Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0KOsMfTlye7X2eqHwm5EB_7_3vA.roa
File: 0KOsMfTlye7X2eqHwm5EB_7_3vA.roa (raw, json)
Hash identifier: mQTOxOMJasnmiopci1glBLqmtytR621ZckNZUdr7JLI=
Subject key identifier: D0:A3:AC:31:F4:E5:C9:EE:D7:D9:EA:87:C2:6E:44:07:FE:FF:DE:F0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019434FA7F04E80CFF254A7FE0B1465690D1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0KOsMfTlye7X2eqHwm5EB_7_3vA.roa
Signing time: Sun 05 Jan 2025 05:40:19 +0000
ROA not before: Sun 05 Jan 2025 05:40:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.75.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.208.0/24 maxlen: 24
31.57.209.0/24 maxlen: 24
31.57.210.0/24 maxlen: 24
31.57.211.0/24 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.227.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.56.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
31.58.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 13:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:34:fa:7f:04:e8:0c:ff:25:4a:7f:e0:b1:46:56:90:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 5 05:40:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0a3ac31f4e5c9eed7d9ea87c26e4407feffdef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:50:b0:a3:e8:52:d1:0c:d5:3e:b5:4f:75:
10:93:c1:ec:d8:00:ae:e6:77:8b:dc:78:5f:2f:ab:
3c:d8:53:f5:10:39:4b:78:d9:86:ef:32:e9:84:68:
92:5c:12:2e:e1:f8:c2:8c:18:7e:7f:01:0d:c4:89:
06:cd:da:f9:c2:f1:17:6b:fa:ad:58:8b:3c:37:99:
71:82:67:b8:62:98:06:7e:ed:3b:ef:85:83:94:69:
53:8e:3c:a7:4d:52:69:b0:67:08:b1:6d:91:69:a9:
54:99:c2:bc:35:da:13:15:dc:81:24:15:8c:4c:e3:
85:50:75:54:45:46:4e:eb:1e:28:7e:ac:81:b5:9b:
92:fe:b1:94:c7:4a:61:9b:c6:04:46:c4:39:6c:08:
45:77:be:cc:20:19:c2:be:34:79:22:16:c4:5d:8a:
35:a2:3d:eb:4b:5c:30:a9:39:32:9d:3a:33:95:45:
0a:e8:da:a8:8d:02:6a:fe:05:37:13:95:36:91:5e:
98:c2:16:1b:96:bc:c2:f0:b5:06:4d:91:92:7d:8f:
9e:b2:df:ac:45:d8:9f:81:95:76:20:ae:bc:d0:91:
33:94:25:90:be:16:66:db:10:c0:56:5a:be:9f:03:
37:36:02:6e:97:f3:33:5f:f3:0e:b6:57:05:f8:d7:
6b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A3:AC:31:F4:E5:C9:EE:D7:D9:EA:87:C2:6E:44:07:FE:FF:DE:F0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0KOsMfTlye7X2eqHwm5EB_7_3vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.75.0/24
31.56.86.0/24
31.56.107.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.208.0-31.57.214.255
31.57.216.0/24
31.57.227.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
31.58.50.0/23
31.58.56.0/23
31.58.64.0/23
31.58.153.0/24
Signature Algorithm: sha256WithRSAEncryption
14:2f:01:ad:11:98:7e:0b:68:a7:a8:99:e5:df:55:7f:55:82:
74:5d:81:e5:00:90:34:d7:8d:f6:c3:5b:a8:00:81:ce:61:4d:
92:6c:84:6a:be:f8:d6:59:8d:f9:bf:7c:9c:74:93:f5:bf:28:
7d:54:ab:c1:31:64:f7:69:f0:7b:30:11:f2:ea:f8:65:17:a0:
f8:63:46:eb:cd:ea:e0:68:bb:be:d5:be:3c:10:56:bc:09:3e:
50:e1:38:10:dd:d0:c8:34:0a:5a:0d:37:8c:01:86:09:fd:39:
ef:f1:17:c9:80:8b:d8:7c:2d:24:90:a7:67:f2:84:48:a1:ab:
cf:fe:9e:d6:3e:a0:dc:e3:84:11:cb:fd:fb:9d:80:38:b7:74:
56:68:b7:43:2a:8d:9c:5b:d7:23:af:13:6b:da:21:8f:04:9d:
c1:96:27:a2:75:fa:fa:d9:1f:49:d9:0f:0f:04:a6:75:d5:21:
66:be:88:7c:d9:43:27:81:d6:8a:48:11:72:50:03:18:c7:e1:
d2:99:cd:37:3f:b0:0d:90:56:a6:96:bd:ff:e4:3f:70:dc:18:
37:14:07:63:7f:26:f9:b8:68:65:15:f5:3b:e6:25:26:36:37:
42:50:3c:3f:cf:6f:d1:2f:47:88:23:0e:ab:14:56:9c:96:bc:
85:23:ad:21
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAZQ0+n8E6Az/JUp/4LFGVpDRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMTA1MDU0MDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGEzYWMzMWY0ZTVjOWVlZDdkOWVhODdjMjZlNDQwN2ZlZmZkZWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jRQsKPoUtEM1T61T3UQk8Hs2ACu
5neL3HhfL6s82FP1EDlLeNmG7zLphGiSXBIu4fjCjBh+fwENxIkGzdr5wvEXa/qt
WIs8N5lxgme4YpgGfu0774WDlGlTjjynTVJpsGcIsW2RaalUmcK8NdoTFdyBJBWM
TOOFUHVURUZO6x4ofqyBtZuS/rGUx0phm8YERsQ5bAhFd77MIBnCvjR5IhbEXYo1
oj3rS1wwqTkynTozlUUK6NqojQJq/gU3E5U2kV6YwhYblrzC8LUGTZGSfY+est+s
RdifgZV2IK680JEzlCWQvhZm2xDAVlq+nwM3NgJul/MzX/MOtlcF+NdrnQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFNCjrDH05cnu19nqh8JuRAf+/97wMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvMEtPc01mVGx5ZTdYMmVxSHdtNUVCXzdfM3ZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAB84SwME
AB84VgMEAB84azAMAwQBHzmiAwQBHzmkAwQAHzm0MAwDBAQfOdADBAAfOdYDBAAf
OdgDBAAfOeMwDAMEAB86KQMEAB86KgMEAB86MAMEAR86MgMEAR86OAMEAR86QAME
AB86mTANBgkqhkiG9w0BAQsFAAOCAQEAFC8BrRGYfgtop6iZ5d9Vf1WCdF2B5QCQ
NNeN9sNbqACBzmFNkmyEar741lmN+b98nHST9b8ofVSrwTFk92nwezAR8ur4ZReg
+GNG683q4Gi7vtW+PBBWvAk+UOE4EN3QyDQKWg03jAGGCf057/EXyYCL2HwtJJCn
Z/KESKGrz/6e1j6g3OOEEcv9+52AOLd0Vmi3QyqNnFvXI68Ta9ohjwSdwZYnonX6
+tkfSdkPDwSmddUhZr6IfNlDJ4HWikgRclADGMfh0pnNNz+wDZBWppa9/+Q/cNwY
NxQHY38m+bhoZRX1O+YlJjY3QlA8P89v0S9HiCMOqxRWnJa8hSOtIQ==
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:15 2025 by rpki-client