Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-SJ3sxuzgvr92z_DLoHAP2mIWik.roa
File: 1-SJ3sxuzgvr92z_DLoHAP2mIWik.roa (raw, json)
Hash identifier: 9fTeaolEIXOgQqvEcRP4i8FwkN6FZV3uMtoDH2OBi68=
Subject key identifier: F9:22:77:B3:1B:B3:82:FA:FD:DB:3F:C3:2E:81:C0:3F:69:88:5A:29
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01930C291EDF7C60579A3C6352CBABAC30CA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-SJ3sxuzgvr92z_DLoHAP2mIWik.roa
Signing time: Fri 08 Nov 2024 14:24:01 +0000
ROA not before: Fri 08 Nov 2024 14:24:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.207.0/24 maxlen: 24
31.57.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 15:14:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:29:1e:df:7c:60:57:9a:3c:63:52:cb:ab:ac:30:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 8 14:24:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f92277b31bb382fafddb3fc32e81c03f69885a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f0:64:74:ac:d1:be:00:af:8a:60:95:0a:b9:
5f:ea:ec:53:fa:c8:95:e0:85:ce:ab:36:2c:38:e9:
f4:80:44:61:ef:df:53:fc:a6:a6:95:8c:fe:ec:55:
9f:98:bf:dc:10:e9:7c:40:2a:07:4d:6b:30:54:b4:
46:9a:c4:a2:41:fb:cf:d0:a8:10:26:0b:a6:e7:d6:
69:c6:f2:dc:54:de:d8:9a:e4:cf:52:24:d6:39:a8:
2a:fe:83:f8:58:4a:c0:25:27:0d:fa:54:26:66:b5:
c5:a9:c0:b9:55:b3:7c:a6:84:ce:0e:04:75:50:5e:
a3:6f:ac:7a:ff:b6:61:81:c1:11:82:c0:35:82:fe:
7d:ac:b8:84:40:ef:c8:33:a5:e1:96:32:5b:55:0c:
c7:de:93:29:3f:cc:27:10:a5:5e:3c:b4:32:73:5c:
64:53:69:ae:5b:bc:4e:43:c6:61:6b:ab:8c:c3:c8:
58:d7:52:7b:fb:b2:3b:2e:46:cb:d9:8e:41:19:0f:
b0:bc:4c:37:e6:3e:2a:8b:23:fc:d8:ef:7f:89:bd:
86:c8:f7:ee:79:64:ff:7f:ec:f1:a7:4a:73:04:bb:
32:88:78:ed:95:2b:2b:ce:e9:a2:9d:38:00:8d:b6:
af:04:21:c7:87:67:39:cd:db:38:c1:4a:00:e3:c7:
58:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:22:77:B3:1B:B3:82:FA:FD:DB:3F:C3:2E:81:C0:3F:69:88:5A:29
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-SJ3sxuzgvr92z_DLoHAP2mIWik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.120.0/22
31.56.127.0/24
31.57.132.0/23
31.57.176.0/21
31.57.192.0/22
31.57.207.0/24
31.57.232.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:1a:81:68:64:25:a1:63:48:b0:58:fd:aa:9d:1e:3d:ec:81:
83:c3:00:4b:f0:9f:cd:c6:c3:c7:4d:60:03:7c:a9:ff:f1:fb:
0a:a1:bb:a2:97:99:0f:0c:de:15:25:46:e3:52:7d:6a:33:d5:
4e:49:08:1a:96:73:7d:a4:c8:50:9c:28:10:c4:5f:a9:5a:4b:
b0:03:34:5a:63:ae:45:d1:c7:bf:51:c3:e7:fe:f6:ef:b7:d3:
a8:e3:20:53:4c:63:dd:c2:d5:7f:c8:c3:01:e9:ce:c8:79:09:
2e:c0:2a:6a:85:b3:43:ae:62:80:77:d3:6c:bb:b7:ee:f7:10:
e8:b2:4b:2c:25:52:9c:9b:13:07:dd:14:32:66:4d:f5:ea:39:
bf:76:99:50:8b:32:67:06:4b:58:22:86:37:5e:08:57:14:0d:
f3:95:46:b5:7b:74:eb:af:d5:fb:c5:17:c3:1a:06:b2:a9:91:
29:67:dc:5c:55:0d:a5:53:f8:7d:1a:2a:c0:29:d9:5e:a1:0e:
ad:f7:b5:f7:cb:57:ff:11:28:ea:b2:76:4c:a2:1d:58:ab:79:
b1:8c:73:68:70:c8:10:0c:98:84:1c:82:4b:ae:0c:98:bd:f4:
54:1b:35:54:c4:4d:f9:40:2e:ac:06:08:28:cd:0a:4e:eb:3d:
ed:4c:2c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 19:36:42 2024 by rpki-client on console-ams.rpki-client.org