Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/40jOOidZBYBAf_P82hh68-XeZXw.roa
File: 40jOOidZBYBAf_P82hh68-XeZXw.roa (raw, json)
Hash identifier: 4e0BcNJuJwUs1XprdcrxB7Vs2zCLJY6zUHHwK/jn7Zs=
Subject key identifier: E3:48:CE:3A:27:59:05:80:40:7F:F3:FC:DA:18:7A:F3:E5:DE:65:7C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192C498BCB513E9C31CD5C8D0F9EED5F976
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/40jOOidZBYBAf_P82hh68-XeZXw.roa
Signing time: Fri 25 Oct 2024 16:53:17 +0000
ROA not before: Fri 25 Oct 2024 16:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 20:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c4:98:bc:b5:13:e9:c3:1c:d5:c8:d0:f9:ee:d5:f9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 25 16:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e348ce3a27590580407ff3fcda187af3e5de657c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3d:1b:1d:87:3c:7c:7e:14:57:a4:4f:eb:43:
0e:1c:0c:8b:49:25:6a:45:0d:c4:84:55:86:15:8b:
8b:8b:85:9c:74:9e:f5:47:4a:81:d3:18:c0:1e:cd:
59:99:60:9c:10:ba:0f:20:c5:6f:9c:02:61:79:4e:
6f:ab:fa:96:a3:57:0a:cc:48:a2:4c:4e:6a:94:4e:
ce:9b:bb:93:3e:31:f7:26:e5:b0:11:58:46:26:0c:
df:66:ca:1a:d8:5a:24:6e:92:ca:34:36:77:96:39:
d2:68:d4:c2:56:38:7c:7a:d0:08:60:23:da:3a:eb:
ed:56:5f:7f:1a:98:e2:b5:e5:74:cd:2d:19:bc:56:
69:61:e7:48:09:79:24:7e:4a:70:b9:1e:bf:64:62:
6a:9b:b2:b4:1d:a8:ed:f6:15:b1:88:96:7b:a6:aa:
6f:9b:5c:70:78:55:f5:bc:bf:56:fa:68:af:6a:09:
1c:96:cf:ad:54:df:10:d0:87:7a:b5:8c:a0:56:de:
75:a1:67:b4:ec:00:06:e2:ec:97:19:be:ee:28:13:
8b:c2:fd:2c:6f:82:3a:cc:a1:87:97:59:ad:9c:3c:
f6:64:7b:e8:5f:00:b2:88:bc:c7:b6:67:a8:ae:76:
11:0d:1f:7d:e2:18:0f:50:45:bd:03:6c:6c:0e:6f:
ec:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:48:CE:3A:27:59:05:80:40:7F:F3:FC:DA:18:7A:F3:E5:DE:65:7C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/40jOOidZBYBAf_P82hh68-XeZXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
10:11:e4:ba:37:05:4e:2b:61:ab:bf:1c:fe:c3:de:13:a5:5e:
b4:83:ec:61:c3:00:91:31:c1:91:53:e1:d0:16:b0:c9:f0:2b:
fa:93:64:ba:15:46:f4:2b:d0:fd:ac:92:1e:23:0e:7e:92:d3:
c1:6b:7d:71:8e:e3:1e:75:54:50:b2:1c:96:d6:fc:10:6b:c7:
2d:19:49:b1:6c:a1:e0:bf:e6:3e:c7:65:bb:1d:46:56:3a:4f:
b0:da:34:ad:e0:34:42:07:7a:b8:f4:f4:6e:20:e2:7a:dd:df:
ca:48:af:42:30:31:af:da:9a:1a:84:de:07:66:86:a6:65:ac:
3a:3a:d1:dd:6d:93:ca:be:eb:f3:3c:d1:c0:52:1a:ef:e1:4d:
4d:d7:12:09:7f:fd:a9:3a:2e:c9:cf:2b:0f:b0:e7:e2:fa:0a:
8e:96:86:b0:4b:ec:9c:d2:a5:09:a7:07:74:97:29:e7:87:5b:
c9:76:2b:9d:63:52:68:03:d9:00:05:4b:86:90:3e:c3:48:08:
12:58:55:35:24:36:b6:30:5c:42:63:29:a6:1c:6b:8b:d4:87:
dd:ac:ca:f2:75:e6:c2:46:ce:ec:35:06:83:cc:50:e3:3a:4f:
30:25:7b:ea:1d:83:a5:ca:fb:e2:95:62:b9:80:df:e3:75:14:
11:cb:63:20
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgISAZLEmLy1E+nDHNXI0Pnu1fl2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDI1MTY1MzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ4Y2UzYTI3NTkwNTgwNDA3ZmYzZmNkYTE4N2FmM2U1ZGU2NTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvD0bHYc8fH4UV6RP60MOHAyLSSVq
RQ3EhFWGFYuLi4WcdJ71R0qB0xjAHs1ZmWCcELoPIMVvnAJheU5vq/qWo1cKzEii
TE5qlE7Om7uTPjH3JuWwEVhGJgzfZsoa2FokbpLKNDZ3ljnSaNTCVjh8etAIYCPa
OuvtVl9/GpjiteV0zS0ZvFZpYedICXkkfkpwuR6/ZGJqm7K0Hajt9hWxiJZ7pqpv
m1xweFX1vL9W+mivagkcls+tVN8Q0Id6tYygVt51oWe07AAG4uyXGb7uKBOLwv0s
b4I6zKGHl1mtnDz2ZHvoXwCyiLzHtmeornYRDR994hgPUEW9A2xsDm/s4wIDAQAB
o4ICTjCCAkowHQYDVR0OBBYEFONIzjonWQWAQH/z/NoYevPl3mV8MB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvNDBqT09pZFpCWUJBZl9QODJoaDY4LVhlWlh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBRBAIAATBLAwQBHzgEAwQA
HzgnAwQBHzgqAwQAHzhCAwQAHzhVAwQAHzhZMAwDBAQfOHADBAIfOHgwCwMDAB85
AwQBHzkIAwQBHzmEAwQDHzmwMA0GCSqGSIb3DQEBCwUAA4IBAQAQEeS6NwVOK2Gr
vxz+w94TpV60g+xhwwCRMcGRU+HQFrDJ8Cv6k2S6FUb0K9D9rJIeIw5+ktPBa31x
juMedVRQshyW1vwQa8ctGUmxbKHgv+Y+x2W7HUZWOk+w2jSt4DRCB3q49PRuIOJ6
3d/KSK9CMDGv2poahN4HZoamZaw6OtHdbZPKvuvzPNHAUhrv4U1N1xIJf/2pOi7J
zysPsOfi+gqOloawS+yc0qUJpwd0lynnh1vJdiudY1JoA9kABUuGkD7DSAgSWFU1
JDa2MFxCYymmHGuL1IfdrMrydebCRs7sNQaDzFDjOk8wJXvqHYOlyvvilWK5gN/j
dRQRy2Mg
-----END CERTIFICATE-----
Generated at Wed Oct 30 21:37:28 2024 by rpki-client on console-fra.rpki-client.org