Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7lIIOiSHAMkMaok5mB9E2vekSK0.roa
File: 7lIIOiSHAMkMaok5mB9E2vekSK0.roa (raw, json)
Hash identifier: DtHqCoBXJwBRnEHXcZ7bNmfn1XBvZa/ytGq+veX1MGo=
Subject key identifier: EE:52:08:3A:24:87:00:C9:0C:6A:89:39:98:1F:44:DA:F7:A4:48:AD
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193D89410E8A2A76EF42CDEC5D8DEA99C95
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7lIIOiSHAMkMaok5mB9E2vekSK0.roa
Signing time: Wed 18 Dec 2024 07:03:22 +0000
ROA not before: Wed 18 Dec 2024 07:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44382
IP address blocks: 31.56.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d8:94:10:e8:a2:a7:6e:f4:2c:de:c5:d8:de:a9:9c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 18 07:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee52083a248700c90c6a8939981f44daf7a448ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a1:7a:be:5e:78:4d:9e:35:79:f1:bd:a8:31:
c1:e9:ad:ea:49:97:5a:a2:36:bd:27:f9:1e:99:25:
86:4c:49:47:46:bf:a0:43:ec:b7:fa:ed:1b:8d:a0:
82:e8:5d:bc:ad:a1:06:8a:12:47:4a:2a:ad:78:aa:
6f:70:09:7c:42:da:40:56:72:3c:35:5c:4d:fa:b0:
65:7b:4b:51:6f:a4:3f:48:30:42:94:4c:3b:89:92:
e0:b1:e3:e1:96:22:4e:6a:4b:3d:a0:f2:0b:dc:f5:
5a:a4:b9:e3:20:20:34:fe:d2:9b:94:03:de:e0:fc:
f8:06:8e:28:bc:74:b8:5c:f6:01:ca:90:e2:96:45:
4f:81:44:9b:5a:2a:0a:bb:3c:50:e1:7a:fc:b3:dd:
ab:77:f4:1c:14:bb:64:9c:e6:b3:d8:a7:f2:54:17:
e9:07:cc:01:97:0a:95:e3:58:a6:e6:22:6b:b5:ee:
88:90:1d:3c:c8:df:b0:2a:b2:66:f2:79:40:b2:e6:
10:51:98:47:68:bf:b7:f1:10:4c:bd:8e:a9:18:8b:
a9:68:e4:8d:e1:ca:05:92:f8:ab:bf:09:0a:70:a5:
7c:84:e6:e9:3e:be:26:d4:56:ef:0c:87:6c:87:55:
23:74:21:51:af:56:18:2e:77:82:03:00:79:2e:16:
e0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:52:08:3A:24:87:00:C9:0C:6A:89:39:98:1F:44:DA:F7:A4:48:AD
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7lIIOiSHAMkMaok5mB9E2vekSK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.85.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:1b:9a:7e:ad:20:12:26:d5:ca:9f:96:a5:61:16:5d:91:f5:
5e:db:83:cb:5a:f2:8d:75:98:41:97:1a:27:dc:fb:5a:12:f7:
12:ad:57:7d:2d:bb:e0:17:6d:56:e9:b3:15:e2:44:42:b7:98:
0c:8a:dd:7e:8a:96:d8:d0:fc:97:9d:0d:68:6a:13:1f:35:10:
ef:77:ce:ee:0e:7d:fe:28:14:10:20:83:38:03:b8:5a:1b:3c:
08:a5:6e:3f:d2:6e:17:8c:c6:07:18:08:2e:f2:1c:a0:5b:32:
20:b9:dc:d7:ff:72:45:93:0d:e4:ea:5c:dc:9a:98:a7:b3:0f:
1e:b5:9f:48:77:2c:fa:a6:3e:b3:c1:ab:86:cf:0f:f0:e9:35:
8d:c5:bb:9a:54:8d:8e:32:68:6f:27:67:cf:07:17:bf:ca:ab:
68:6b:86:71:ca:91:36:e4:62:cf:ea:af:ab:f9:ef:30:bf:6a:
69:3e:97:e9:32:17:a6:06:24:a3:18:ab:d2:11:4a:41:2c:ba:
1a:79:30:37:3a:1c:ed:39:2f:8e:1c:c6:5d:d3:76:de:38:01:
92:e5:2b:9c:f7:7a:cb:b6:5e:ac:07:1a:70:3a:76:75:58:04:
45:29:72:a3:55:2a:f6:4e:57:c0:a6:60:82:06:e6:61:31:ce:
f3:a7:dc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:42 2025 by rpki-client