Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2i_5NTrUK3pIliXmGnOC0jTpAuA.roa
File: 2i_5NTrUK3pIliXmGnOC0jTpAuA.roa (raw, json)
Hash identifier: UPG7X13jqf5d++cemLJsHeOzOxsWVXRgEuuux9X1MYE=
Subject key identifier: DA:2F:F9:35:3A:D4:2B:7A:48:96:25:E6:1A:73:82:D2:34:E9:02:E0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192C986571F53DA73EEE05801B0932FA450
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2i_5NTrUK3pIliXmGnOC0jTpAuA.roa
Signing time: Sat 26 Oct 2024 15:51:17 +0000
ROA not before: Sat 26 Oct 2024 15:51:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.58.49.0/24 maxlen: 24
31.58.59.0/24 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.184.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
217.60.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 09:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c9:86:57:1f:53:da:73:ee:e0:58:01:b0:93:2f:a4:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 26 15:51:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da2ff9353ad42b7a489625e61a7382d234e902e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:73:88:6e:4a:d0:50:73:ae:a3:97:0c:11:7d:
f9:cc:f1:ae:ce:eb:1b:f1:9e:65:da:5b:84:ba:5b:
4c:e4:93:aa:ad:6f:55:4f:e5:6a:52:8d:48:72:79:
36:0d:07:4a:04:48:85:bb:97:90:07:12:aa:f1:a7:
d5:0a:97:12:12:e8:99:c1:98:fb:ac:bb:13:b9:c9:
69:53:b3:ba:6c:74:9d:ef:81:9d:5a:4c:6a:73:5d:
0d:f4:01:32:b9:b9:36:82:0f:22:86:a4:2f:12:c6:
38:2d:a7:1a:36:31:ac:ad:ce:4e:23:57:31:52:65:
1b:39:ee:fa:82:ee:5d:ee:33:db:49:85:39:20:9f:
2c:be:40:d9:24:ce:10:0c:3c:25:f4:30:ae:8c:5f:
e2:a3:7d:6e:dc:13:50:12:2a:f0:2d:e1:82:5c:0d:
e8:46:12:7f:2f:fa:67:bc:4b:b2:ea:a0:07:f8:df:
76:09:78:0a:c0:37:35:71:75:e0:3c:64:a4:68:e4:
57:6d:0f:b6:a0:0e:86:41:f2:5b:0c:63:f2:9c:6d:
de:1e:cf:7d:e5:4b:c0:48:9d:31:1e:5e:6d:5b:bc:
97:d8:0b:c5:27:76:b0:dc:a8:67:df:e0:f9:5c:b1:
76:27:db:2f:b8:67:8c:18:ee:32:16:9d:83:73:d7:
3c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:2F:F9:35:3A:D4:2B:7A:48:96:25:E6:1A:73:82:D2:34:E9:02:E0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/2i_5NTrUK3pIliXmGnOC0jTpAuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.178.0/23
31.57.181.0-31.57.183.255
31.58.49.0/24
31.58.59.0/24
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.176.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
217.60.251.0/24
Signature Algorithm: sha256WithRSAEncryption
11:93:47:5f:ce:5e:51:0b:d1:18:93:71:c0:72:2b:f5:cf:5c:
bd:75:c4:f0:27:14:d8:7e:f0:7a:89:7e:06:35:79:05:e8:4c:
f4:f6:fa:35:ae:a8:ef:dc:32:b4:40:c0:1f:9d:30:de:e6:f2:
3a:4d:76:6c:33:4e:75:ba:b7:a7:09:0a:0a:74:a8:e6:2e:b8:
c4:6d:43:3f:42:a7:15:71:b9:8f:77:db:25:b0:82:ba:85:db:
60:83:e6:88:48:43:7e:e0:fd:b9:82:35:7d:0c:5b:ae:23:ee:
4e:6b:af:0a:10:74:ea:25:db:ac:7c:93:64:38:a7:97:cb:f1:
c7:f3:64:ed:1a:29:58:58:dc:0c:63:5f:12:0d:05:99:53:30:
b1:e4:da:9b:8e:5c:81:1c:be:ac:0c:4c:d4:81:f1:16:74:62:
2a:3d:ee:85:56:15:4c:ad:8f:b5:29:b2:21:9e:7e:dd:86:88:
ab:61:35:a9:79:3a:fa:78:e0:95:e9:8c:b1:7c:a9:ea:98:9a:
5e:03:45:e2:5f:5b:9d:c3:1c:49:4a:db:fa:6b:40:fb:59:9f:
18:38:8d:bb:59:75:6c:dc:d6:1f:09:16:46:4a:1c:0a:65:63:
87:49:71:66:b2:64:0e:70:03:8f:ef:61:8d:2a:68:d1:bf:60:
8a:bf:07:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 27 12:43:51 2024 by rpki-client on console-ams.rpki-client.org