Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D-XVfztGR0WaDE5ryaua2VMm_8I.roa
File: D-XVfztGR0WaDE5ryaua2VMm_8I.roa (raw, json)
Hash identifier: q7nzoiw68yFTD6DAV+mER6OjPnwvF/wQDan3JpUf1kc=
Subject key identifier: 0F:E5:D5:7F:3B:46:47:45:9A:0C:4E:6B:C9:AB:9A:D9:53:26:FF:C2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0197D4F6A3AF24F66A90A0E2B49D59ADD0ED
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D-XVfztGR0WaDE5ryaua2VMm_8I.roa
Signing time: Fri 04 Jul 2025 10:23:42 +0000
ROA not before: Fri 04 Jul 2025 10:23:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.28.0/22 maxlen: 24
31.56.32.0/24 maxlen: 24
31.56.44.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.77.0/24 maxlen: 24
31.56.90.0/23 maxlen: 23
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.112.0/24 maxlen: 24
31.56.114.0/23 maxlen: 24
31.56.117.0/24 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.180.0/22 maxlen: 24
31.56.180.0/23 maxlen: 23
31.56.188.0/22 maxlen: 24
31.56.190.0/23 maxlen: 23
31.56.198.0/23 maxlen: 24
31.56.200.0/22 maxlen: 24
31.56.208.0/22 maxlen: 24
31.56.212.0/22 maxlen: 24
31.56.220.0/23 maxlen: 23
31.56.224.0/23 maxlen: 23
31.56.228.0/22 maxlen: 24
31.56.230.0/23 maxlen: 23
31.56.233.0/24 maxlen: 24
31.56.236.0/22 maxlen: 24
31.56.236.0/23 maxlen: 23
31.57.12.0/23 maxlen: 24
31.57.36.0/23 maxlen: 24
31.57.38.0/23 maxlen: 23
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.60.0/24 maxlen: 24
31.57.94.0/23 maxlen: 23
31.57.104.0/21 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.120.0/23 maxlen: 23
31.57.124.0/22 maxlen: 24
31.57.126.0/23 maxlen: 23
31.57.132.0/23 maxlen: 23
31.57.136.0/21 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.168.0/22 maxlen: 24
31.57.176.0/21 maxlen: 21
31.57.184.0/22 maxlen: 24
31.57.186.0/23 maxlen: 23
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.217.0/24 maxlen: 24
31.57.224.0/22 maxlen: 22
31.57.225.0/24 maxlen: 24
31.57.231.0/24 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.250.0/24 maxlen: 24
31.57.251.0/24 maxlen: 24
31.57.252.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
31.58.68.0/22 maxlen: 24
31.58.84.0/22 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.172.0/22 maxlen: 24
31.58.220.0/22 maxlen: 22
31.58.224.0/22 maxlen: 24
31.58.226.0/24 maxlen: 24
31.59.70.0/24 maxlen: 24
31.59.76.0/22 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.128.0/24 maxlen: 24
31.59.136.0/21 maxlen: 24
31.59.136.0/24 maxlen: 24
31.59.144.0/21 maxlen: 24
31.59.160.0/21 maxlen: 24
31.59.212.0/22 maxlen: 24
31.59.212.0/24 maxlen: 24
31.59.213.0/24 maxlen: 24
31.59.224.0/22 maxlen: 22
31.59.232.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 04 Jul 2025 10:25:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:f6:a3:af:24:f6:6a:90:a0:e2:b4:9d:59:ad:d0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 4 10:23:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0fe5d57f3b4647459a0c4e6bc9ab9ad95326ffc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:71:c7:55:35:9a:4d:da:58:91:0e:97:0f:1c:
57:7c:4f:4f:e5:3b:aa:2c:79:43:77:a8:e7:04:52:
02:2d:e2:65:12:b2:4d:b1:2c:6e:ba:ee:0a:6e:ab:
29:39:02:e7:d9:fa:68:f3:a6:aa:fb:74:4b:da:d4:
43:1a:5f:73:da:db:93:da:96:73:a4:71:d0:b1:9f:
14:ea:6f:52:8f:ea:30:a6:7f:29:b5:2d:4a:49:d9:
89:0b:f8:4e:2a:4e:9f:9f:c7:a6:7d:42:6e:13:51:
8b:5c:eb:74:67:55:06:d0:0b:14:4e:49:df:8e:9b:
e4:c0:0b:89:7e:56:ea:87:94:08:0e:73:55:af:66:
11:6f:ab:4e:8f:81:72:37:64:33:d2:14:95:57:bf:
d9:fc:bc:75:1e:8f:aa:6b:d2:ba:be:a6:0b:bb:79:
e4:58:28:e4:6c:be:78:d1:55:cc:87:41:1b:33:66:
62:12:38:1a:83:bc:74:bb:8e:b3:d9:8e:48:70:f1:
00:ea:9c:e8:a5:30:63:1f:de:e4:cc:90:47:06:54:
af:a6:39:e9:8f:e4:ef:b7:6d:0c:66:65:a2:d1:19:
df:e8:16:6e:a8:44:d8:3e:67:68:b1:ca:a8:9b:c2:
5a:c7:0d:85:b9:a1:19:66:dd:02:81:9e:72:85:d3:
41:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E5:D5:7F:3B:46:47:45:9A:0C:4E:6B:C9:AB:9A:D9:53:26:FF:C2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D-XVfztGR0WaDE5ryaua2VMm_8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.28.0-31.56.32.255
31.56.44.0/24
31.56.57.0/24
31.56.77.0/24
31.56.90.0/23
31.56.104.0-31.56.112.255
31.56.114.0/23
31.56.117.0-31.56.123.255
31.56.180.0/22
31.56.188.0/22
31.56.198.0-31.56.203.255
31.56.208.0/21
31.56.220.0/23
31.56.224.0/23
31.56.228.0/22
31.56.233.0/24
31.56.236.0/22
31.57.12.0/23
31.57.36.0/22
31.57.52.0-31.57.63.255
31.57.94.0/23
31.57.104.0/21
31.57.120.0/21
31.57.132.0/23
31.57.136.0/21
31.57.146.0/23
31.57.168.0/22
31.57.176.0-31.57.187.255
31.57.192.0/22
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.231.0-31.57.235.255
31.57.250.0-31.57.255.255
31.58.34.0/23
31.58.50.0/23
31.58.64.0/23
31.58.68.0/22
31.58.84.0/22
31.58.152.0/22
31.58.172.0/22
31.58.220.0-31.58.227.255
31.59.70.0/24
31.59.76.0/22
31.59.96.0/22
31.59.112.0/22
31.59.128.0/24
31.59.136.0-31.59.151.255
31.59.160.0/21
31.59.212.0/22
31.59.224.0/22
31.59.232.0/22
Signature Algorithm: sha256WithRSAEncryption
59:68:77:de:e8:97:8a:e1:0c:16:3c:fa:0a:6b:5e:eb:7f:06:
e5:eb:7a:5e:d9:ee:a8:64:05:4f:b1:57:ac:1e:28:4f:ce:9f:
7f:8c:99:77:42:c7:8c:7f:95:f5:ed:22:c8:f9:a7:6f:45:c0:
99:90:8f:a2:f8:15:ea:2d:5b:a6:68:92:25:ba:87:1c:dc:a0:
9c:2f:c9:81:c8:0c:27:98:9e:47:c8:af:0e:2f:49:77:62:0c:
fe:3e:5d:21:b4:09:f2:b3:0b:43:de:34:08:12:52:aa:1d:2a:
bc:65:83:b4:60:38:fd:ee:22:ad:1b:7e:f7:0b:cb:03:e9:a3:
01:99:8e:00:eb:a7:8c:ab:f4:5d:3f:c4:dd:8d:73:c6:01:99:
82:62:67:b2:24:c1:65:05:fb:f9:57:8a:3c:61:a3:a4:5c:12:
50:b6:ee:97:f5:b9:e9:12:c8:ef:7b:a0:d6:43:29:e1:55:28:
6e:77:02:41:e8:03:c7:a3:34:84:62:f4:d3:68:19:c0:51:91:
b1:ad:24:bf:4c:41:ac:44:88:16:c1:07:2a:33:11:02:cd:6c:
fa:46:1c:10:db:11:2c:bb:4c:14:e9:1c:b1:87:5f:53:cf:bb:
50:0a:dd:b7:4a:40:35:d4:0c:5b:c5:ed:9c:ad:03:b7:f9:85:
07:0b:fb:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 16:24:16 2025 by rpki-client