Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7FAdRryrv0PmCs2vXLkmsFInzoY.roa
File: 7FAdRryrv0PmCs2vXLkmsFInzoY.roa (raw, json)
Hash identifier: 1OeFM7OnFnZzlnnvFnSIyT+VsDEVylG8tYu9Hdw8BcY=
Subject key identifier: EC:50:1D:46:BC:AB:BF:43:E6:0A:CD:AF:5C:B9:26:B0:52:27:CE:86
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191FE51A383F293FFCC8CF1F7DABF1D08A9
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7FAdRryrv0PmCs2vXLkmsFInzoY.roa
Signing time: Tue 17 Sep 2024 04:50:48 +0000
ROA not before: Tue 17 Sep 2024 04:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 31.56.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Dec 2024 07:43:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fe:51:a3:83:f2:93:ff:cc:8c:f1:f7:da:bf:1d:08:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 17 04:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec501d46bcabbf43e60acdaf5cb926b05227ce86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ea:b4:a1:c0:52:6b:2a:7f:6a:10:d3:63:0d:
b7:30:37:62:5e:f5:8c:ff:8b:5c:a7:3e:f1:ab:16:
39:05:9a:2d:44:1c:77:3c:1e:af:e4:b9:bd:ab:bd:
f2:aa:10:07:6f:e9:c6:a9:a2:9a:35:62:04:b4:06:
5b:d5:dc:59:a9:bb:9a:fe:d6:55:e4:ce:f5:f5:1e:
9c:1e:b6:18:6c:38:05:b7:bf:12:37:32:ad:91:81:
cf:9f:2a:10:99:f0:f7:30:2c:80:c5:30:37:fc:16:
c3:5f:d4:e5:ac:ca:56:cd:17:ac:ae:4d:59:68:cc:
3c:88:cd:a8:28:6c:de:bb:e3:db:c4:2e:35:c6:41:
f3:cd:b6:4c:ac:16:6d:5d:6f:1f:11:ea:93:49:af:
8e:3c:e5:48:f3:a0:26:0a:a9:bd:a8:0f:de:17:aa:
13:c8:b9:83:9c:51:25:29:99:b9:22:18:72:bd:26:
25:30:51:ed:2f:ff:44:f2:97:98:69:32:10:d6:44:
33:96:13:e3:78:c9:00:f5:ed:d1:cf:97:3e:82:69:
c6:d3:24:32:14:12:26:99:fb:c3:3d:14:a5:a6:11:
4a:29:ed:36:48:f8:9c:ed:86:be:54:9a:0e:e0:be:
4a:02:a8:51:97:c6:98:a1:48:80:4c:84:d3:f1:77:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:50:1D:46:BC:AB:BF:43:E6:0A:CD:AF:5C:B9:26:B0:52:27:CE:86
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7FAdRryrv0PmCs2vXLkmsFInzoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.64.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b9:bf:75:84:00:66:ba:8d:89:c6:aa:f7:14:1e:f0:b1:63:
5f:2c:69:77:fc:2a:d4:6e:7d:c7:9c:9c:da:93:59:1a:5a:51:
6a:d5:e0:9f:e2:14:fc:89:f3:61:39:eb:e5:90:7a:39:08:e9:
25:77:1c:7f:93:10:e4:c1:78:41:17:90:98:d9:69:cf:0a:37:
d3:d0:b8:23:ce:60:1f:fe:5f:84:8d:d8:1e:e7:f7:81:69:b7:
f3:fd:89:f2:a4:e9:14:82:04:c4:a0:2d:01:0c:45:97:79:46:
5f:28:80:5d:e1:f1:05:6a:f6:23:85:f4:ee:c0:11:c3:6e:24:
ee:2b:48:94:a3:5e:9e:23:0c:e9:e0:f5:02:34:4d:f1:ef:45:
4d:c2:19:bd:1c:da:95:a9:9a:e2:9c:9b:a7:2f:84:41:8e:d4:
5b:01:a7:62:cc:73:5e:f3:04:71:b4:56:3a:88:df:25:22:73:
d5:08:93:2f:e3:50:92:a3:0b:b7:65:6c:e0:6f:a7:f9:e1:3b:
bc:11:a4:cd:21:40:8a:28:ae:08:2b:71:3c:f9:37:8e:70:01:
9f:35:fe:9b:65:7f:db:88:44:f0:17:d7:de:9a:c3:74:63:55:
d9:c0:89:ab:dd:a5:19:26:0d:78:02:1d:6f:44:e8:9c:be:f1:
39:45:8f:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZH+UaOD8pP/zIzx99q/HQipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwOTE3MDQ1MDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzUwMWQ0NmJjYWJiZjQzZTYwYWNkYWY1Y2I5MjZiMDUyMjdjZTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+q0ocBSayp/ahDTYw23MDdiXvWM
/4tcpz7xqxY5BZotRBx3PB6v5Lm9q73yqhAHb+nGqaKaNWIEtAZb1dxZqbua/tZV
5M719R6cHrYYbDgFt78SNzKtkYHPnyoQmfD3MCyAxTA3/BbDX9TlrMpWzResrk1Z
aMw8iM2oKGzeu+PbxC41xkHzzbZMrBZtXW8fEeqTSa+OPOVI86AmCqm9qA/eF6oT
yLmDnFElKZm5IhhyvSYlMFHtL/9E8peYaTIQ1kQzlhPjeMkA9e3Rz5c+gmnG0yQy
FBImmfvDPRSlphFKKe02SPic7Ya+VJoO4L5KAqhRl8aYoUiATITT8Xf1WwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOxQHUa8q79D5grNr1y5JrBSJ86GMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvN0ZBZFJyeXJ2MFBtQ3MydlhMa21zRkluem9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzhAMA0G
CSqGSIb3DQEBCwUAA4IBAQAjub91hABmuo2Jxqr3FB7wsWNfLGl3/CrUbn3HnJza
k1kaWlFq1eCf4hT8ifNhOevlkHo5COkldxx/kxDkwXhBF5CY2WnPCjfT0LgjzmAf
/l+Ejdge5/eBabfz/YnypOkUggTEoC0BDEWXeUZfKIBd4fEFavYjhfTuwBHDbiTu
K0iUo16eIwzp4PUCNE3x70VNwhm9HNqVqZrinJunL4RBjtRbAadizHNe8wRxtFY6
iN8lInPVCJMv41CSowu3ZWzgb6f54Tu8EaTNIUCKKK4IK3E8+TeOcAGfNf6bZX/b
iETwF9femsN0Y1XZwImr3aUZJg14Ah1vROicvvE5RY8e
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:07 2025 by rpki-client