Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LtWJLTUHOYoads-ft_Zvpqsuv8A.roa
File: LtWJLTUHOYoads-ft_Zvpqsuv8A.roa (raw, json)
Hash identifier: ENdt3RVKMatUi4jKFS/nkTBjWW7uFHh+e5oiz97Mp+4=
Subject key identifier: 2E:D5:89:2D:35:07:39:8A:1A:76:CF:9F:B7:F6:6F:A6:AB:2E:BF:C0
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0187A33E99DA3B0F1183909966F645C606AA
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LtWJLTUHOYoads-ft_Zvpqsuv8A.roa
Signing time: Fri 21 Apr 2023 09:56:41 +0000
ROA not before: Fri 21 Apr 2023 09:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 64.137.122.0/23 maxlen: 23
64.137.120.0/24 maxlen: 24
64.137.109.0/24 maxlen: 24
64.137.110.0/23 maxlen: 23
64.137.113.0/24 maxlen: 24
64.137.115.0/24 maxlen: 24
64.137.117.0/24 maxlen: 24
64.137.16.0/24 maxlen: 24
64.137.23.0/24 maxlen: 24
104.249.39.0/24 maxlen: 24
64.137.54.0/24 maxlen: 24
104.222.190.0/24 maxlen: 24
64.137.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:3e:99:da:3b:0f:11:83:90:99:66:f6:45:c6:06:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 21 09:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ed5892d3507398a1a76cf9fb7f66fa6ab2ebfc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:19:2e:55:56:5f:46:1b:63:bb:0f:27:86:cb:
2d:93:98:29:34:c4:ca:a3:1d:0e:d0:7d:37:c7:b6:
87:d6:f7:90:74:38:5f:40:04:dd:72:81:68:33:11:
dc:23:b5:fb:6d:cb:c5:76:e9:c7:24:36:2a:6a:f7:
8c:4d:9f:b7:6d:d6:c9:26:1a:d5:84:95:9a:a9:0f:
57:20:8f:d5:c3:23:f3:e7:58:c9:28:76:e9:64:b6:
1d:2d:25:46:a7:dc:29:bf:a6:78:a4:f5:e0:8f:3a:
1b:1a:12:37:aa:a0:76:74:b6:cb:18:b8:55:d7:00:
e1:f5:0a:a5:1e:13:95:0f:c0:e3:5c:0d:18:b6:0c:
14:bb:6e:6c:d5:8e:d8:8c:84:12:cc:30:68:a4:ff:
0f:7d:f1:81:04:96:89:99:76:da:a0:8e:14:e8:32:
0f:f0:bf:9d:fc:d8:c4:d0:78:07:20:92:ee:32:f5:
ed:65:cc:9f:af:6e:24:ef:47:c5:84:cc:f2:28:31:
c6:fa:57:c8:5f:97:d8:bf:9c:d2:99:6c:d4:9b:9c:
cd:30:7e:c1:61:95:cf:47:cb:4e:ab:76:99:20:a8:
99:9e:20:25:fd:fc:87:c3:09:81:40:5a:80:81:48:
89:9d:8d:77:0b:23:d9:dd:f6:ec:cf:f4:ef:ff:6e:
91:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D5:89:2D:35:07:39:8A:1A:76:CF:9F:B7:F6:6F:A6:AB:2E:BF:C0
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LtWJLTUHOYoads-ft_Zvpqsuv8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.9.0/24
64.137.16.0/24
64.137.23.0/24
64.137.54.0/24
64.137.109.0-64.137.111.255
64.137.113.0/24
64.137.115.0/24
64.137.117.0/24
64.137.120.0/24
64.137.122.0/23
104.222.190.0/24
104.249.39.0/24
Signature Algorithm: sha256WithRSAEncryption
03:df:83:88:bd:48:16:36:9e:76:7d:7b:09:b1:32:c5:89:21:
80:f6:7e:23:b1:53:cd:a0:f8:db:31:39:ec:72:4b:fb:9d:b8:
3f:95:a4:7f:75:3d:c5:7f:a9:d1:5f:b8:0a:f1:6a:98:95:99:
38:a7:fa:c1:a8:45:92:00:78:54:19:47:c1:a8:84:2f:49:b4:
3a:01:a9:6f:a6:d6:48:f5:85:bb:26:83:61:eb:96:43:49:be:
35:a3:7e:21:cd:43:93:57:e0:51:d6:23:8a:33:ad:0e:39:eb:
cb:0b:72:c0:31:39:c6:bf:2f:98:f8:4c:ea:0f:f5:55:f6:82:
e6:79:7d:00:fe:6d:c7:7f:70:be:92:d6:8b:3c:17:4e:a2:6b:
cf:4f:1c:ab:6a:46:db:88:22:a7:1b:08:f0:35:e7:2c:16:10:
87:b0:f4:b9:61:27:85:fd:90:c6:be:ed:5a:35:35:c1:3c:aa:
85:8d:8a:6f:21:9b:ea:53:a3:0f:28:67:e0:fe:2f:3d:45:59:
4c:8f:b6:df:4f:d7:ea:a7:a3:b4:39:fa:f2:81:57:1b:b1:86:
cf:0b:44:0c:3b:66:ba:b1:2b:85:4d:00:3d:e2:2a:07:4f:5d:
b1:7c:0c:29:bd:32:e8:11:17:62:f6:6e:9b:5b:e7:4e:1e:e9:
a2:3d:6f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org