Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7wltPU11lvjhSXbBj2AlJ13REtc.roa
File: 7wltPU11lvjhSXbBj2AlJ13REtc.roa (raw, json)
Hash identifier: hUNqZ95b20WDDanE+hCeRulDlVsWfmbLJPgAugdjYAI=
Subject key identifier: EF:09:6D:3D:4D:75:96:F8:E1:49:76:C1:8F:60:25:27:5D:D1:12:D7
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195CD71EC89BCF96363A51704D1AE05E286
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7wltPU11lvjhSXbBj2AlJ13REtc.roa
Signing time: Tue 25 Mar 2025 13:15:50 +0000
ROA not before: Tue 25 Mar 2025 13:15:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 31.56.42.0/23 maxlen: 23
31.58.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 17:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:cd:71:ec:89:bc:f9:63:63:a5:17:04:d1:ae:05:e2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 25 13:15:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef096d3d4d7596f8e14976c18f6025275dd112d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bf:ef:6e:66:23:8d:ed:fa:8c:fd:e2:f2:56:
7a:c5:57:ee:a1:26:7e:f3:db:54:71:6f:31:83:71:
a2:be:e4:a5:84:5e:b1:75:8a:72:a5:f9:68:82:be:
a0:52:07:69:96:00:42:b0:2b:35:ba:1c:18:0f:5c:
b1:cf:58:62:f5:f0:6e:78:12:09:92:b6:5e:04:51:
ef:11:b0:ab:21:d7:7a:77:6e:95:07:b0:5b:a3:dd:
79:5f:32:de:dd:be:52:de:7f:60:bf:41:b4:b6:7e:
97:e1:ce:37:5b:99:48:ab:72:b1:df:7f:82:2e:90:
ab:5c:a3:9a:45:53:a0:3d:22:a8:bd:2c:ae:0a:29:
b8:8c:f5:9c:f2:57:44:17:04:97:ac:58:6f:41:b7:
8b:bf:fc:df:f4:8b:c1:1c:f4:23:9d:b6:89:50:db:
02:92:7d:11:97:05:cf:d5:5a:ac:7f:e1:f8:44:12:
03:80:e3:bd:61:5f:f9:75:85:56:e6:12:83:8e:ac:
3c:a6:a5:19:2e:bf:16:3f:b3:60:4f:c3:7f:83:ef:
f2:40:5d:40:b9:22:9a:b5:ee:59:0f:e5:46:9f:55:
99:c5:84:7d:1b:96:1a:e0:61:92:ad:8c:e0:45:c6:
1f:56:00:68:1d:64:a8:8a:00:e1:fe:dd:c1:6f:5c:
18:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:09:6D:3D:4D:75:96:F8:E1:49:76:C1:8F:60:25:27:5D:D1:12:D7
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7wltPU11lvjhSXbBj2AlJ13REtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.42.0/23
31.58.87.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c0:bc:d2:3b:ad:85:9b:a0:86:da:35:cb:17:ea:cf:bd:d7:
0a:4a:d7:d4:f8:50:31:4b:aa:a6:e9:a5:d1:20:32:33:71:f4:
1c:4c:24:82:2c:03:ae:10:63:01:c0:91:f5:04:16:3f:39:13:
2c:94:fa:75:4b:d1:a3:c7:42:a5:ae:48:24:7f:f2:08:01:83:
a3:a7:fb:a7:a7:82:9f:4b:8a:42:ae:4f:06:45:56:c8:51:6e:
11:9a:49:4b:8a:63:80:9a:91:9b:a7:1b:cf:31:80:94:9c:fb:
98:e0:98:54:e9:87:b1:b3:84:54:66:7d:4c:e4:77:07:ad:79:
6a:74:de:13:76:7a:f4:f2:46:d9:5b:08:88:7a:e5:c3:95:4b:
a7:13:76:75:0d:e2:5a:ac:87:2b:8b:65:93:74:19:1d:12:d3:
de:8b:68:04:39:36:da:16:ec:97:07:eb:75:13:7c:34:ce:a0:
13:2e:ff:0c:10:3f:a6:45:26:78:ae:8b:9d:13:6c:6f:05:39:
30:d2:e3:ca:c2:b3:49:2c:02:8a:27:80:1d:15:f2:89:70:95:
b8:2a:9b:b1:9c:fa:72:97:0c:28:f1:09:57:64:4c:68:02:38:
11:f4:8b:11:9e:64:2b:89:d1:fc:31:8c:08:64:6a:c2:6f:26:
df:c5:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 09:56:57 2025 by rpki-client