Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/lgmO0Aop8_WCgR66af5SL-6oTIY.roa
File: lgmO0Aop8_WCgR66af5SL-6oTIY.roa (raw, json)
Hash identifier: lGp/QPwH3LSc5YTt/eZTWtSojIj/15hlMN1pxsCkAeA=
Subject key identifier: 96:09:8E:D0:0A:29:F3:F5:82:81:1E:BA:69:FE:52:2F:EE:A8:4C:86
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 0185B9F5F2FC610D78BF4BAED84EF9E14E05
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/lgmO0Aop8_WCgR66af5SL-6oTIY.roa
Signing time: Mon 16 Jan 2023 09:43:01 +0000
ROA not before: Mon 16 Jan 2023 09:43:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200088
IP address blocks: 37.220.83.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:f5:f2:fc:61:0d:78:bf:4b:ae:d8:4e:f9:e1:4e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 16 09:43:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96098ed00a29f3f582811eba69fe522feea84c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f5:12:04:46:a4:58:47:f3:33:cd:48:53:1a:
54:80:82:8d:4c:9b:67:f3:c9:e3:1a:e3:a4:9c:13:
8b:f2:c8:5a:8e:c9:8b:ea:5e:5f:72:a0:40:71:63:
bc:1c:5c:ea:8b:1f:6c:48:09:79:1a:47:ac:c4:95:
e4:0c:ac:3c:9f:32:bb:7f:17:69:90:84:52:86:cd:
1f:5a:39:cd:03:43:8f:d3:d4:d6:ef:3d:6a:5d:43:
49:66:a6:0c:6e:23:df:22:ef:c2:75:53:b1:ff:8f:
69:0d:a7:51:16:c2:b1:82:9f:87:a7:55:50:17:8e:
68:c7:26:0c:e0:6b:10:77:59:f9:e9:c4:3c:8d:23:
be:a3:93:d3:f3:bc:eb:08:80:13:19:af:31:07:ce:
e4:b1:ed:1b:da:b4:b4:79:74:5a:36:92:6a:a6:2f:
46:fd:7b:36:64:a6:ad:25:4b:bc:18:ec:d7:0f:30:
6a:86:b1:7c:f0:53:3a:ed:3a:a0:8f:0b:d5:2a:33:
90:63:6f:f1:98:5b:53:55:d2:b8:4f:ea:d8:af:fd:
da:01:cd:16:5e:8d:a1:c8:a3:c9:58:77:a0:8e:5f:
1f:c9:90:ac:fb:7a:74:d2:5c:a2:38:87:fd:79:e6:
20:58:52:cb:48:6f:9e:cf:93:20:4e:24:e0:05:17:
c0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:09:8E:D0:0A:29:F3:F5:82:81:1E:BA:69:FE:52:2F:EE:A8:4C:86
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/lgmO0Aop8_WCgR66af5SL-6oTIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.82.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:4d:82:42:32:0b:63:57:ee:df:ee:1b:d8:30:a4:f9:8d:7d:
12:c1:fe:af:6e:b2:24:1b:e1:6d:31:0e:24:cb:31:69:61:13:
84:65:2c:8f:65:7c:65:f1:42:4d:b0:34:12:80:b8:52:a7:46:
5a:70:e7:90:b3:72:42:ef:1c:15:9c:65:47:9d:11:93:ea:77:
85:eb:48:96:2b:89:6e:d3:96:a6:82:b0:9f:5f:45:3b:40:42:
be:ae:86:58:b2:72:5a:3d:36:4e:e9:57:c1:33:04:74:6e:75:
c1:6a:35:e5:53:2f:fd:ea:3a:30:17:d6:e3:e2:8e:ba:17:17:
a8:b8:5e:48:12:16:f0:ed:d9:a7:6d:87:95:c5:55:8b:59:87:
9c:c5:22:af:34:1a:71:69:6c:d6:d3:2f:35:dd:57:ab:ba:2b:
fc:e1:ac:25:a6:ab:18:7b:08:59:e4:59:91:c3:c1:3f:a6:72:
cf:b6:67:95:80:d3:26:64:9a:bb:e7:c5:a8:9a:4e:30:1f:b4:
88:34:1b:dd:2b:72:c9:6d:c7:ae:3c:13:1a:13:05:f5:ff:e7:
b1:34:39:88:c3:9a:96:72:7f:cc:17:78:c7:c3:85:20:cc:23:
04:c0:5b:e5:03:b6:5b:fd:68:a5:85:28:a6:fc:9f:bf:99:b6:
cc:97:f2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:47 2023 by rpki-client on console-ams.rpki-client.org