Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/LMIUhocovV3PismfKBtRsrwiuOI.roa
File: LMIUhocovV3PismfKBtRsrwiuOI.roa (raw, json)
Hash identifier: Kt5sV179PEU6jcCu+oNDWcacU6F++RES4cEn3qBcvsU=
Subject key identifier: 2C:C2:14:86:87:28:BD:5D:CF:8A:C9:9F:28:1B:51:B2:BC:22:B8:E2
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 018AB4B10FE317F0492BE052CC896686CEBD
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/LMIUhocovV3PismfKBtRsrwiuOI.roa
Signing time: Wed 20 Sep 2023 22:23:37 +0000
ROA not before: Wed 20 Sep 2023 22:23:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 151.186.192.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.176.0/20 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Sep 2023 22:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b4:b1:0f:e3:17:f0:49:2b:e0:52:cc:89:66:86:ce:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Sep 20 22:23:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cc214868728bd5dcf8ac99f281b51b2bc22b8e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:17:4f:76:cd:c5:ec:a0:e9:f8:06:fe:ab:57:
ca:f7:de:49:2d:79:9b:d0:41:7b:e9:00:35:80:f7:
7f:41:ee:da:11:06:15:77:ed:ca:5a:7e:fd:50:ef:
64:e3:84:30:74:8f:e0:0a:a3:f1:b1:a4:64:38:33:
37:2a:ce:a1:45:d2:00:b6:50:28:47:9e:0e:21:f9:
11:01:6f:ea:d4:3c:78:73:15:66:74:4c:f5:73:27:
f7:9b:33:06:9a:dc:a6:8b:69:3c:d7:95:bd:4b:db:
30:8d:1e:8c:dd:0d:ce:cf:4e:6d:86:1b:f8:98:e7:
63:53:82:5b:35:f1:88:c7:b0:e7:16:63:b5:e8:1b:
44:06:eb:c3:5a:31:fa:fa:01:c2:0d:69:98:23:18:
26:28:6a:5c:69:b3:ae:f5:1e:9c:bd:1e:f9:4d:0f:
af:87:4c:b3:ca:ea:21:53:a0:31:ba:16:e6:0a:fb:
d8:ba:fe:d7:10:36:b0:ba:87:dd:50:a7:db:b9:3e:
ed:fd:bd:8a:54:51:47:cc:a9:cc:6d:24:5e:ff:2b:
fb:f5:a8:59:ec:b2:86:a7:36:0e:46:e4:d0:6f:46:
60:39:1e:23:06:2a:0a:72:48:9e:96:ca:e8:7f:a6:
12:85:be:67:46:14:77:1f:65:32:d4:f5:b9:40:a7:
f3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C2:14:86:87:28:BD:5D:CF:8A:C9:9F:28:1B:51:B2:BC:22:B8:E2
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/LMIUhocovV3PismfKBtRsrwiuOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.172.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
8a:5e:4b:4a:9a:50:53:04:ec:31:8c:3d:57:7e:5e:d1:d5:9e:
f3:90:6c:95:03:d0:a6:6a:77:e5:38:b1:b7:da:14:ff:17:4e:
47:06:d9:42:ce:28:b1:8e:f5:32:5d:6b:ae:e4:12:d3:99:99:
46:5a:72:4d:99:37:1c:dd:8d:57:d0:66:45:4c:26:6d:bf:c5:
c6:0d:28:dd:2d:7e:b1:c8:6f:e8:44:74:cd:a3:7c:93:43:29:
a9:4f:d4:5e:6f:db:25:dc:7e:ef:7c:5e:4a:04:29:8c:4b:97:
06:63:87:a4:3c:3f:f7:be:45:2d:d7:97:6f:dd:05:f3:8c:8b:
62:c4:ef:04:01:7a:cd:33:92:2a:0d:4d:b0:5c:ea:d3:50:fe:
01:02:9b:e4:db:ed:8e:f5:93:61:e4:ca:cd:ee:53:f8:ab:cd:
19:fd:6b:97:ff:8a:6e:b5:79:97:04:22:f3:f1:34:f7:98:fc:
cd:3e:8e:2e:e5:6c:f7:fe:82:17:3e:b4:d8:98:b2:14:9e:c5:
22:32:e8:0e:6e:1d:f7:02:c9:64:f5:1a:90:9a:30:be:bf:e4:
2c:94:8f:cb:0f:e1:42:6b:cb:c6:7a:f2:be:c7:17:99:e4:c2:
5f:a7:f7:77:8e:88:15:f2:81:b2:c9:d1:65:40:53:c3:4c:db:
6f:29:70:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org