Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7pYDNiaO8UUrLG-fh0myTyg2kT0.roa
File: 7pYDNiaO8UUrLG-fh0myTyg2kT0.roa (raw, json)
Hash identifier: gLR4w251r0T/mzac+ecm1M8EvdRjXetKf0ixtQ5q/cc=
Subject key identifier: EE:96:03:36:26:8E:F1:45:2B:2C:6F:9F:87:49:B2:4F:28:36:91:3D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019439F7A8BC81FCDBD9556971CE7A6FEEC3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7pYDNiaO8UUrLG-fh0myTyg2kT0.roa
Signing time: Mon 06 Jan 2025 04:55:19 +0000
ROA not before: Mon 06 Jan 2025 04:55:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 31.56.112.0/21 maxlen: 24
31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.194.0/24 maxlen: 24
31.58.59.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.59.14.0/24 maxlen: 24
31.59.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Jan 2025 10:57:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:39:f7:a8:bc:81:fc:db:d9:55:69:71:ce:7a:6f:ee:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 6 04:55:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee960336268ef1452b2c6f9f8749b24f2836913d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:30:12:3a:f2:21:bd:1d:fc:a9:af:38:67:d7:
6c:88:35:a1:78:60:66:a5:18:e7:4f:35:6a:77:9d:
93:2b:75:10:ce:67:d2:9b:42:db:1c:48:8f:20:3a:
ce:b5:4d:81:b1:c4:fc:cb:9a:02:9d:0a:83:c1:3b:
b1:91:45:fb:ac:2c:39:a4:16:2c:95:56:93:fb:6c:
af:91:fd:11:23:41:b6:43:f3:66:19:b4:6c:db:34:
05:be:70:fa:e9:1e:57:4e:50:0c:71:4f:bf:43:f0:
b6:f4:bc:8d:59:16:dc:94:57:e5:73:70:2d:a3:10:
7a:72:e2:2a:8d:16:61:25:3c:6f:96:25:6c:c2:58:
85:87:73:6d:3c:5a:92:51:fb:03:63:58:02:fc:e8:
ab:df:b6:3c:09:9c:b9:3f:a8:d0:f0:c9:3b:f1:77:
3f:e2:f4:a4:ba:c9:86:a9:c0:7d:78:f7:2a:8c:e0:
e5:5f:25:d4:f5:2d:11:28:9b:d5:d2:87:23:60:66:
6a:dc:ff:d8:17:40:10:4e:8a:09:6d:34:d0:ac:ef:
ff:c2:90:f8:ff:07:77:6b:1e:07:19:76:ce:31:de:
74:d8:21:15:4a:05:91:a4:3a:dd:ad:e8:e7:e5:6c:
69:85:1a:22:ef:9d:3b:19:4e:f5:8f:18:11:68:1c:
6e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:03:36:26:8E:F1:45:2B:2C:6F:9F:87:49:B2:4F:28:36:91:3D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7pYDNiaO8UUrLG-fh0myTyg2kT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.112.0/21
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.194.0/24
31.58.59.0/24
31.58.146.0/24
31.59.14.0/24
31.59.30.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:df:7e:9a:82:ef:9c:14:2a:e3:e9:cd:0e:98:4f:c9:5a:e0:
36:e1:56:6b:b9:32:01:63:c2:e4:a2:5c:19:67:84:20:98:f4:
6f:9b:a0:20:ac:c0:d5:93:18:13:fc:30:98:bc:e0:27:3a:3d:
34:24:3d:21:a3:76:64:36:93:8e:b3:f9:a2:35:03:a9:85:0b:
5a:ce:5c:f3:bf:12:63:a1:9b:41:69:ac:36:19:71:4b:82:e0:
e7:b9:7d:66:4c:8a:28:67:1b:ac:bf:c6:cd:20:78:77:b2:a1:
ad:3c:fb:ea:0c:d9:9d:19:65:81:4a:08:13:d3:6f:f7:c4:3a:
d1:d6:56:59:0a:1a:96:70:56:6e:db:cd:44:2b:1e:ef:d0:89:
17:aa:da:a5:b8:44:0d:3a:14:a8:8f:dd:9a:29:66:94:79:8a:
d7:b7:e7:cb:2b:90:a3:cb:4a:2a:e8:b3:c3:8c:18:8c:9d:d2:
47:79:94:a1:1c:4e:50:ce:8f:15:7a:e9:2d:b3:53:0d:f5:d5:
60:6f:4f:41:af:d1:ad:ee:ab:8b:01:5b:ea:be:27:25:5c:e7:
cc:da:88:a5:34:26:03:08:5f:23:51:30:d2:21:d9:44:57:07:
ef:c0:f6:10:1f:30:00:6a:7d:6d:d6:34:f0:96:a1:01:af:ee:
3e:6d:d1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:42 2025 by rpki-client