Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FnqaDOQWgyOPI3fUtJUa4XA12m0.roa
File: FnqaDOQWgyOPI3fUtJUa4XA12m0.roa (raw, json)
Hash identifier: 1bb6JqXvDcW6Md2VLXoIy/OKSymj3/86qZM9md+zVoQ=
Subject key identifier: 16:7A:9A:0C:E4:16:83:23:8F:23:77:D4:B4:95:1A:E1:70:35:DA:6D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019777FE380728BE09BDF0AE4595C5D312E3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FnqaDOQWgyOPI3fUtJUa4XA12m0.roa
Signing time: Mon 16 Jun 2025 09:07:18 +0000
ROA not before: Mon 16 Jun 2025 09:07:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.57.122.0/24 maxlen: 24
31.57.124.0/24 maxlen: 24
31.57.125.0/24 maxlen: 24
31.57.140.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.196.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jun 2025 18:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:fe:38:07:28:be:09:bd:f0:ae:45:95:c5:d3:12:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 16 09:07:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=167a9a0ce41683238f2377d4b4951ae17035da6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2c:7e:39:aa:78:fa:d1:a4:f8:af:6b:03:a2:
c5:29:f6:05:da:c4:a0:de:01:20:48:9c:60:9b:d0:
15:57:c6:a2:0d:fe:11:24:a1:a7:0f:ce:d3:6c:7a:
40:76:0d:16:ac:67:03:78:9c:75:15:42:c8:b3:eb:
ac:b0:a6:82:74:60:b3:90:e7:a9:39:e8:92:39:fb:
00:6b:38:a1:33:c0:29:41:43:92:b1:d8:eb:d0:f7:
55:ac:d6:47:11:05:33:02:5d:dd:28:f3:52:c3:bb:
18:c7:95:3c:9e:44:4a:ec:15:29:16:15:61:c4:82:
6a:f2:ed:60:7f:fb:28:e5:71:d4:52:0d:18:f9:ca:
25:6b:81:9d:b6:d1:f8:4a:9b:76:33:60:4d:bd:27:
55:82:60:93:f3:c0:23:13:9d:e5:12:7c:6a:a7:8d:
90:44:00:32:5f:2d:eb:e3:e3:89:64:74:ed:be:37:
d5:ba:50:9f:1d:52:a9:10:0a:cf:53:c4:c2:62:e0:
c0:aa:2e:64:5a:f5:4e:48:e3:32:f3:33:2d:c0:8a:
4e:4b:8e:48:07:b5:23:43:e3:e9:cd:2f:65:dd:35:
19:d3:0c:d4:40:53:94:e0:e5:72:89:ed:cc:4d:ee:
8d:e6:23:b1:48:8a:f9:f8:9e:dd:5d:5b:07:83:9f:
71:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:7A:9A:0C:E4:16:83:23:8F:23:77:D4:B4:95:1A:E1:70:35:DA:6D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FnqaDOQWgyOPI3fUtJUa4XA12m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.86.0/24
31.56.107.0/24
31.57.122.0/24
31.57.124.0/23
31.57.140.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.196.0/24
31.57.221.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
Signature Algorithm: sha256WithRSAEncryption
11:6d:ef:e7:aa:56:1f:92:3c:c2:41:5a:6a:db:4c:3b:94:23:
72:e6:4c:c5:72:7c:ea:18:8a:8d:11:b7:67:5e:f2:f5:9a:54:
e8:ca:97:60:9d:22:b9:7c:25:b7:6e:d0:76:7f:14:c5:08:0d:
c1:81:b7:0b:80:89:b6:62:3b:07:ac:a4:2f:d8:6c:33:38:6e:
aa:0d:2d:88:06:dc:6f:11:83:ee:5a:cb:d8:af:84:63:12:aa:
ad:a4:5d:84:4c:96:aa:6b:5a:c8:70:9c:00:47:85:7e:23:5c:
a5:dd:75:d7:3d:3f:7f:e5:a8:b0:91:43:f2:50:3d:4b:f3:63:
5e:81:d3:af:15:33:ca:c5:2e:7d:7e:05:06:00:4c:da:73:f4:
3b:82:7a:86:8d:3a:b8:43:55:d6:b2:31:57:50:1a:00:21:19:
e0:45:28:fa:30:ec:f1:2e:1c:8d:8b:1b:da:0e:aa:3c:35:6a:
5f:a5:d5:b0:6f:d2:43:12:86:ce:f2:98:59:be:9b:e2:34:11:
63:30:8d:2b:15:92:c6:bb:1c:be:48:d4:a2:56:38:6c:07:cc:
2b:a4:1a:73:54:3a:ce:3f:80:e8:5b:04:d9:1c:ea:39:aa:21:
97:27:dc:0e:b7:44:a0:18:30:d7:54:72:43:b3:00:b3:fa:70:
0f:b8:c5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:29:56 2025 by rpki-client