Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4MSEUfpo9bYKCLqA9bgO_ofFgzc.roa
File: 4MSEUfpo9bYKCLqA9bgO_ofFgzc.roa (raw, json)
Hash identifier: ibOAiXvk6KGJ2ne69oQGZ2CEVgSuGK8pJ9+bXqzeCSg=
Subject key identifier: E0:C4:84:51:FA:68:F5:B6:0A:08:BA:80:F5:B8:0E:FE:87:C5:83:37
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193D896D1F7D9FFF4011213397330FAD481
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4MSEUfpo9bYKCLqA9bgO_ofFgzc.roa
Signing time: Wed 18 Dec 2024 07:06:22 +0000
ROA not before: Wed 18 Dec 2024 07:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4766
IP address blocks: 31.56.172.0/24 maxlen: 24
31.56.173.0/24 maxlen: 24
31.56.242.0/24 maxlen: 24
31.56.243.0/24 maxlen: 24
31.56.244.0/24 maxlen: 24
31.56.245.0/24 maxlen: 24
217.60.0.0/18 maxlen: 24
217.60.1.0/24 maxlen: 24
217.60.3.0/24 maxlen: 24
217.60.5.0/24 maxlen: 24
217.60.7.0/24 maxlen: 24
217.60.9.0/24 maxlen: 24
217.60.11.0/24 maxlen: 24
217.60.13.0/24 maxlen: 24
217.60.15.0/24 maxlen: 24
217.60.24.0/24 maxlen: 24
217.60.25.0/24 maxlen: 24
217.60.26.0/24 maxlen: 24
217.60.27.0/24 maxlen: 24
217.60.28.0/24 maxlen: 24
217.60.29.0/24 maxlen: 24
217.60.30.0/24 maxlen: 24
217.60.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d8:96:d1:f7:d9:ff:f4:01:12:13:39:73:30:fa:d4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 18 07:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0c48451fa68f5b60a08ba80f5b80efe87c58337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a0:99:a6:29:09:6f:f8:c9:c7:7f:a1:4e:8c:
d2:5e:9b:2e:3d:00:1d:e7:d5:0a:8b:94:83:96:61:
f5:f2:b5:cd:7a:65:a5:60:4a:78:0d:2c:ec:59:48:
fc:95:45:7f:9f:ca:a3:6b:45:ed:10:30:1c:20:00:
f6:f9:30:08:c3:13:ef:43:04:c6:c3:4b:88:58:8d:
a9:e3:c7:e9:24:24:ec:4f:39:1e:be:95:c8:7f:32:
d0:16:76:0e:89:59:85:10:95:d0:c5:70:53:80:1b:
d9:37:fe:66:fb:93:ec:63:2b:e9:7b:7a:54:70:5b:
ce:eb:e5:67:b9:08:73:17:0b:67:8f:e5:19:68:64:
7c:46:4a:e6:00:80:d0:52:3c:35:d0:d7:2e:4d:4a:
72:8c:47:3f:d8:f9:73:7b:e1:da:4a:6e:72:c9:ee:
59:d8:7c:6a:16:09:5e:ae:4f:ad:09:3c:b5:ab:3d:
0e:bb:f9:65:aa:82:2a:20:3b:5a:89:e3:ca:ac:c7:
3d:1c:c5:3e:e1:4a:34:c6:15:0a:6e:92:1c:6e:01:
44:07:1a:c6:66:aa:6d:b1:48:ff:79:42:80:8a:8f:
05:02:3a:1b:9c:39:91:b9:2f:b8:e3:dd:5a:4d:85:
80:35:ac:38:71:6c:7a:47:f5:79:c2:b5:1d:aa:68:
00:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C4:84:51:FA:68:F5:B6:0A:08:BA:80:F5:B8:0E:FE:87:C5:83:37
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4MSEUfpo9bYKCLqA9bgO_ofFgzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.172.0/23
31.56.242.0-31.56.245.255
217.60.0.0/18
Signature Algorithm: sha256WithRSAEncryption
bf:0a:98:3d:b4:5c:c1:1e:83:25:34:f6:7c:8b:ad:ac:d7:36:
d7:b3:c9:d4:9b:73:c3:79:dd:f4:af:4c:97:01:56:92:d6:05:
84:4a:58:cc:29:f0:b8:85:92:70:d5:12:e5:eb:84:73:37:ea:
bf:53:cf:bf:13:e1:91:1c:e1:12:94:43:04:68:06:ed:a3:1c:
c3:8f:a6:48:03:98:b0:04:43:53:32:b9:0e:45:e3:6a:d4:67:
81:f1:71:f3:49:ab:c3:a0:0a:34:4f:f4:b6:11:d1:0e:e7:51:
7e:f6:69:34:dd:84:8b:ee:e2:cd:7e:90:37:ba:f0:6b:6c:c1:
81:81:44:ab:96:f8:97:6c:ef:5b:f7:bc:36:e8:f5:e0:ff:a2:
fc:b0:5d:01:f9:cd:47:b6:02:64:3e:8d:b5:6c:c6:23:f1:c0:
f9:bc:2f:ac:7f:28:48:8a:11:ff:a8:09:72:34:99:09:8c:4e:
b8:7c:cf:46:5b:3f:54:cf:b6:05:7e:ae:67:04:e0:4a:9b:3c:
85:b1:7e:7a:37:e4:24:54:35:f6:21:92:b7:bd:ad:55:1c:64:
87:28:44:92:67:d1:20:6e:43:70:39:7b:f6:3b:4b:4f:a7:69:
c1:5f:aa:57:a1:2d:4f:e7:05:0f:32:41:3a:f3:55:ef:6d:e7:
9a:49:92:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:06 2025 by rpki-client