Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DzLO0qXooah5ILnm4isqZSWP3wo.roa
File: DzLO0qXooah5ILnm4isqZSWP3wo.roa (raw, json)
Hash identifier: IT+PGdjVbVxR54d3bfHVOcX7H6kQqmcezbHjwNp3La0=
Subject key identifier: 0F:32:CE:D2:A5:E8:A1:A8:79:20:B9:E6:E2:2B:2A:65:25:8F:DF:0A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0197BAA2C4B5B6B3572E11A88EBF4B03133E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DzLO0qXooah5ILnm4isqZSWP3wo.roa
Signing time: Sun 29 Jun 2025 07:41:58 +0000
ROA not before: Sun 29 Jun 2025 07:41:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.49.0/24 maxlen: 24
31.56.156.0/24 maxlen: 24
31.56.198.0/23 maxlen: 23
31.56.210.0/24 maxlen: 24
31.56.212.0/24 maxlen: 24
31.56.223.0/24 maxlen: 24
31.56.232.0/22 maxlen: 24
31.56.234.0/24 maxlen: 24
31.56.235.0/24 maxlen: 24
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
31.59.171.0/24 maxlen: 24
31.59.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Jul 2025 06:10:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:a2:c4:b5:b6:b3:57:2e:11:a8:8e:bf:4b:03:13:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 29 07:41:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f32ced2a5e8a1a87920b9e6e22b2a65258fdf0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:95:a1:59:b0:cf:04:65:24:34:06:5b:9e:e7:
19:a6:23:f6:31:f3:1f:72:11:8f:e5:69:d2:cd:56:
f2:e7:41:a6:89:02:4f:55:06:dd:26:85:6a:ea:5e:
82:9c:92:40:4a:f4:a0:95:af:cb:be:39:4b:25:a7:
37:1b:3f:e8:58:25:30:e6:0b:8a:dd:74:35:64:b1:
92:e7:2f:4a:41:6d:7a:4a:fa:9a:d1:3e:af:3e:2c:
0c:4c:ac:13:17:ae:5c:e4:de:e7:d4:9c:d3:40:6d:
a3:48:4b:05:57:68:f9:b7:73:b8:61:de:d7:7f:24:
6d:65:da:b0:88:0a:b2:f5:b2:f3:11:f7:a0:d3:05:
d3:dd:c0:10:c7:35:ff:d0:b4:9e:32:92:9c:b6:42:
62:67:71:b5:90:9e:a0:86:e0:d5:43:60:b1:29:02:
b0:a4:da:8e:c9:07:c9:a3:ed:8c:e4:ce:a5:38:ba:
70:f0:fb:6f:b0:92:6c:d3:42:7c:52:c4:e1:d0:a6:
29:1f:af:e3:9f:d9:05:35:22:bb:73:a6:06:5b:e0:
79:02:c4:56:3d:c2:de:33:cd:28:3c:c8:f9:07:21:
0f:3a:30:dd:75:73:a4:07:4c:8e:01:8e:f9:3d:86:
38:85:ef:e4:fc:00:99:a5:ba:02:a2:06:dd:c2:98:
cf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:32:CE:D2:A5:E8:A1:A8:79:20:B9:E6:E2:2B:2A:65:25:8F:DF:0A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DzLO0qXooah5ILnm4isqZSWP3wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.49.0/24
31.56.156.0/24
31.56.198.0/23
31.56.210.0/24
31.56.212.0/24
31.56.223.0/24
31.56.232.0/22
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.224.0/24
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
31.59.171.0/24
31.59.236.0/22
Signature Algorithm: sha256WithRSAEncryption
58:1f:8b:b4:a9:ae:ca:66:c2:55:06:fa:de:1d:6c:96:75:2c:
59:63:9d:01:1e:15:0d:4a:d2:62:09:27:33:60:2b:00:bd:d0:
3e:53:10:f4:f5:c9:b5:f8:fa:2e:ec:f0:67:36:3b:79:ed:80:
33:42:a9:61:3b:6e:e1:2a:65:6a:f6:9c:bd:74:04:05:2d:78:
dc:c2:41:71:15:ab:43:54:7b:c1:44:19:ad:51:cf:14:65:72:
c0:68:cb:c3:6c:4f:8f:90:30:f8:16:c7:0c:7c:3e:94:1b:51:
cd:31:a8:ff:fe:13:3a:89:f8:79:47:bf:3e:09:95:48:1f:76:
5b:83:78:97:f3:3b:81:ed:6a:8e:81:db:7d:f3:24:62:fa:bd:
41:da:0a:54:44:a9:de:d8:2a:0f:a8:ec:5d:19:03:aa:95:63:
e1:53:35:87:d1:72:14:5d:65:23:ea:bc:6e:7a:29:59:12:3b:
d8:01:d6:8e:ec:1d:c0:fb:30:8e:ca:8e:cc:fa:b7:ff:21:75:
50:f7:e3:9c:27:83:17:a5:df:d5:9e:23:60:fc:c2:46:94:37:
3b:a6:fd:70:e6:0c:5d:0a:da:f8:db:0d:1a:d6:c2:96:63:af:
63:27:0f:d5:c2:92:f9:2a:a8:5d:cb:0c:3f:01:1b:bb:dd:04:
47:56:00:ce
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jul 29 07:31:52 2025 by rpki-client