Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/xeWFPHyokbS-j6IigMwPXXvcqiE.roa
File: xeWFPHyokbS-j6IigMwPXXvcqiE.roa (raw, json)
Hash identifier: Tf0/NZpFZ1ulsxjCDRg+9cO4sbvzjHJN9iLl//7sBT0=
Subject key identifier: C5:E5:85:3C:7C:A8:91:B4:BE:8F:A2:22:80:CC:0F:5D:7B:DC:AA:21
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0186CEFBCA4D7957293DBF2BD071A44B95CA
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/xeWFPHyokbS-j6IigMwPXXvcqiE.roa
Signing time: Sat 11 Mar 2023 04:44:13 +0000
ROA not before: Sat 11 Mar 2023 04:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54994
IP address blocks: 163.171.64.0/24 maxlen: 24
163.171.67.0/24 maxlen: 24
163.171.70.0/24 maxlen: 24
163.171.71.0/24 maxlen: 24
163.171.207.0/24 maxlen: 24
163.171.222.0/24 maxlen: 24
163.171.231.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
163.171.166.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.177.0/24 maxlen: 24
163.171.182.0/24 maxlen: 24
163.171.188.0/24 maxlen: 24
148.253.231.0/24 maxlen: 24
148.253.232.0/24 maxlen: 24
148.253.233.0/24 maxlen: 24
148.253.237.0/24 maxlen: 24
148.253.234.0/24 maxlen: 24
148.253.235.0/24 maxlen: 24
148.253.246.0/24 maxlen: 24
148.253.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Mar 2023 02:40:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ce:fb:ca:4d:79:57:29:3d:bf:2b:d0:71:a4:4b:95:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 11 04:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5e5853c7ca891b4be8fa22280cc0f5d7bdcaa21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:55:fa:dc:ff:32:2a:f9:18:65:2a:a1:4d:8d:
b9:23:4f:42:89:ea:30:50:34:ab:9f:71:de:e7:7f:
fb:81:c0:0c:8f:ac:93:8a:06:aa:64:0d:f7:0c:6d:
11:28:f4:0a:a8:d9:bb:b0:ec:5f:c3:1c:b2:78:5c:
fe:78:bf:81:59:05:b3:3e:40:b7:63:a3:8d:13:ae:
6f:1b:2b:f0:c4:4a:27:25:bb:f6:2e:9f:89:fa:01:
98:71:f9:3b:92:c3:95:45:8f:2e:43:95:98:98:c5:
8e:88:33:84:79:cc:29:96:49:32:08:00:35:31:84:
e6:70:98:52:01:7a:40:ac:53:9f:94:5c:b4:d5:80:
df:84:be:19:9c:77:04:35:5a:cb:f9:81:a5:e2:35:
96:3c:6d:56:29:01:be:5b:fe:35:4e:7d:ad:e8:95:
43:9a:5f:9e:6e:b2:a3:ab:12:50:c2:7b:3b:1c:c6:
4e:13:c5:f8:c3:e3:84:b8:23:72:78:52:2e:16:1e:
7d:0b:a4:7d:7a:c5:84:07:50:c9:b0:36:4a:ec:f4:
1e:ae:c8:ad:f4:f6:cb:88:de:4e:fa:31:e8:16:11:
1b:70:b4:9a:c4:d7:9e:7e:0b:e9:57:85:7a:b7:e2:
bd:9a:d0:7b:db:b3:fa:f4:96:ec:bc:61:ea:63:56:
9d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E5:85:3C:7C:A8:91:B4:BE:8F:A2:22:80:CC:0F:5D:7B:DC:AA:21
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/xeWFPHyokbS-j6IigMwPXXvcqiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.135.0/24
148.253.34.0/24
148.253.231.0-148.253.235.255
148.253.237.0/24
148.253.246.0/24
163.171.64.0/24
163.171.67.0/24
163.171.70.0/23
163.171.166.0/24
163.171.177.0/24
163.171.182.0/24
163.171.188.0/24
163.171.207.0/24
163.171.222.0/24
163.171.231.0/24
163.171.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e4:b6:78:7d:3d:d9:35:49:62:52:b4:4e:45:5b:18:2a:b1:
ae:f7:70:46:7c:8a:67:50:68:b8:b3:1a:ad:82:69:9a:22:17:
fd:df:ae:b3:99:7f:f2:43:ce:93:0b:f6:eb:12:51:20:6d:37:
9c:e3:b4:5e:64:3b:85:ba:10:74:10:8a:3c:ef:32:68:a4:11:
18:9a:37:a8:89:9c:66:4c:d8:a1:b9:aa:40:59:ee:17:9e:a1:
06:a9:f8:a6:e8:db:3a:13:48:f3:e6:dd:67:71:b3:fc:c9:9b:
a4:f7:97:f5:fe:22:0a:49:9a:86:ad:a4:36:23:00:d0:57:31:
f2:1e:f1:0c:b5:8b:6f:c6:9c:90:27:e4:8a:9f:93:5d:82:15:
2a:c4:e0:59:18:f1:83:b5:4d:80:3e:31:5b:1b:3e:c8:c3:a7:
a6:e4:56:b5:f7:74:18:5b:c8:51:56:ec:9d:19:92:cf:55:c4:
cf:45:2b:8b:f2:4d:3d:fa:c9:a6:93:1e:8c:23:69:25:d7:84:
25:f9:98:ce:9c:d7:e2:e1:7c:f0:9d:60:b4:23:ca:52:a8:08:
7f:76:10:cb:f2:d2:75:6f:87:8d:e3:ef:00:0d:ac:e0:17:c8:
b9:9f:c8:6d:99:d4:2c:86:1d:b8:25:8d:b3:9f:bb:b5:9b:62:
f0:5e:f1:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org