Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/sABeoXbuI38mkYOqIOvOYpJsImE.roa
File: sABeoXbuI38mkYOqIOvOYpJsImE.roa (raw, json)
Hash identifier: Ood+BcIrIbr85o3ebpaS2W01iv380zik9yE19J6po2M=
Subject key identifier: B0:00:5E:A1:76:EE:23:7F:26:91:83:AA:20:EB:CE:62:92:6C:22:61
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 018DE21DECEA3DD966B8DE7F537080C697B4
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/sABeoXbuI38mkYOqIOvOYpJsImE.roa
Signing time: Sun 25 Feb 2024 21:13:48 +0000
ROA not before: Sun 25 Feb 2024 21:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47890
IP address blocks: 2.57.122.0/24 maxlen: 24
45.13.212.0/24 maxlen: 24
45.13.213.0/24 maxlen: 24
45.129.14.0/24 maxlen: 24
45.129.15.0/24 maxlen: 24
45.138.96.0/24 maxlen: 24
45.138.97.0/24 maxlen: 24
45.138.98.0/24 maxlen: 24
45.138.99.0/24 maxlen: 24
45.148.9.0/24 maxlen: 24
45.148.11.0/24 maxlen: 24
80.94.92.0/24 maxlen: 24
80.94.94.0/24 maxlen: 24
92.118.37.0/24 maxlen: 24
92.118.39.0/24 maxlen: 24
185.232.64.0/24 maxlen: 24
185.232.66.0/24 maxlen: 24
193.29.14.0/24 maxlen: 24
193.32.162.0/24 maxlen: 24
193.32.163.0/24 maxlen: 24
193.46.254.0/24 maxlen: 24
193.46.255.0/24 maxlen: 24
193.47.69.0/24 maxlen: 24
2a0c:9f00::/48 maxlen: 48
2a0c:9f00:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 22:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e2:1d:ec:ea:3d:d9:66:b8:de:7f:53:70:80:c6:97:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Feb 25 21:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0005ea176ee237f269183aa20ebce62926c2261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ad:8b:11:c9:8f:11:be:39:b3:9b:6a:d1:7d:
a1:a1:49:41:cd:fb:3a:f2:b6:f7:10:35:8b:27:e4:
5f:a3:bc:1a:e2:ad:bf:cd:60:58:e6:f8:e7:c5:af:
e5:b7:16:11:e1:89:51:2f:28:a5:1b:3e:32:0c:52:
a4:19:9a:7b:a0:be:12:db:5d:5a:b5:57:e2:ae:c9:
c4:b9:8f:ef:5c:44:c7:0f:0e:ca:35:54:36:f1:f2:
e5:b2:11:e8:8d:84:13:9f:b1:1e:aa:88:b3:5d:f6:
b5:2f:f9:08:97:17:28:e8:9d:dc:43:0f:88:60:f6:
36:22:49:48:95:61:ab:ee:c4:a9:b0:42:2c:0f:f2:
83:d8:7b:3f:70:ff:9e:1d:a0:d5:8c:ba:d9:e5:0c:
56:52:66:4a:7d:41:b2:f0:c7:e5:dc:7f:69:9e:9e:
ae:0e:6d:15:35:da:53:03:7e:fe:40:28:82:1a:5d:
03:4d:b8:99:4b:f3:b0:d6:5c:a4:6c:0f:d2:91:de:
8b:1c:d6:c9:3e:77:1b:91:3c:64:bc:0e:3b:b4:34:
27:f7:40:1d:0b:a4:c3:9b:84:07:c2:a9:46:29:db:
0f:5a:27:15:70:69:ba:83:f4:94:38:47:ce:56:ff:
f8:69:f9:17:b7:48:2c:db:dc:f1:ba:03:cf:18:47:
de:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:00:5E:A1:76:EE:23:7F:26:91:83:AA:20:EB:CE:62:92:6C:22:61
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/sABeoXbuI38mkYOqIOvOYpJsImE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.122.0/24
45.13.212.0/23
45.129.14.0/23
45.138.96.0/22
45.148.9.0/24
45.148.11.0/24
80.94.92.0/24
80.94.94.0/24
92.118.37.0/24
92.118.39.0/24
185.232.64.0/24
185.232.66.0/24
193.29.14.0/24
193.32.162.0/23
193.46.254.0/23
193.47.69.0/24
IPv6:
2a0c:9f00::/48
2a0c:9f00:2::/48
Signature Algorithm: sha256WithRSAEncryption
6a:e1:c5:05:ff:78:89:62:be:7c:2a:0a:e1:aa:fe:a4:d2:80:
42:a6:b4:df:28:5d:fd:42:70:71:56:d0:58:b3:f0:26:9a:c9:
2e:43:aa:ec:fd:ea:93:05:63:94:5e:48:15:28:4c:0b:5c:f2:
5c:fd:d0:91:42:b6:e6:8b:cf:18:16:9e:00:1c:df:38:4e:98:
c2:04:62:d1:44:d6:21:99:52:a4:bb:9a:c2:87:1c:a5:81:c3:
ce:74:0e:66:1d:d3:9c:97:ef:58:71:78:16:0c:30:e5:e8:3d:
f1:17:4f:f1:e7:04:ac:ed:e8:54:bc:fe:09:0c:1e:db:0e:e3:
76:19:2a:85:50:73:96:17:e7:26:c6:d5:dc:23:cd:09:3b:d7:
24:a6:92:35:9c:94:d0:8e:2b:ae:d3:23:a5:5d:b2:22:73:fd:
77:1f:45:6a:13:85:b1:d7:02:2e:6e:33:46:0e:9b:04:48:14:
7d:8d:57:02:5f:15:5c:df:4d:f5:86:a8:46:3f:d3:02:8d:16:
4d:bb:db:32:dd:8e:1d:c0:5c:4c:c9:c2:f0:26:a3:d9:34:84:
c6:77:d5:3a:84:c1:5b:3b:7b:04:76:b7:37:5f:ef:78:ba:7a:
36:d7:b3:ad:a4:9e:a8:b4:3d:b6:30:0a:f5:56:3c:7c:08:64:
79:96:ec:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:27 2025 by rpki-client