Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8LVnQ_0maPj-MBHHgK89_PFI4rI.roa
File: 8LVnQ_0maPj-MBHHgK89_PFI4rI.roa (raw, json)
Hash identifier: jwa6rI0NsvdENZU6Sn6bnYlkBTc+Z3HtHxC9Bf1kgbI=
Subject key identifier: F0:B5:67:43:FD:26:68:F8:FE:30:11:C7:80:AF:3D:FC:F1:48:E2:B2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019402601E60E801E160DE29EF191A318FFB
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8LVnQ_0maPj-MBHHgK89_PFI4rI.roa
Signing time: Thu 26 Dec 2024 09:50:41 +0000
ROA not before: Thu 26 Dec 2024 09:50:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.16.0/22 maxlen: 22
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.147.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.152.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.152.0/22 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.42.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.130.0/24 maxlen: 24
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.184.0/22 maxlen: 24
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 14:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:02:60:1e:60:e8:01:e1:60:de:29:ef:19:1a:31:8f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 26 09:50:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0b56743fd2668f8fe3011c780af3dfcf148e2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ad:98:12:50:40:9e:a0:9a:26:11:f7:e9:9f:
ac:88:83:a8:48:49:18:b6:3d:f3:f9:2a:cb:36:dd:
63:3b:56:33:64:b5:8b:eb:5e:b7:b1:7f:6d:70:04:
44:d9:4f:e3:82:a0:df:12:ef:a2:6a:71:f4:7f:1b:
d7:fb:f9:9d:d1:c8:13:7f:09:e6:bd:1b:7a:80:28:
dc:76:aa:5b:80:78:51:3c:ec:61:16:87:25:b2:12:
66:d0:7d:a3:9a:fd:48:0e:ad:7a:ac:93:cd:ef:f0:
9d:73:0b:a9:b4:3f:9e:0d:2c:dd:0b:3c:39:45:3e:
e3:ee:94:eb:d7:86:bd:30:88:af:63:e8:be:7d:0c:
fd:be:95:ed:5c:46:7f:4f:ca:0b:e5:73:24:2d:e7:
eb:16:7e:be:ae:47:51:51:32:5f:14:1b:ef:1e:a7:
47:2a:51:45:13:ed:99:73:c4:a2:71:74:da:74:22:
ae:a9:a2:27:51:75:22:84:65:17:11:af:1f:4d:9b:
a0:62:b5:90:a4:4a:fe:c8:7e:11:c4:25:e6:c1:2d:
8b:54:aa:63:35:f6:a2:71:73:ba:55:43:a3:49:96:
85:98:8f:65:34:2f:05:41:b1:d7:53:c1:a3:c6:66:
a0:b2:e3:8a:7d:67:10:ce:a5:c7:8f:9e:06:25:af:
09:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B5:67:43:FD:26:68:F8:FE:30:11:C7:80:AF:3D:FC:F1:48:E2:B2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8LVnQ_0maPj-MBHHgK89_PFI4rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.16.0/22
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.71.0/24
31.56.74.0/23
31.56.89.0/24
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.57.132.0/23
31.57.146.0/23
31.57.151.0-31.57.152.255
31.57.176.0/21
31.57.192.0/22
31.57.200.0/23
31.57.208.0/20
31.57.232.0/22
31.58.34.0/23
31.58.152.0/22
31.59.41.0-31.59.43.255
31.59.56.0-31.59.58.255
31.59.96.0/22
31.59.112.0/22
31.59.130.0/24
31.59.176.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:8d:d8:f8:b1:af:89:2a:7c:06:7b:bb:e2:be:9c:3f:c0:00:
3a:50:0e:12:53:91:9a:d3:22:d3:06:92:b2:af:f9:35:b3:7d:
ad:3b:88:2b:6a:8e:0d:96:a7:1f:59:8e:a3:d5:a9:bc:d0:48:
6f:7d:40:2f:1e:1a:70:3d:25:48:47:fd:91:c1:95:c7:3d:ae:
78:a8:db:f9:1f:ba:92:e3:39:d2:4e:e5:40:11:7e:53:a0:2b:
2d:78:82:71:74:29:c4:39:ba:e4:bd:fb:16:d3:b0:5c:c1:f5:
48:81:cf:a9:f0:d3:8c:a4:ee:0c:85:cf:06:90:e6:04:26:7c:
8c:eb:95:07:89:9d:98:59:ab:a2:bc:c2:19:6b:9a:eb:78:19:
7e:f9:a4:a8:52:9e:7a:ff:bb:d8:56:69:79:4a:65:5a:b6:35:
e7:27:8a:5d:16:ef:7d:de:bd:28:16:17:19:f7:97:25:43:7a:
d9:b1:5b:71:58:80:2f:ca:86:89:e0:40:a4:16:8c:ac:37:88:
23:6a:db:c9:ae:f1:8d:70:33:14:6a:27:bd:b0:4f:26:1b:87:
a3:8e:3b:1f:45:11:80:c8:f5:8a:aa:83:30:97:5a:ac:68:90:
f4:35:e9:c0:42:70:75:a4:d8:68:c4:9c:cb:b0:ea:d9:5b:60:
5b:c7:ac:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:07 2025 by rpki-client