Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b011d3-bdba-45cd-a8ac-e0be89c4f169/1/LmWBlX4HsT4g6Uw5bcXqLGVLWmM.roa
File: LmWBlX4HsT4g6Uw5bcXqLGVLWmM.roa (raw, json)
Hash identifier: yJmHksJYTrqlVof+cYL8lqVx53KNsNIjQqbVhPANk7M=
Subject key identifier: 2E:65:81:95:7E:07:B1:3E:20:E9:4C:39:6D:C5:EA:2C:65:4B:5A:63
Certificate issuer: /CN=b6a1654dae96c532578ce1df1ebb8221dbb68145
Certificate serial: 018571F0D98A866DC5050A5B944379A1C3FC
Authority key identifier: B6:A1:65:4D:AE:96:C5:32:57:8C:E1:DF:1E:BB:82:21:DB:B6:81:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqFlTa6WxTJXjOHfHruCIdu2gUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b011d3-bdba-45cd-a8ac-e0be89c4f169/1/LmWBlX4HsT4g6Uw5bcXqLGVLWmM.roa
Signing time: Mon 02 Jan 2023 10:04:47 +0000
ROA not before: Mon 02 Jan 2023 10:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198538
IP address blocks: 37.139.152.0/21 maxlen: 21
2a00:96c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:d9:8a:86:6d:c5:05:0a:5b:94:43:79:a1:c3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6a1654dae96c532578ce1df1ebb8221dbb68145
Validity
Not Before: Jan 2 10:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e6581957e07b13e20e94c396dc5ea2c654b5a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c2:b3:69:36:92:8b:06:6d:5e:e6:af:2c:b5:
4a:2f:c6:27:a9:9c:42:fc:1e:67:13:5c:c6:14:af:
9f:ba:d9:88:1e:ef:d8:19:36:57:ef:cb:94:ff:8f:
c8:08:83:54:8b:67:e4:00:d1:13:a9:7a:2a:d3:53:
cf:01:ca:bf:d9:6a:f3:8d:92:1f:cb:71:75:bc:14:
1b:91:6b:bf:9e:1d:83:e9:6c:ee:32:1c:3a:73:bf:
3e:52:06:89:4a:8d:eb:fc:3d:c1:14:22:9e:b6:a2:
92:2e:a9:a3:b1:81:2a:5f:a9:53:a4:32:94:f7:29:
98:62:85:40:ff:4f:16:e6:df:ea:ed:35:ef:04:0f:
ab:fd:c4:56:36:23:b8:99:6e:aa:72:7c:70:ed:3a:
b3:30:cd:5d:47:14:47:2e:38:f5:36:c4:00:94:16:
69:a4:59:30:03:7f:72:c0:00:ed:80:25:b3:86:3e:
b2:ea:f9:7e:24:44:1a:38:38:93:c1:f7:5d:fd:8a:
25:70:69:c1:c8:b6:59:26:79:e9:14:d4:13:7d:00:
c9:7d:15:4e:87:c1:8a:44:54:dc:15:82:1a:a1:12:
89:cd:7a:d7:8b:6c:e9:c3:91:8b:bb:c0:2e:cd:55:
90:d2:93:67:ad:a2:72:58:04:35:31:2f:a1:79:58:
37:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:65:81:95:7E:07:B1:3E:20:E9:4C:39:6D:C5:EA:2C:65:4B:5A:63
X509v3 Authority Key Identifier:
keyid:B6:A1:65:4D:AE:96:C5:32:57:8C:E1:DF:1E:BB:82:21:DB:B6:81:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqFlTa6WxTJXjOHfHruCIdu2gUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b011d3-bdba-45cd-a8ac-e0be89c4f169/1/LmWBlX4HsT4g6Uw5bcXqLGVLWmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b011d3-bdba-45cd-a8ac-e0be89c4f169/1/tqFlTa6WxTJXjOHfHruCIdu2gUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.152.0/21
IPv6:
2a00:96c0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:19:4c:f4:fc:87:34:a0:25:00:75:be:e1:93:68:a0:a8:74:
09:08:b5:db:fa:85:a9:e1:05:dc:31:90:08:ef:f4:72:db:b3:
d0:69:d0:dc:a4:dd:f1:b6:45:c5:0d:e1:2a:b1:a4:ce:60:53:
99:13:f3:80:6e:18:24:e5:62:05:a5:4d:b4:48:95:62:f4:00:
b1:2a:14:ca:79:eb:f0:75:4d:c2:45:2a:67:2d:c0:07:22:f9:
1e:59:ed:74:76:a5:e8:24:df:96:78:7b:c1:da:e5:04:a4:5c:
73:9b:a2:93:39:1c:67:10:55:71:07:61:6c:d9:c7:35:d6:8d:
6b:5e:b9:9f:02:eb:7d:fd:7b:7f:1b:1d:c6:56:6c:06:96:1b:
55:e8:41:41:f4:da:f9:0c:27:62:54:db:4f:ff:a2:68:d6:b7:
23:3c:15:8a:d0:0b:bc:df:0f:f0:8f:3d:b0:b5:fd:12:0f:25:
64:98:17:81:d9:e3:1b:0a:c0:dc:5e:c3:c1:b2:16:00:7b:b6:
dc:05:f9:97:91:57:9b:b9:95:a6:b3:2d:01:dc:b7:e9:dd:f8:
3b:2a:58:17:da:1b:24:72:56:60:4b:c7:b8:80:9b:c4:3f:7a:
7e:b1:8a:12:0c:bb:8f:95:06:71:31:4b:b7:cc:cc:7a:6c:36:
eb:76:b5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:36 2024 by rpki-client on console.sobornost.net