Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0buTxtdnxPvbyNf5U_j-VuSZX-A.roa
File: 0buTxtdnxPvbyNf5U_j-VuSZX-A.roa (raw, json)
Hash identifier: Tq4CQk9RFYQQUt2NhN5l+1XDk4w6yM1zb2BiHsmmzOI=
Subject key identifier: D1:BB:93:C6:D7:67:C4:FB:DB:C8:D7:F9:53:F8:FE:56:E4:99:5F:E0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193E8B510717217A737AB8EC5D38D07A65A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0buTxtdnxPvbyNf5U_j-VuSZX-A.roa
Signing time: Sat 21 Dec 2024 10:13:20 +0000
ROA not before: Sat 21 Dec 2024 10:13:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215304
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.88.0/24 maxlen: 24
31.56.120.0/24 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.122.0/24 maxlen: 24
31.56.123.0/24 maxlen: 24
31.56.126.0/24 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.133.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Dec 2024 15:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e8:b5:10:71:72:17:a7:37:ab:8e:c5:d3:8d:07:a6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 21 10:13:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1bb93c6d767c4fbdbc8d7f953f8fe56e4995fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:49:25:12:cd:be:cf:77:03:20:85:c1:4c:a9:
21:1c:ee:ad:04:a8:eb:a1:c8:31:f9:06:61:f3:b3:
3c:39:b4:d8:0b:a2:64:0e:d3:43:11:de:d4:93:6f:
8c:8c:6c:80:17:26:03:52:59:7b:93:0d:f6:47:08:
4c:cc:bd:b8:95:25:c8:3c:15:ca:36:1e:1e:c3:78:
23:45:08:06:a2:9c:f2:07:0b:ec:92:53:4b:d9:3e:
58:ae:b2:2c:99:42:27:b1:a8:eb:32:18:6c:cb:58:
ea:da:e0:34:3a:3f:53:41:2e:dc:fd:17:58:5c:fb:
28:0c:a8:5b:2f:bf:be:a8:66:19:12:f4:3d:48:f3:
7b:7c:19:99:4f:22:56:31:b9:95:3d:bb:72:7c:19:
96:27:51:bf:e3:68:cf:66:89:c6:cd:9d:6c:52:4e:
b8:f6:78:ec:7c:a7:c3:f7:86:d4:f5:29:bf:3a:8b:
38:e2:84:80:63:48:86:05:da:29:50:f2:5b:96:b5:
d5:97:1b:61:9d:42:02:45:d1:27:e2:0f:49:6d:ba:
63:04:a2:d1:8d:52:67:f1:46:81:e2:db:ff:f2:0e:
84:eb:16:b1:94:7f:4a:19:0b:8e:ba:62:eb:fd:0a:
cc:1f:39:b8:13:4e:05:9a:ea:0c:21:43:12:fa:36:
6b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BB:93:C6:D7:67:C4:FB:DB:C8:D7:F9:53:F8:FE:56:E4:99:5F:E0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0buTxtdnxPvbyNf5U_j-VuSZX-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.88.0/24
31.56.120.0/22
31.56.126.0/24
31.57.104.0/21
31.57.132.0/23
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:46:b3:0a:99:c8:8e:a1:2a:87:19:64:b9:0f:95:25:9c:dc:
b0:11:21:f8:7b:3c:17:d0:e5:7e:6b:b2:07:f4:53:75:22:40:
9f:b1:f6:37:bb:86:26:c1:03:80:a1:08:49:b2:df:8c:1e:80:
e6:dd:2b:6e:5d:03:eb:bd:3f:0a:08:25:76:ae:1e:36:df:62:
23:38:56:e7:24:66:f5:0b:3f:6c:df:68:ef:7e:08:2c:9c:f9:
b7:34:4a:5a:1c:b9:6f:b6:58:08:7b:f0:af:70:bc:d0:2f:25:
bb:ba:82:4b:6e:92:ea:3c:f0:ec:a8:e0:a0:21:c8:2c:32:70:
79:0e:25:d9:ef:ed:b9:71:a8:7e:09:ef:7a:72:78:e7:36:6d:
f9:1a:24:d1:85:2e:96:91:95:98:a1:c4:d2:6b:72:6e:62:08:
77:d9:c4:7a:0b:8c:3e:3e:47:c2:47:09:e7:bb:81:df:b1:ff:
5c:61:7e:4c:b8:8b:f4:6f:57:fc:55:f1:a8:a1:77:d7:f3:3f:
10:af:d4:26:ec:cc:97:55:57:c2:08:eb:35:ee:02:c0:0b:38:
47:89:68:a5:92:d6:6a:9c:07:b1:42:1b:2a:76:69:fb:e9:21:
84:22:c1:33:b4:56:8d:9e:09:47:af:ce:42:7c:f5:2e:94:dc:
79:9a:c7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:07 2025 by rpki-client