Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wN5tbo0mgMZ4k3zYTw1Uc9C6bg8.roa
File: wN5tbo0mgMZ4k3zYTw1Uc9C6bg8.roa (raw, json)
Hash identifier: Lrk6RjmuNSAJ7mRYi8yC7YgYfLIxz14VS6GeRFVVPtY=
Subject key identifier: C0:DE:6D:6E:8D:26:80:C6:78:93:7C:D8:4F:0D:54:73:D0:BA:6E:0F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01932982FB1EF45689045CC9E02FCA0544C1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wN5tbo0mgMZ4k3zYTw1Uc9C6bg8.roa
Signing time: Thu 14 Nov 2024 07:11:10 +0000
ROA not before: Thu 14 Nov 2024 07:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.16.0/22 maxlen: 24
31.57.20.0/22 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.58.196.0/22 maxlen: 24
31.58.204.0/22 maxlen: 24
31.58.208.0/24 maxlen: 24
31.58.209.0/24 maxlen: 24
31.58.210.0/23 maxlen: 24
31.58.212.0/22 maxlen: 24
31.58.220.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
217.60.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Nov 2024 17:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:29:82:fb:1e:f4:56:89:04:5c:c9:e0:2f:ca:05:44:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 14 07:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0de6d6e8d2680c678937cd84f0d5473d0ba6e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d5:fb:2d:e6:21:15:31:bb:09:80:f5:2b:16:
ae:d5:2b:dd:8b:2f:59:ef:7e:a7:fc:aa:95:a4:17:
92:3c:74:6c:d2:aa:b1:86:fd:9b:12:4c:cb:8a:f8:
d3:97:e1:28:16:6a:e4:fd:94:15:de:21:73:6a:57:
dc:ae:b6:b4:dd:29:36:69:60:57:88:0c:91:ff:c7:
75:64:19:b5:a3:8a:60:cf:0b:b3:6d:9a:24:2b:56:
bc:a3:f6:29:8c:ce:81:62:7c:de:17:40:b3:4d:c4:
39:3b:51:a3:35:ad:b2:bd:e6:db:d8:5f:a2:a8:c6:
a2:3b:60:33:be:d6:48:18:d5:03:64:69:0f:d2:d8:
ea:03:80:ec:29:52:5c:00:e9:f9:43:f5:00:15:6b:
5e:0f:0b:ac:cc:2a:a3:b3:82:2d:d7:9c:71:34:f5:
44:97:5c:8f:f3:7e:2f:ec:1e:49:db:af:6e:78:d0:
f4:e0:49:42:c2:d8:67:37:c8:c5:be:dc:b8:4c:c3:
4b:93:43:51:bd:73:cd:69:b6:04:cd:1b:9c:14:ea:
d1:23:2f:19:0f:1e:28:1d:c5:f2:ee:c9:c4:41:ba:
5d:3b:8c:91:8f:ac:04:64:61:24:e5:7b:5b:fe:83:
9f:a4:3c:81:7e:d6:ff:68:25:2c:ea:f2:93:4b:81:
de:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:DE:6D:6E:8D:26:80:C6:78:93:7C:D8:4F:0D:54:73:D0:BA:6E:0F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wN5tbo0mgMZ4k3zYTw1Uc9C6bg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.16.0/20
31.57.48.0/20
31.57.92.0-31.57.99.255
31.57.120.0/21
31.58.196.0/22
31.58.204.0-31.58.215.255
31.58.220.0-31.58.227.255
217.60.0.0/18
Signature Algorithm: sha256WithRSAEncryption
14:4c:d4:6b:e8:7d:4c:d6:b5:bf:86:8f:e4:04:9f:18:b8:50:
a1:41:d0:22:7a:b4:b9:a5:ed:9d:cc:49:e1:2d:61:3d:cf:62:
89:02:9b:84:9f:a3:ac:fd:60:87:ab:cd:9d:ec:7a:86:6a:b0:
a6:8d:6a:b5:2e:d0:f4:1f:6e:c2:cf:bc:f0:68:79:92:8e:fb:
5b:0b:c1:5c:a9:73:1b:e2:6f:76:fa:da:09:91:f8:fb:04:27:
a2:af:66:26:ac:f4:17:8b:ed:2f:23:a1:59:db:e8:36:d2:c9:
47:f1:ad:62:6b:6d:6c:28:d7:66:a1:4f:74:bc:ca:a5:0a:55:
9e:f6:25:76:08:6a:5c:44:8d:90:fd:0b:d1:bd:5b:a1:65:6d:
75:d8:2f:dd:d6:65:37:2f:69:27:5c:80:2e:d6:bb:cc:b5:b6:
0a:a8:7a:45:3b:27:10:e0:16:6b:3d:dd:b8:8f:45:27:b3:7d:
6e:af:d6:6c:60:22:02:66:0c:29:f0:e7:1b:0c:41:44:8e:a0:
41:fd:15:cf:08:b6:72:79:c2:7f:1c:7b:8c:a2:ff:2f:b8:90:
d4:d5:b1:cc:a6:de:5c:96:64:eb:54:19:0c:04:6a:2c:34:90:
7a:99:5c:69:de:35:f7:e5:6a:b8:9a:f7:3f:30:8c:85:14:3d:
ba:17:9c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:35:11 2024 by rpki-client on console-ams.rpki-client.org