Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fib83XjOqFkOXkzGN4kllaxNdN4.roa
File: fib83XjOqFkOXkzGN4kllaxNdN4.roa (raw, json)
Hash identifier: qA7aoMbqIao+VKvPkgNkXUiBq4Pbo/yQVGjtI/FxxbI=
Subject key identifier: 7E:26:FC:DD:78:CE:A8:59:0E:5E:4C:C6:37:89:25:95:AC:4D:74:DE
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01973A28BEA705EDBF922B307B63DB2FEB56
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fib83XjOqFkOXkzGN4kllaxNdN4.roa
Signing time: Wed 04 Jun 2025 08:57:18 +0000
ROA not before: Wed 04 Jun 2025 08:57:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.113.0/24 maxlen: 24
31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.105.0/24 maxlen: 24
31.57.106.0/24 maxlen: 24
31.57.107.0/24 maxlen: 24
31.57.108.0/24 maxlen: 24
31.57.109.0/24 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.212.0/22 maxlen: 24
217.60.0.0/21 maxlen: 24
217.60.0.0/24 maxlen: 24
217.60.1.0/24 maxlen: 24
217.60.2.0/24 maxlen: 24
217.60.4.0/24 maxlen: 24
217.60.5.0/24 maxlen: 24
217.60.6.0/24 maxlen: 24
217.60.12.0/22 maxlen: 24
217.60.12.0/24 maxlen: 24
217.60.13.0/24 maxlen: 24
217.60.14.0/24 maxlen: 24
217.60.24.0/22 maxlen: 24
217.60.60.0/22 maxlen: 24
217.60.60.0/24 maxlen: 24
217.60.61.0/24 maxlen: 24
217.60.62.0/24 maxlen: 24
217.60.63.0/24 maxlen: 24
217.60.188.0/22 maxlen: 24
217.60.192.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Jun 2025 07:12:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3a:28:be:a7:05:ed:bf:92:2b:30:7b:63:db:2f:eb:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 4 08:57:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e26fcdd78cea8590e5e4cc637892595ac4d74de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:93:d7:84:91:a5:38:0b:d1:e7:ea:3d:93:75:
5d:db:c8:03:0c:c2:55:4f:14:6c:87:ba:33:09:30:
eb:77:f9:b3:dc:50:c1:ce:9a:b6:5d:34:0b:29:e6:
09:3c:66:98:69:ec:8d:47:56:73:63:72:8b:ab:5d:
9c:2f:35:80:ea:98:41:73:c9:5c:16:4e:c5:29:59:
00:89:c0:dd:61:2f:14:10:6c:7e:13:2c:ca:0c:1b:
55:28:36:be:c5:9b:75:32:1a:e9:76:d0:84:e0:a0:
44:95:6a:e0:88:97:45:24:d8:32:26:d6:aa:d4:da:
f8:16:95:ea:75:3b:0a:7c:d9:2a:68:46:8b:db:2e:
5f:5e:4c:f0:3b:cd:c1:e3:3b:12:75:05:ef:84:d8:
38:37:66:93:07:f9:29:49:ac:59:f1:15:7d:ef:70:
3b:6d:8d:58:26:b9:b3:5c:28:b7:07:ff:a8:16:e7:
6e:bf:c4:59:52:8a:c3:de:7e:5c:af:05:06:e1:73:
38:49:77:f7:00:fa:ca:c6:bd:1f:22:b8:ba:e0:c7:
33:d4:0f:48:cd:3e:d8:32:d2:f6:d1:48:d3:94:85:
63:a5:71:b9:b5:0f:1c:7a:75:26:42:89:a9:fc:7a:
aa:ec:29:5f:0a:3f:8c:56:82:1b:2a:df:0d:f1:07:
37:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:26:FC:DD:78:CE:A8:59:0E:5E:4C:C6:37:89:25:95:AC:4D:74:DE
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fib83XjOqFkOXkzGN4kllaxNdN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.113.0/24
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.24.0/21
31.57.48.0-31.57.59.255
31.57.105.0-31.57.109.255
31.58.34.0/23
31.58.212.0/22
217.60.0.0/21
217.60.12.0/22
217.60.24.0/22
217.60.60.0/22
217.60.188.0-217.60.195.255
Signature Algorithm: sha256WithRSAEncryption
57:36:a3:28:78:3d:e4:01:fd:c3:24:be:94:94:15:30:98:d2:
5b:f9:5f:2b:5b:f6:f3:30:c9:ba:a8:19:20:af:57:c5:30:31:
f6:b0:76:64:e1:58:be:3a:06:5c:d7:9f:b9:ab:7a:6f:ce:5b:
7b:cb:f6:68:b1:c9:08:9b:e9:28:e4:ba:14:0c:04:19:0c:bc:
9d:42:c2:d9:29:6c:68:d9:ac:8d:12:0c:d1:92:d1:8b:09:fe:
ec:fd:83:55:23:40:35:dc:33:b1:9d:e6:06:b3:fc:75:3a:d0:
d0:9c:2c:70:40:77:68:7c:92:25:ed:9c:7b:81:68:f2:ab:32:
1c:5f:3a:f0:eb:a0:5c:e8:4a:ab:f8:3c:de:e2:92:83:34:7f:
55:d6:89:84:4c:67:d6:d0:b5:7f:48:f0:cd:50:f2:22:2d:fe:
65:cf:5e:4b:12:8c:a6:eb:b0:88:fc:d1:7e:fd:4b:58:86:8d:
26:d5:34:f0:d5:3f:a4:3d:09:ae:e0:3e:c9:3f:ef:4e:7e:88:
89:b6:ff:f7:fa:0f:5d:37:64:7c:83:48:17:03:56:24:aa:8a:
3a:6e:ad:4d:de:3d:17:d1:c8:02:2f:b6:49:73:8d:56:9d:45:
8d:40:3c:bf:57:12:1a:f1:4b:32:5e:e9:6f:cf:34:68:9e:77:
41:97:94:8e
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAZc6KL6nBe2/kiswe2PbL+tWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNjA0MDg1NzE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTI2ZmNkZDc4Y2VhODU5MGU1ZTRjYzYzNzg5MjU5NWFjNGQ3NGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5PXhJGlOAvR5+o9k3Vd28gDDMJV
TxRsh7ozCTDrd/mz3FDBzpq2XTQLKeYJPGaYaeyNR1ZzY3KLq12cLzWA6phBc8lc
Fk7FKVkAicDdYS8UEGx+EyzKDBtVKDa+xZt1MhrpdtCE4KBElWrgiJdFJNgyJtaq
1Nr4FpXqdTsKfNkqaEaL2y5fXkzwO83B4zsSdQXvhNg4N2aTB/kpSaxZ8RV973A7
bY1YJrmzXCi3B/+oFuduv8RZUorD3n5crwUG4XM4SXf3APrKxr0fIri64Mcz1A9I
zT7YMtL20UjTlIVjpXG5tQ8cenUmQomp/Hqq7ClfCj+MVoIbKt8N8Qc3rwIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFH4m/N14zqhZDl5MxjeJJZWsTXTeMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvZmliODNYak9xRmtPWGt6R040a2xsYXhOZE40LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAB84cQME
AB84mgMEAR84ngMEAh84qAMEAR84rgMEAx85GDAMAwQEHzkwAwQCHzk4MAwDBAAf
OWkDBAEfOWwDBAEfOiIDBAIfOtQDBAPZPAADBALZPAwDBALZPBgDBALZPDwwDAME
Atk8vAMEAtk8wDANBgkqhkiG9w0BAQsFAAOCAQEAVzajKHg95AH9wyS+lJQVMJjS
W/lfK1v28zDJuqgZIK9XxTAx9rB2ZOFYvjoGXNefuat6b85be8v2aLHJCJvpKOS6
FAwEGQy8nULC2SlsaNmsjRIM0ZLRiwn+7P2DVSNANdwzsZ3mBrP8dTrQ0JwscEB3
aHySJe2ce4Fo8qsyHF868OugXOhKq/g83uKSgzR/VdaJhExn1tC1f0jwzVDyIi3+
Zc9eSxKMpuuwiPzRfv1LWIaNJtU08NU/pD0JruA+yT/vTn6Iibb/9/oPXTdkfINI
FwNWJKqKOm6tTd49F9HIAi+2SXONVp1FjUA8v1cSGvFLMl7pb880aJ53QZeUjg==
-----END CERTIFICATE-----
Generated at Tue Jul 29 07:48:11 2025 by rpki-client