Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1puXwbphJeN4Ua2HYrOL7P4maJk.roa
File: 1puXwbphJeN4Ua2HYrOL7P4maJk.roa (raw, json)
Hash identifier: 5FfraUxi0wtKrbFMyzhwUc+4EODbOcxk+PnxB4OaFMg=
Subject key identifier: D6:9B:97:C1:BA:61:25:E3:78:51:AD:87:62:B3:8B:EC:FE:26:68:99
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192E7A76B0D3F773A9C9CEADE2E83F5FCC8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1puXwbphJeN4Ua2HYrOL7P4maJk.roa
Signing time: Fri 01 Nov 2024 12:16:01 +0000
ROA not before: Fri 01 Nov 2024 12:16:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.134.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.240.0/22 maxlen: 24
31.57.244.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 07:12:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e7:a7:6b:0d:3f:77:3a:9c:9c:ea:de:2e:83:f5:fc:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 1 12:16:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d69b97c1ba6125e37851ad8762b38becfe266899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ba:33:11:b1:9e:9f:a5:75:73:dc:78:eb:1b:
91:85:09:c2:be:bc:21:4f:64:5c:de:67:60:70:64:
b0:0c:20:7d:db:9b:ac:e5:a6:59:80:e5:ec:da:99:
b4:61:66:31:a5:68:f4:9b:d4:9b:ce:b5:24:13:88:
3f:df:f7:44:4c:be:5f:61:75:25:9c:ec:c7:be:6a:
b7:9f:aa:01:c8:8d:7c:a8:86:61:94:48:b7:90:2b:
89:89:82:14:b4:1c:50:d5:8e:00:17:4c:4b:d7:58:
71:5f:62:42:57:20:09:f2:36:37:f0:c6:7d:fc:86:
1e:19:45:21:98:ba:30:48:8c:fa:3f:21:e0:8f:63:
c7:d2:51:5d:e0:69:6e:05:2f:5b:b3:08:34:ab:b8:
43:85:53:3f:ce:84:dd:7b:76:95:f0:3e:71:f8:d3:
aa:56:2d:af:b5:d4:73:1f:cd:38:7a:16:6d:59:3d:
f7:d0:79:f7:9b:45:78:23:d2:46:c5:05:03:ab:e8:
91:30:ec:a1:d8:5c:72:26:86:63:f0:98:41:df:87:
34:c3:ba:7e:c1:5d:85:cc:a5:48:f5:05:f6:f9:c5:
f0:f3:8b:5b:84:08:4c:27:45:e2:7c:b2:c6:7b:5f:
42:ff:04:55:97:18:a8:7c:6e:de:a7:a9:46:ff:02:
75:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9B:97:C1:BA:61:25:E3:78:51:AD:87:62:B3:8B:EC:FE:26:68:99
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1puXwbphJeN4Ua2HYrOL7P4maJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.56.127.0/24
31.57.0.0-31.57.9.255
31.57.132.0-31.57.134.255
31.57.176.0/21
31.57.192.0/22
31.57.224.0/22
31.57.232.0/22
31.57.240.0/21
31.57.252.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:b8:5b:44:92:3b:6d:17:18:22:ac:c5:68:da:ec:11:d3:9a:
90:c0:55:16:6b:40:43:9b:d9:d1:eb:2e:d0:59:0d:7e:2c:a5:
ea:d2:7d:ba:91:dc:43:19:88:e4:5a:4f:f9:70:d3:bd:7c:22:
4c:29:54:dc:b7:f5:8b:11:47:0e:6b:3d:18:86:f6:34:64:92:
c1:d8:54:a3:8a:48:de:6d:4b:87:ec:23:33:f7:08:39:e2:3c:
53:b9:2d:fd:98:95:cc:d6:b0:75:9c:ac:5b:d8:4b:ec:11:ca:
e5:d9:e2:7c:f9:76:47:1c:92:72:d5:2b:91:25:b3:e1:c0:2f:
78:09:c4:27:b4:7d:b6:ce:04:0b:3b:fa:94:47:67:27:2c:d7:
4e:1a:cd:3c:f5:07:c6:ce:2c:ee:9a:c0:01:39:57:bc:09:f9:
b3:f4:71:b2:6d:37:f8:43:6d:a8:ec:81:9a:ce:f8:fc:20:90:
49:97:ff:ee:21:ec:2f:a1:b3:cf:c9:7d:56:98:16:c0:eb:01:
89:e5:78:d1:b9:63:bb:65:1d:03:14:a3:cd:50:5d:30:ff:48:
06:77:42:f9:7b:08:a1:d7:ee:4e:de:f5:e3:76:4d:d6:a6:5f:
c8:98:c0:9d:d4:86:4f:fc:78:0a:29:58:b8:73:ba:27:c1:6a:
fb:1c:b0:08
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAZLnp2sNP3c6nJzq3i6D9fzIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMTAxMTIxNjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjliOTdjMWJhNjEyNWUzNzg1MWFkODc2MmIzOGJlY2ZlMjY2ODk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbozEbGen6V1c9x46xuRhQnCvrwh
T2Rc3mdgcGSwDCB925us5aZZgOXs2pm0YWYxpWj0m9SbzrUkE4g/3/dETL5fYXUl
nOzHvmq3n6oByI18qIZhlEi3kCuJiYIUtBxQ1Y4AF0xL11hxX2JCVyAJ8jY38MZ9
/IYeGUUhmLowSIz6PyHgj2PH0lFd4GluBS9bswg0q7hDhVM/zoTde3aV8D5x+NOq
Vi2vtdRzH804ehZtWT330Hn3m0V4I9JGxQUDq+iRMOyh2FxyJoZj8JhB34c0w7p+
wV2FzKVI9QX2+cXw84tbhAhMJ0XifLLGe19C/wRVlxiofG7ep6lG/wJ1dQIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFNabl8G6YSXjeFGth2Kzi+z+JmiZMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvMXB1WHdicGhKZU40VWEySFlyT0w3UDRtYUprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGZBggrBgEFBQcBBwEB/wSBiTCBhjCBgwQCAAEwfQMEAR84
BAMEAB84GAMEAB84JwMEAR84KgMEAB84QgMEAB84VQMEAB84WTAMAwQEHzhwAwQC
Hzh4AwQAHzh/MAsDAwAfOQMEAR85CDAMAwQCHzmEAwQAHzmGAwQDHzmwAwQCHznA
AwQCHzngAwQCHznoAwQDHznwAwQCHzn8MA0GCSqGSIb3DQEBCwUAA4IBAQCyuFtE
kjttFxgirMVo2uwR05qQwFUWa0BDm9nR6y7QWQ1+LKXq0n26kdxDGYjkWk/5cNO9
fCJMKVTct/WLEUcOaz0YhvY0ZJLB2FSjikjebUuH7CMz9wg54jxTuS39mJXM1rB1
nKxb2EvsEcrl2eJ8+XZHHJJy1SuRJbPhwC94CcQntH22zgQLO/qUR2cnLNdOGs08
9QfGzizumsABOVe8Cfmz9HGybTf4Q22o7IGazvj8IJBJl//uIewvobPPyX1WmBbA
6wGJ5XjRuWO7ZR0DFKPNUF0w/0gGd0L5ewih1+5O3vXjdk3Wpl/ImMCd1IZP/HgK
KVi4c7onwWr7HLAI
-----END CERTIFICATE-----
Generated at Sat Nov 2 08:39:23 2024 by rpki-client on console-fra.rpki-client.org