Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5Zv81kGdB9fObiFUi_rQOMYCMxk.roa
File: 5Zv81kGdB9fObiFUi_rQOMYCMxk.roa (raw, json)
Hash identifier: yZB2s5J8vAZXlu7j7G/3Hr6FqOVFYiUCDDMtqlkO8lU=
Subject key identifier: E5:9B:FC:D6:41:9D:07:D7:CE:6E:21:54:8B:FA:D0:38:C6:02:33:19
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192D979972BF9A8BB1A3B29A6B91955431C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5Zv81kGdB9fObiFUi_rQOMYCMxk.roa
Signing time: Tue 29 Oct 2024 18:11:17 +0000
ROA not before: Tue 29 Oct 2024 18:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.58.49.0/24 maxlen: 24
31.58.59.0/24 maxlen: 24
31.58.129.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.124.0/22 maxlen: 22
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.184.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 19:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:79:97:2b:f9:a8:bb:1a:3b:29:a6:b9:19:55:43:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 29 18:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e59bfcd6419d07d7ce6e21548bfad038c6023319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e9:4c:8c:9a:e7:84:33:0e:07:ea:17:f3:69:
c8:31:80:6b:57:b3:4e:a3:68:49:d1:d8:93:e1:86:
06:a3:74:aa:78:f0:da:c8:11:ff:b7:07:e8:2f:7b:
25:a2:84:1f:74:4a:a1:72:67:67:bc:d7:29:95:51:
d2:40:81:35:f9:a0:df:f4:9e:06:9d:9b:00:7c:5e:
d5:f5:6b:06:0b:c2:7f:11:32:78:ba:81:dd:5d:7b:
70:05:66:0d:73:7c:bd:70:c1:3e:71:70:bc:5a:b2:
03:ac:b1:37:9c:c9:f8:65:e2:f1:6b:e6:2b:25:8d:
07:c1:79:a7:73:c1:a1:3f:fb:4c:7b:a2:45:6c:82:
3d:f0:c8:89:66:43:a6:9d:dc:3e:2a:ef:3b:8e:dd:
37:4f:5e:6b:b2:ec:b0:d3:de:3a:fb:c7:0f:05:09:
0c:62:76:16:ab:21:44:52:c1:22:fa:0b:5d:33:2f:
cd:67:47:f6:20:02:b5:ee:4e:14:30:47:09:26:06:
fe:83:c8:7d:51:d0:d9:ff:20:20:44:f1:8d:31:89:
07:a5:bf:dd:8e:ce:55:62:36:be:bb:bd:81:4d:38:
8b:b9:2f:c9:68:67:99:01:cb:1d:47:41:f4:d7:39:
62:95:ff:c9:59:db:b6:c7:e9:6b:5b:4e:b6:c0:d7:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9B:FC:D6:41:9D:07:D7:CE:6E:21:54:8B:FA:D0:38:C6:02:33:19
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5Zv81kGdB9fObiFUi_rQOMYCMxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.178.0/23
31.57.181.0-31.57.183.255
31.58.49.0/24
31.58.59.0/24
31.58.129.0/24
31.58.146.0/24
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.64.0/22
31.59.80.0/22
31.59.96.0/22
31.59.112.0/22
31.59.124.0/22
31.59.176.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
64:23:dc:c5:d6:a1:21:24:ac:f9:43:10:d8:02:4f:cf:f0:f9:
40:e2:e1:84:5e:e3:32:d1:17:8a:86:42:50:ba:26:60:92:a8:
d8:e5:78:b0:a5:26:a4:65:54:5e:1c:4d:a9:3c:b2:46:36:a7:
35:a6:6b:70:a6:d7:39:b4:c3:95:17:1f:dc:0d:64:5b:f8:99:
55:d2:4c:25:0c:dc:95:d6:bb:09:6a:95:a3:9b:19:c9:c7:a7:
51:cc:d3:4d:f4:5c:63:27:e8:81:d6:1e:d1:0e:59:3f:9d:48:
b3:db:8b:9b:ec:e7:7a:16:9a:97:1d:81:4a:2e:cc:8c:26:48:
02:0a:62:0f:43:68:ea:64:46:cf:6e:e0:e3:cf:3b:22:7c:d4:
1b:3d:3e:01:34:a3:12:7a:f0:e2:1c:47:1b:c0:34:4d:cf:09:
07:81:f8:26:1e:2d:4b:5a:67:83:0e:d4:c9:fb:a0:e0:4b:4e:
2a:ce:2d:b2:28:9b:29:ce:b4:6f:c0:c2:ee:11:71:5b:4c:b0:
4d:a8:df:ba:d1:69:41:d3:e6:50:dc:ab:15:5b:91:8f:14:49:
30:b9:44:51:29:7c:d0:63:76:32:7b:c5:eb:9c:14:cc:ab:d5:
e6:2e:6c:5d:4e:b4:52:3b:90:53:47:b5:99:99:45:37:a8:22:
75:c2:05:af
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAZLZeZcr+ai7GjspprkZVUMcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDI5MTgxMTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTliZmNkNjQxOWQwN2Q3Y2U2ZTIxNTQ4YmZhZDAzOGM2MDIzMzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlulMjJrnhDMOB+oX82nIMYBrV7NO
o2hJ0diT4YYGo3SqePDayBH/twfoL3slooQfdEqhcmdnvNcplVHSQIE1+aDf9J4G
nZsAfF7V9WsGC8J/ETJ4uoHdXXtwBWYNc3y9cME+cXC8WrIDrLE3nMn4ZeLxa+Yr
JY0HwXmnc8GhP/tMe6JFbII98MiJZkOmndw+Ku87jt03T15rsuyw0946+8cPBQkM
YnYWqyFEUsEi+gtdMy/NZ0f2IAK17k4UMEcJJgb+g8h9UdDZ/yAgRPGNMYkHpb/d
js5VYja+u72BTTiLuS/JaGeZAcsdR0H01zlilf/JWdu2x+lrW062wNdEPQIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFOWb/NZBnQfXzm4hVIv60DjGAjMZMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvNVp2ODFrR2RCOWZPYmlGVWlfclFPTVlDTXhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjCBowQCAAEwgZwDBAAf
OQsDBAAfOYMDBAAfOZYDBAAfObADBAEfObIwDAMEAB85tQMEAx85sAMEAB86MQME
AB86OwMEAB86gQMEAB86kgMEAB87KTAMAwQDHzs4AwQAHzs6AwQCHztAAwQCHztQ
AwQCHztgAwQCHztwAwQCHzt8MAwDBAQfO7ADBAIfO8ADBAIfO9gDBAEfO+QDBAAf
O+cDBAEfO/QwDQYJKoZIhvcNAQELBQADggEBAGQj3MXWoSEkrPlDENgCT8/w+UDi
4YRe4zLRF4qGQlC6JmCSqNjleLClJqRlVF4cTak8skY2pzWma3Cm1zm0w5UXH9wN
ZFv4mVXSTCUM3JXWuwlqlaObGcnHp1HM0030XGMn6IHWHtEOWT+dSLPbi5vs53oW
mpcdgUouzIwmSAIKYg9DaOpkRs9u4OPPOyJ81Bs9PgE0oxJ68OIcRxvANE3PCQeB
+CYeLUtaZ4MO1Mn7oOBLTirOLbIomynOtG/Awu4RcVtMsE2o37rRaUHT5lDcqxVb
kY8USTC5RFEpfNBjdjJ7xeucFMyr1eYubF1OtFI7kFNHtZmZRTeoInXCBa8=
-----END CERTIFICATE-----
Generated at Wed Oct 30 22:19:28 2024 by rpki-client on console-ams.rpki-client.org