Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cWeR7NH_8ivcV5UQl-z-vEkmt1U.roa
File: cWeR7NH_8ivcV5UQl-z-vEkmt1U.roa (raw, json)
Hash identifier: wq8tTzRJp4PKDYENVXJAHrnqCXePzqJheqzc2ClXwhg=
Subject key identifier: 71:67:91:EC:D1:FF:F2:2B:DC:57:95:10:97:EC:FE:BC:49:26:B7:55
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195943B52510034016EF7BC498F6107871A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cWeR7NH_8ivcV5UQl-z-vEkmt1U.roa
Signing time: Fri 14 Mar 2025 10:37:50 +0000
ROA not before: Fri 14 Mar 2025 10:37:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.104.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.188.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.252.0/24 maxlen: 24
31.57.253.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.56.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 08:03:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:94:3b:52:51:00:34:01:6e:f7:bc:49:8f:61:07:87:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 14 10:37:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=716791ecd1fff22bdc57951097ecfebc4926b755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bc:46:9c:9a:db:ab:c0:53:d0:b2:6a:60:a6:
83:5d:8d:c7:9b:75:4b:78:3b:b0:4f:e9:8e:23:48:
f5:ee:1b:e4:4d:5f:aa:38:cd:99:89:36:5c:4f:6c:
46:53:31:a5:30:af:d7:6f:fc:58:29:4f:17:77:7c:
09:3c:7d:e7:be:8a:e1:7c:85:7d:06:43:43:ca:e5:
e8:cb:97:5d:1e:d5:34:01:95:69:4f:cc:7b:ce:59:
14:ce:da:e2:ca:d6:9b:db:41:82:92:aa:e6:cc:42:
d0:30:d9:ed:de:fc:25:fa:99:12:de:0e:ad:5e:cb:
76:25:f1:46:3a:fd:4e:02:fe:c1:17:be:52:fe:37:
1c:76:cc:1b:0e:9d:02:20:95:94:07:c5:50:0b:b1:
cd:7d:40:d6:3c:5c:e0:71:16:b9:3e:51:43:12:a2:
fe:fc:20:1d:f4:e8:88:ed:1c:3e:05:f9:ac:73:6d:
c7:2e:04:f8:f5:7c:f0:92:b8:94:f5:3b:a8:73:2d:
3e:ee:2c:e5:e6:49:42:c4:b7:06:8e:d7:3d:9a:fa:
51:8d:8c:b2:f0:0a:a1:d8:74:a3:fe:92:3e:b2:02:
60:6d:ec:94:58:de:35:81:64:d7:5e:2b:f2:74:05:
a0:39:61:c4:f5:4f:2d:a5:1a:35:0e:1d:fb:4b:35:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:67:91:EC:D1:FF:F2:2B:DC:57:95:10:97:EC:FE:BC:49:26:B7:55
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cWeR7NH_8ivcV5UQl-z-vEkmt1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.200.0/24
31.56.202.0/24
31.57.104.0/24
31.57.181.0/24
31.57.188.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.252.0/23
31.57.255.0/24
31.58.56.0/23
31.58.64.0/23
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
77:37:8b:b0:1c:f1:7d:06:cb:99:4c:11:39:8a:6e:b9:3a:33:
e1:92:3a:6a:1a:77:e9:b5:65:e0:79:f6:39:bd:ca:2b:23:44:
94:18:17:ca:e5:cd:ab:40:98:ed:b7:73:c8:db:ff:c6:77:a4:
21:b3:8b:49:ea:2f:42:64:c6:d8:8a:2d:f4:cd:d7:24:c4:17:
b6:43:c0:73:c2:8b:a2:28:fc:dc:a5:cb:14:b8:ec:d5:65:8d:
c8:e9:cd:be:98:ff:50:7a:f0:b6:9a:2d:ae:ba:26:cd:13:d3:
7d:51:34:84:aa:39:59:a6:d3:ab:ac:d6:2b:3f:66:a9:98:7b:
d4:20:2c:89:21:25:d8:cf:21:89:40:b3:99:40:ee:0b:0b:ad:
4a:47:4e:2e:35:94:3b:66:d9:37:d3:58:4a:2f:a8:a4:08:da:
3f:5a:0e:78:f5:45:c3:51:d6:53:d5:d9:80:d9:ab:a7:3c:b9:
fe:00:c3:f6:de:87:8f:ce:65:a7:c5:d5:87:c6:26:08:19:a6:
45:ad:34:28:b9:7d:b9:6f:fc:ec:f9:dc:84:12:2a:e0:cf:60:
ea:43:4a:2a:44:8f:f0:bc:9b:5f:86:01:89:14:67:f7:1b:73:
79:94:11:26:71:a4:e7:22:60:ce:3a:ae:02:2c:34:5f:5c:58:
f4:78:04:77
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZWUO1JRADQBbve8SY9hB4caMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMzE0MTAzNzUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTY3OTFlY2QxZmZmMjJiZGM1Nzk1MTA5N2VjZmViYzQ5MjZiNzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrxGnJrbq8BT0LJqYKaDXY3Hm3VL
eDuwT+mOI0j17hvkTV+qOM2ZiTZcT2xGUzGlMK/Xb/xYKU8Xd3wJPH3nvorhfIV9
BkNDyuXoy5ddHtU0AZVpT8x7zlkUztriytab20GCkqrmzELQMNnt3vwl+pkS3g6t
Xst2JfFGOv1OAv7BF75S/jccdswbDp0CIJWUB8VQC7HNfUDWPFzgcRa5PlFDEqL+
/CAd9OiI7Rw+Bfmsc23HLgT49XzwkriU9Tuocy0+7izl5klCxLcGjtc9mvpRjYyy
8Aqh2HSj/pI+sgJgbeyUWN41gWTXXivydAWgOWHE9U8tpRo1Dh37SzWGnQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFHFnkezR//Ir3FeVEJfs/rxJJrdVMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvY1dlUjdOSF84aXZjVjVVUWwtei12RWttdDFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQAHzhFAwQA
HzhIAwQAHzhUAwQAHzjIAwQAHzjKAwQAHzloAwQAHzm1AwQAHzm8AwQAHznXAwQA
HznbAwQAHzndAwQBHzn8AwQAHzn/AwQBHzo4AwQBHzpAAwQBHzpYMA0GCSqGSIb3
DQEBCwUAA4IBAQB3N4uwHPF9BsuZTBE5im65OjPhkjpqGnfptWXgefY5vcorI0SU
GBfK5c2rQJjtt3PI2//Gd6Qhs4tJ6i9CZMbYii30zdckxBe2Q8BzwouiKPzcpcsU
uOzVZY3I6c2+mP9QevC2mi2uuibNE9N9UTSEqjlZptOrrNYrP2apmHvUICyJISXY
zyGJQLOZQO4LC61KR04uNZQ7Ztk301hKL6ikCNo/Wg549UXDUdZT1dmA2aunPLn+
AMP23oePzmWnxdWHxiYIGaZFrTQouX25b/zs+dyEEirgz2DqQ0oqRI/wvJtfhgGJ
FGf3G3N5lBEmcaTnImDOOq4CLDRfXFj0eAR3
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:33:37 2025 by rpki-client