-148.253.250.255
163.171.77.0/24
185.27.228.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:f2:41:3b:b1:2d:25:9d:f2:e4:84:29:39:84:da:1a:b9:46:
fc:64:92:41:87:f7:e7:68:d9:a9:3b:6f:25:5a:b0:73:e8:fc:
93:e6:b7:10:4b:d4:5f:1d:08:1d:85:8f:96:43:e9:aa:40:b8:
dd:ea:c7:97:6a:e7:7c:2f:a4:c6:b9:6f:79:f2:61:93:62:5e:
78:e4:d6:ea:ec:b3:b1:e2:14:e3:af:c1:f4:3a:bd:39:6a:00:
98:20:fc:f3:01:5d:42:5e:d9:7f:95:81:37:82:82:db:31:c2:
cb:dc:a3:70:3f:09:32:0b:90:32:25:fb:51:78:bb:ac:4f:09:
54:1b:77:12:b9:dd:7b:91:12:98:86:9a:c8:8f:31:91:a5:a8:
c4:92:e6:56:fe:8e:da:9d:ba:84:32:55:8a:06:e0:e2:1c:7f:
d1:de:56:a0:ec:cd:0a:f9:5d:59:38:98:4d:6a:51:7e:37:4d:
57:45:92:18:ee:e6:62:84:58:c7:e3:54:78:a2:a1:86:e3:4b:
2b:5a:54:7b:a5:74:9c:54:b2:e9:a7:22:4f:d8:cf:d0:0b:b3:
20:71:db:1d:ea:7e:0d:4e:93:16:58:e8:e6:ff:fd:1c:e0:51:
be:63:e3:2f:ab:d9:e6:c7:50:d0:55:80:b0:7b:60:49:12:b6:
65:a6:de:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org