Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/sBSblmg3ZRG8daXKJ0iUnJfXFVg.roa
File: sBSblmg3ZRG8daXKJ0iUnJfXFVg.roa (raw, json)
Hash identifier: 92+H32nXPWLnBN6iEIJ/3CN6jTfRpQq+ajQC4NZkAEc=
Subject key identifier: B0:14:9B:96:68:37:65:11:BC:75:A5:CA:27:48:94:9C:97:D7:15:58
Certificate issuer: /CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174
Certificate serial: 01856D0A8E0C659D1EC3CB7289F60EBAE695
Authority key identifier: 1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/sBSblmg3ZRG8daXKJ0iUnJfXFVg.roa
Signing time: Sun 01 Jan 2023 11:14:46 +0000
ROA not before: Sun 01 Jan 2023 11:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42013
IP address blocks: 2.58.132.0/24 maxlen: 24
2.58.132.0/23 maxlen: 23
2.58.132.0/22 maxlen: 22
185.99.44.0/24 maxlen: 24
185.99.44.0/22 maxlen: 22
185.99.44.0/23 maxlen: 23
185.99.47.0/24 maxlen: 24
185.99.46.0/24 maxlen: 24
185.99.45.0/24 maxlen: 24
185.99.46.0/23 maxlen: 23
2.58.133.0/24 maxlen: 24
2.58.135.0/24 maxlen: 24
2.58.134.0/23 maxlen: 23
2.58.134.0/24 maxlen: 24
185.61.22.0/23 maxlen: 23
185.61.23.0/24 maxlen: 24
185.61.22.0/24 maxlen: 24
185.61.20.0/22 maxlen: 22
185.61.21.0/24 maxlen: 24
185.61.20.0/23 maxlen: 23
185.61.20.0/24 maxlen: 24
185.209.111.0/24 maxlen: 24
185.209.110.0/24 maxlen: 24
185.209.110.0/23 maxlen: 23
185.209.109.0/24 maxlen: 24
185.209.108.0/24 maxlen: 24
185.209.108.0/22 maxlen: 22
185.209.108.0/23 maxlen: 23
2a0b:4d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 22 Feb 2023 01:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:8e:0c:65:9d:1e:c3:cb:72:89:f6:0e:ba:e6:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174
Validity
Not Before: Jan 1 11:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0149b9668376511bc75a5ca2748949c97d71558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:20:3b:ae:ed:0a:b5:35:16:cf:03:b1:a0:d3:
14:7d:2a:94:3b:de:96:a8:a0:7a:77:e1:7b:4b:25:
31:70:79:93:07:9a:f9:cf:8b:d4:f7:fa:d7:21:65:
32:05:fe:eb:09:65:5c:1e:6a:36:43:75:d9:d0:13:
bb:59:4b:db:90:be:c8:96:81:1f:34:2f:c6:78:ac:
c8:95:57:e6:1f:eb:5f:90:46:9d:d4:fb:a3:15:9e:
84:de:4f:4e:bd:c4:ee:19:6f:f5:d6:58:8c:39:65:
88:87:b2:a1:d4:44:3f:78:bd:96:81:d7:80:14:45:
8a:8b:b2:d3:7f:40:5d:2c:89:2c:06:31:af:41:a4:
38:5a:1e:82:86:01:f0:b6:08:71:d7:b8:04:ad:f0:
f8:7f:25:7d:76:6a:82:9c:59:71:03:11:f5:b9:f7:
d5:d1:26:2e:75:d1:95:3f:a1:07:f3:12:17:9b:d2:
10:57:61:43:79:4b:14:31:b0:3c:87:5d:64:76:2e:
73:ce:13:d8:8c:f0:4b:f9:4e:98:29:33:ff:7d:de:
76:6c:39:58:23:32:da:1a:0f:bd:2d:64:71:ee:ce:
ea:9c:f4:c9:e8:21:e1:d3:29:22:47:59:12:e6:44:
39:b6:b0:50:32:be:e0:3c:b8:4d:cf:37:d7:fe:93:
8b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:14:9B:96:68:37:65:11:BC:75:A5:CA:27:48:94:9C:97:D7:15:58
X509v3 Authority Key Identifier:
keyid:1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/sBSblmg3ZRG8daXKJ0iUnJfXFVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/HvPLCY1ShQIMO-dU-MT_d3qooXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.132.0/22
185.61.20.0/22
185.99.44.0/22
185.209.108.0/22
IPv6:
2a0b:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
76:26:b3:c3:8f:90:28:26:6c:9a:e2:35:31:07:7a:48:61:9b:
7c:89:84:f1:39:f7:b9:d4:ed:1e:9e:b1:8c:8a:80:5d:3b:ae:
8c:c2:4d:77:a6:a7:8f:d1:80:44:1c:27:44:a2:70:84:0b:dd:
81:84:cb:2d:51:a3:31:cf:67:76:32:f4:73:c2:c0:ed:1e:7f:
2e:46:e3:29:a4:10:a9:61:6a:99:87:ce:8a:e7:82:37:1a:6e:
5e:da:74:15:9b:68:9d:27:5f:69:b4:fc:1c:90:64:38:88:86:
86:9f:73:82:9f:0a:30:85:f7:00:07:66:4a:d7:26:44:7b:c2:
28:4c:f0:92:91:47:f0:2b:a2:a9:20:9f:ee:5f:aa:31:19:83:
d4:8b:85:8d:01:17:a7:7c:5e:a0:6b:0a:f3:05:31:9e:18:30:
75:3f:16:25:a6:8a:5e:f9:46:2f:0f:18:10:d5:a4:46:75:66:
26:92:dc:ff:05:ea:ac:f6:85:fc:0f:bc:8a:4d:b9:b4:dc:fc:
6e:69:31:bf:fe:fd:fb:b4:78:5b:80:ff:ad:5f:c9:da:4f:c2:
10:1a:94:8e:c1:f4:ff:39:31:df:75:ea:8b:63:33:9e:1c:0f:
29:89:e7:f8:3c:41:f0:ed:39:a3:60:6a:b7:52:a0:00:7c:ea:
0b:31:d4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:38 2024 by rpki-client on console-ams.rpki-client.org