Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/mB-bg-05MLSQF1EgiaNKXqJ0cNQ.roa
File: mB-bg-05MLSQF1EgiaNKXqJ0cNQ.roa (raw, json)
Hash identifier: 0y1s1DoqrC0sSVo8fqtlDUuRXZL20b6BrorM+vmPaJk=
Subject key identifier: 98:1F:9B:83:ED:39:30:B4:90:17:51:20:89:A3:4A:5E:A2:74:70:D4
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 01930B301A60514F382C701597B5F9113592
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/mB-bg-05MLSQF1EgiaNKXqJ0cNQ.roa
Signing time: Fri 08 Nov 2024 09:52:02 +0000
ROA not before: Fri 08 Nov 2024 09:52:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6762
IP address blocks: 2.16.19.0/24 maxlen: 24
2.16.70.0/23 maxlen: 23
2.16.146.0/23 maxlen: 23
2.16.220.0/22 maxlen: 22
2.18.0.0/22 maxlen: 22
2.18.31.0/24 maxlen: 24
2.19.16.0/20 maxlen: 20
2.20.4.0/22 maxlen: 22
2.20.47.0/24 maxlen: 24
2.20.252.0/24 maxlen: 24
2.21.2.0/24 maxlen: 24
2.21.14.0/24 maxlen: 24
2.21.100.0/22 maxlen: 22
2.22.216.0/22 maxlen: 22
2.22.234.0/24 maxlen: 24
88.221.28.0/22 maxlen: 22
88.221.100.0/22 maxlen: 22
92.122.68.0/22 maxlen: 22
92.122.225.0/24 maxlen: 24
92.122.248.0/22 maxlen: 22
92.123.48.0/24 maxlen: 24
92.123.106.0/24 maxlen: 24
92.123.208.0/22 maxlen: 22
95.100.136.0/22 maxlen: 22
95.101.35.0/24 maxlen: 24
95.101.68.0/22 maxlen: 22
95.101.114.0/24 maxlen: 24
95.101.156.0/22 maxlen: 22
2a02:26f0:b00::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 11 Dec 2024 14:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0b:30:1a:60:51:4f:38:2c:70:15:97:b5:f9:11:35:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Nov 8 09:52:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=981f9b83ed3930b49017512089a34a5ea27470d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:26:6b:04:d0:dc:2f:5e:dd:ab:23:94:88:d3:
74:dc:5a:5e:5d:3a:cb:49:a0:83:3c:03:39:48:05:
24:7a:9e:5e:26:ea:21:62:9d:a5:c6:42:5c:87:28:
ea:5c:9e:0d:33:ae:1e:80:55:3f:fb:76:19:8f:fc:
72:a5:8f:f8:41:a1:21:1f:b4:34:6b:49:21:8c:9a:
2c:f4:7d:4d:d5:f4:31:67:22:27:a9:28:77:5e:f5:
27:ed:ba:3c:e2:5c:c5:41:0f:2c:b3:4b:42:7a:a8:
11:6a:07:10:a8:57:d9:a5:52:84:38:c2:52:c8:8b:
eb:5f:de:44:45:27:85:10:87:48:df:01:33:b4:44:
eb:6b:c5:b1:d8:03:dc:1f:46:7c:5a:14:c5:29:35:
a8:f5:3e:45:b2:c1:08:64:10:08:72:17:1c:a8:1e:
15:5c:f1:19:cf:16:43:ee:20:cf:40:f9:d4:80:ea:
4e:40:3f:c1:87:e0:be:54:81:68:28:32:12:40:81:
cf:0a:24:0b:21:ed:74:ee:a7:4e:9e:be:6d:3d:97:
30:6b:04:60:bf:b6:ea:a4:1a:9b:fa:df:a0:48:48:
ea:46:ed:2b:b9:da:48:31:f5:e3:a4:ca:63:01:17:
6e:f4:57:87:b2:42:0c:8d:45:b7:31:e8:d0:06:5c:
83:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1F:9B:83:ED:39:30:B4:90:17:51:20:89:A3:4A:5E:A2:74:70:D4
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/mB-bg-05MLSQF1EgiaNKXqJ0cNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.16.19.0/24
2.16.70.0/23
2.16.146.0/23
2.16.220.0/22
2.18.0.0/22
2.18.31.0/24
2.19.16.0/20
2.20.4.0/22
2.20.47.0/24
2.20.252.0/24
2.21.2.0/24
2.21.14.0/24
2.21.100.0/22
2.22.216.0/22
2.22.234.0/24
88.221.28.0/22
88.221.100.0/22
92.122.68.0/22
92.122.225.0/24
92.122.248.0/22
92.123.48.0/24
92.123.106.0/24
92.123.208.0/22
95.100.136.0/22
95.101.35.0/24
95.101.68.0/22
95.101.114.0/24
95.101.156.0/22
IPv6:
2a02:26f0:b00::/48
Signature Algorithm: sha256WithRSAEncryption
53:77:39:a2:86:ab:db:ff:2b:27:e1:a3:05:fb:4d:cc:49:f3:
63:ca:f4:9f:e7:a5:e7:20:a3:b1:b4:37:ac:4e:a8:4b:3c:da:
ff:ab:d5:9c:98:8e:88:8e:05:90:14:6f:48:85:c2:1e:9a:0f:
90:d9:2f:8b:4f:53:2d:51:c8:80:2f:db:bd:18:aa:df:4e:1a:
94:11:2a:73:67:2d:78:69:3a:38:fc:79:cf:30:6e:17:33:91:
ab:6e:8f:47:d2:e7:ec:33:1a:12:6b:28:63:ee:c8:7d:d9:d4:
78:bb:af:a3:d7:3d:e5:ef:a7:6f:57:57:bf:d5:12:39:31:68:
db:26:e9:ef:3f:48:fc:9a:7b:64:51:1c:0a:a6:d4:cd:07:bd:
6b:23:07:b4:54:ed:03:17:48:3e:b3:54:fc:11:74:44:e1:b4:
c4:2a:47:a8:30:c8:00:61:1b:1d:77:60:9a:74:71:55:64:4a:
76:69:74:d0:b1:05:d0:b4:a4:07:c4:71:d4:33:75:89:ed:f1:
25:84:70:0f:eb:34:04:94:53:a7:26:7a:f9:4a:23:35:7b:24:
87:43:a9:99:85:85:db:40:74:e2:db:8e:95:97:43:aa:bf:a7:
a7:9e:16:fd:10:11:8d:77:cc:fc:0b:62:26:4b:9f:9a:fc:a2:
35:49:97:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:19:17 2025 by rpki-client