Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0SiFTVzIX23TSSaz7LHAzKVeJeI.roa
File: 0SiFTVzIX23TSSaz7LHAzKVeJeI.roa (raw, json)
Hash identifier: BcRRj0ldVmksE1LG122fYIEYD1YfDcJ9aLcwBcJQVRg=
Subject key identifier: D1:28:85:4D:5C:C8:5F:6D:D3:49:26:B3:EC:B1:C0:CC:A5:5E:25:E2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192990CE524F5F85FBDD2D60183B36891AF
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0SiFTVzIX23TSSaz7LHAzKVeJeI.roa
Signing time: Thu 17 Oct 2024 05:56:52 +0000
ROA not before: Thu 17 Oct 2024 05:56:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 07:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:99:0c:e5:24:f5:f8:5f:bd:d2:d6:01:83:b3:68:91:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 17 05:56:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d128854d5cc85f6dd34926b3ecb1c0cca55e25e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:be:6e:30:39:c7:d8:50:f7:02:90:96:a1:
74:4c:66:ad:fd:84:4e:26:aa:e9:28:f4:aa:58:6b:
4a:08:4c:88:ea:0c:18:2a:43:98:25:0c:f8:71:01:
e8:e9:09:08:a7:d1:27:82:d1:c4:e6:ad:22:df:0b:
bf:f6:de:bc:ab:fe:3f:c7:ef:fe:5e:db:ce:79:19:
41:d2:26:55:c1:a3:8c:ad:20:c9:1e:7d:82:1a:0f:
a3:d6:4d:98:16:d1:4d:a1:ef:d5:ff:39:d3:f2:85:
7b:79:f1:73:55:86:a1:0a:8f:ea:08:0e:45:88:fd:
5e:34:8d:59:b7:33:0b:f2:8f:2c:b3:a5:df:29:72:
62:14:91:e7:63:5e:7f:ab:f9:96:4f:92:0a:55:f8:
12:39:40:7e:1e:a2:9f:38:bf:5d:a8:9d:1d:a9:ba:
65:f7:a8:da:d3:61:64:d7:5a:29:ff:ea:63:8a:19:
7b:61:05:26:bb:52:67:9f:e0:8c:2a:99:87:78:81:
80:20:35:c5:ef:c7:cf:0e:2f:f2:6d:52:27:13:dc:
a6:2f:8e:7c:40:31:3c:a5:27:a7:d5:8f:5f:cc:34:
ee:b8:93:ce:fb:f0:83:1e:73:1b:4f:8d:52:7e:4c:
11:60:51:b4:12:21:c6:9c:db:6a:7b:18:7c:1c:9a:
82:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:28:85:4D:5C:C8:5F:6D:D3:49:26:B3:EC:B1:C0:CC:A5:5E:25:E2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0SiFTVzIX23TSSaz7LHAzKVeJeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
ab:78:f0:44:b3:3e:37:0d:75:60:f4:43:b9:00:d5:ea:d5:f9:
23:06:3d:96:00:e4:21:8d:3e:6c:d9:1e:33:54:9e:76:5f:e2:
37:fe:e9:11:01:52:38:5f:84:73:d9:a6:9a:f2:1f:eb:e6:d0:
6d:31:33:28:6c:97:b1:63:01:19:b3:fc:ce:c4:59:27:e5:ee:
f7:60:e5:cb:d0:6e:8b:42:13:04:d6:54:82:45:9a:d3:31:d4:
93:ae:c3:c8:22:d4:ad:cf:7a:8f:9a:0c:d3:3c:6e:bd:0d:fb:
af:a9:75:5e:5e:10:b9:00:06:79:d1:06:d2:0b:6d:09:84:3e:
e4:39:af:61:d1:bb:35:c3:bc:28:cd:0e:73:f5:87:18:7f:4b:
ab:5b:30:9c:45:f4:eb:1e:45:c1:99:50:6c:73:77:5a:6c:a9:
39:6e:5c:fe:82:ee:cb:b2:91:35:32:51:f5:3c:24:de:d1:cb:
65:79:89:24:1e:10:e0:17:89:47:e8:4c:e4:00:41:a9:6e:1d:
ab:90:3d:17:32:e9:17:1f:14:e5:4b:67:bc:87:5f:a5:6f:d3:
03:14:fc:bc:24:c3:ea:27:bd:f9:31:e5:11:0c:c4:5e:b4:80:
ff:c3:ac:20:52:a0:b7:ea:0c:ee:a7:f5:6e:fe:35:2e:5d:23:
00:b2:21:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 19 08:57:28 2024 by rpki-client on console-fra.rpki-client.org