Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5VY-fj9G0GgEyEdCBbLn4Tlo2jM.roa
File: 5VY-fj9G0GgEyEdCBbLn4Tlo2jM.roa (raw, json)
Hash identifier: mohcAKE0qnhDuRYcyOTV/mPdjrYr35Iz0wcpJTzOi5M=
Subject key identifier: E5:56:3E:7E:3F:46:D0:68:04:C8:47:42:05:B2:E7:E1:39:68:DA:33
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191E491D872268ACF2EEF0F620F6752D411
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5VY-fj9G0GgEyEdCBbLn4Tlo2jM.roa
Signing time: Thu 12 Sep 2024 04:50:48 +0000
ROA not before: Thu 12 Sep 2024 04:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.45.0/24 maxlen: 24
31.56.65.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 17:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e4:91:d8:72:26:8a:cf:2e:ef:0f:62:0f:67:52:d4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 12 04:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5563e7e3f46d06804c8474205b2e7e13968da33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:97:9c:7a:04:c5:d1:17:45:ad:b8:e3:0a:2f:
82:95:63:f3:c5:e5:91:a8:ed:2d:ed:e2:ea:38:17:
c6:5c:e5:bd:03:db:1f:65:86:d5:44:9b:20:7e:36:
1d:88:b0:12:13:8b:56:a4:9e:f7:ea:ea:85:54:bc:
a9:41:c7:66:1b:99:02:09:3f:7a:de:2c:6f:f1:ee:
be:19:40:c5:a1:47:16:4c:dd:ef:db:52:81:81:e7:
1f:8b:d3:1b:28:ec:cc:2f:a9:14:3f:ab:ad:38:c3:
c6:0c:3f:f6:a3:cf:d7:5c:39:d1:95:a4:bd:f5:1d:
dd:04:10:30:c8:09:fc:98:42:45:67:5d:9e:9d:1d:
f6:1b:4f:17:22:05:17:8f:2d:2c:97:d1:50:c6:5e:
9d:1d:0f:45:80:73:4a:ff:1b:56:9a:55:c1:ec:fe:
83:46:f1:55:88:eb:ae:4f:34:32:7d:ef:57:9e:dc:
c9:62:7f:ec:ba:96:48:d4:eb:c3:13:07:e1:87:0d:
6c:91:a8:4c:30:35:1a:69:c9:94:27:03:ff:47:ff:
c6:5a:41:06:10:17:80:2d:b1:8f:d4:8a:af:42:84:
f8:42:0e:66:ee:4d:92:7e:b0:c3:10:b3:75:c2:5a:
5d:f6:c3:10:7a:83:f0:f0:c3:68:08:40:ce:1f:95:
00:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:56:3E:7E:3F:46:D0:68:04:C8:47:42:05:B2:E7:E1:39:68:DA:33
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5VY-fj9G0GgEyEdCBbLn4Tlo2jM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.45.0/24
31.56.65.0/24
31.56.67.0/24
31.56.89.0/24
31.56.112.0/21
31.56.126.0/24
31.56.147.0/24
31.57.150.0/24
Signature Algorithm: sha256WithRSAEncryption
24:db:86:db:75:fe:1e:c5:85:2d:fb:65:d0:eb:47:3e:61:a7:
69:00:08:a4:99:72:49:ef:42:bc:99:d5:6f:c9:cc:e3:bf:11:
59:14:e5:c3:b1:b1:c9:36:d8:9e:03:b1:3b:00:7d:9b:62:73:
d8:19:83:0a:04:77:58:2b:79:4d:1b:1a:7b:3f:17:8f:d3:02:
67:11:e5:9e:60:39:f0:6d:63:9e:bf:76:6f:a9:1d:cc:1d:d0:
1f:84:87:2e:d7:a8:76:04:14:58:7f:75:9e:2d:31:5f:b1:4f:
33:5d:ae:85:f1:7f:67:e4:6c:6e:cd:49:25:5b:3e:97:81:e4:
cb:3b:66:3a:93:5d:2c:b7:75:03:94:9b:f1:94:84:39:58:f8:
65:06:e2:f5:bf:56:6c:67:ac:66:73:cd:cd:9c:2c:30:24:f5:
ba:56:e9:da:43:86:52:3d:b6:30:58:96:28:17:f7:06:22:09:
42:d2:b3:d8:43:4b:0c:ff:f7:2e:cb:d3:be:28:bd:fd:02:1c:
aa:da:a7:c4:e7:de:8c:ed:a9:ca:1a:fd:b3:e0:4c:e4:c9:f5:
bd:6d:5b:d7:45:4d:c7:10:2a:77:f4:09:c2:e8:c5:65:39:fc:
04:82:66:c2:c5:15:2e:99:c3:78:23:97:a3:6f:dc:64:ed:30:
cd:b1:44:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 20:43:35 2024 by rpki-client on console-ams.rpki-client.org