Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/04ywUn758c42TyX7gYhjBlyQo3w.roa
File: 04ywUn758c42TyX7gYhjBlyQo3w.roa (raw, json)
Hash identifier: HLeWj2+iYWzHTH9jRXYsMrve0LowCLjS0sQ1NamB3VQ=
Subject key identifier: D3:8C:B0:52:7E:F9:F1:CE:36:4F:25:FB:81:88:63:06:5C:90:A3:7C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193E34F48FE603C85B336F69684C9785AAA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/04ywUn758c42TyX7gYhjBlyQo3w.roa
Signing time: Fri 20 Dec 2024 09:04:04 +0000
ROA not before: Fri 20 Dec 2024 09:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.64.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.156.0/24 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.145.0/24 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.57.188.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.131.0/24 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.167.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.130.0/24 maxlen: 24
31.59.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Dec 2024 10:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:4f:48:fe:60:3c:85:b3:36:f6:96:84:c9:78:5a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 20 09:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d38cb0527ef9f1ce364f25fb818863065c90a37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c2:b9:73:be:19:34:c4:b2:f1:d8:92:84:fd:
3f:85:b6:2a:74:c3:9d:f7:af:6d:dc:4c:88:86:a8:
e6:4d:b1:38:5f:f9:cf:60:04:cc:fe:05:56:3b:6e:
6f:10:e4:7d:10:e5:ae:ec:e4:4c:82:37:7f:e2:d3:
42:27:bf:70:ae:33:e0:b9:c0:7d:f4:18:af:b5:ad:
15:e0:c4:89:15:31:58:b4:14:89:27:16:c8:48:00:
a3:36:66:04:d7:45:6d:08:93:5f:29:a2:89:76:6c:
9f:de:af:05:6e:75:ed:7c:34:af:a8:14:ec:4f:a9:
47:dd:53:bc:63:01:b1:96:f5:5c:40:74:d9:57:92:
26:fb:96:d1:b1:49:e5:fe:ce:47:c4:63:5d:9a:ad:
c8:4a:d1:13:d9:15:ac:25:1d:ba:aa:8f:bb:4b:57:
5d:47:be:d7:66:5b:5a:28:86:82:f2:14:1f:41:8f:
c7:80:b7:28:c5:d1:5f:6e:89:9b:eb:f9:cb:50:72:
e6:4a:0f:a2:7e:24:3e:3f:75:ac:17:e3:33:81:1c:
2a:9e:d4:04:14:76:c9:73:7c:3a:6e:5b:e0:de:7b:
b7:d0:13:be:d8:4d:1a:4c:fe:7e:ff:3c:4c:18:4f:
3e:22:12:ba:06:89:e9:99:1e:73:7f:3d:0f:7a:4d:
d4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8C:B0:52:7E:F9:F1:CE:36:4F:25:FB:81:88:63:06:5C:90:A3:7C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/04ywUn758c42TyX7gYhjBlyQo3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.64.0/24
31.56.71.0/24
31.56.74.0/23
31.56.89.0/24
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.156.0/24
31.57.65.0/24
31.57.132.0/23
31.57.145.0-31.57.147.255
31.57.176.0/21
31.57.188.0/24
31.57.192.0/22
31.57.200.0/23
31.57.208.0/20
31.57.232.0/22
31.58.34.0/23
31.58.131.0/24
31.58.152.0/22
31.58.167.0/24
31.59.96.0/22
31.59.112.0/22
31.59.130.0/24
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:89:f3:6f:8e:04:73:1b:1a:46:94:78:b3:4b:7b:d8:d5:79:
0a:e7:fa:05:1e:de:d4:af:66:c0:1d:9b:cb:bf:eb:8c:08:9a:
35:0b:86:17:1d:62:e7:b6:ce:bc:84:0d:66:fd:73:09:65:c3:
4d:e2:9c:70:21:98:bf:a7:17:44:aa:1f:6d:4e:4c:c5:0c:08:
a8:d9:e0:b8:98:b5:e0:37:46:f1:b2:ef:da:24:fa:cd:19:fc:
19:2c:b8:57:22:ec:d3:69:4a:df:0f:4f:c1:f5:dc:2a:2d:2f:
6b:9f:bc:42:8b:01:03:89:db:8d:00:93:86:7e:ba:df:92:0a:
cb:10:83:56:53:2f:74:de:85:ae:47:6b:13:8d:88:76:6b:05:
aa:22:88:70:f6:aa:3d:d5:aa:a2:06:1a:76:4b:fc:82:ba:f5:
7b:03:b0:8e:de:db:b6:90:06:8d:b9:1c:d3:30:f8:b4:4f:ec:
a1:26:5e:fe:a5:e9:11:ce:4c:c4:ac:dd:4f:4b:94:58:0f:82:
3b:9a:73:62:6e:03:75:64:7d:d1:8b:5a:0f:54:0c:31:d1:20:
f8:8a:bb:ae:98:36:88:09:ed:64:af:28:a6:62:fa:19:e3:c3:
c5:23:54:58:c3:a6:68:ef:8c:1b:1c:81:e5:f5:90:06:ab:e6:
56:1f:62:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:49:05 2025 by rpki-client