Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8oWc46iluqlr2ME2rk8via-yQJ0.roa
File: 8oWc46iluqlr2ME2rk8via-yQJ0.roa (raw, json)
Hash identifier: G5uv6sG3BitEzyfkoF4D7LtzX5cYqAg9BDRptg71XzA=
Subject key identifier: F2:85:9C:E3:A8:A5:BA:A9:6B:D8:C1:36:AE:4F:2F:89:AF:B2:40:9D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019397973DAC2AED4AD4ED5738C689C2A362
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8oWc46iluqlr2ME2rk8via-yQJ0.roa
Signing time: Thu 05 Dec 2024 16:11:31 +0000
ROA not before: Thu 05 Dec 2024 16:11:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.16.0/22 maxlen: 24
31.57.20.0/22 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.58.196.0/22 maxlen: 24
31.58.204.0/22 maxlen: 24
31.58.208.0/24 maxlen: 24
31.58.209.0/24 maxlen: 24
31.58.212.0/22 maxlen: 24
31.58.220.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
217.60.0.0/18 maxlen: 24
217.60.1.0/24 maxlen: 24
217.60.5.0/24 maxlen: 24
217.60.11.0/24 maxlen: 24
217.60.13.0/24 maxlen: 24
217.60.24.0/24 maxlen: 24
217.60.25.0/24 maxlen: 24
217.60.26.0/24 maxlen: 24
217.60.27.0/24 maxlen: 24
217.60.245.0/24 maxlen: 24
217.60.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Dec 2024 13:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:97:97:3d:ac:2a:ed:4a:d4:ed:57:38:c6:89:c2:a3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 5 16:11:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2859ce3a8a5baa96bd8c136ae4f2f89afb2409d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:ae:eb:8b:32:b5:66:3b:f3:e1:b1:58:e7:
b2:57:83:13:25:c9:cd:31:5f:cc:a2:f5:e6:02:59:
6e:3e:48:7c:23:a7:33:ae:e1:21:1d:d8:7b:d3:3a:
f7:4c:fa:90:57:e5:06:45:35:d2:fa:0b:08:83:a1:
d6:21:d9:ee:fa:98:63:09:57:fa:f8:3b:24:4e:ba:
a3:ca:72:59:e8:51:01:5f:21:02:d0:6f:ed:a3:51:
fd:f3:f6:fb:fc:cd:ed:cc:1a:23:c1:0e:3d:41:49:
cf:87:f8:0e:a5:f3:6e:75:c5:fe:5d:bc:c1:50:6f:
fc:5f:8c:49:8b:87:26:d9:b7:2b:7f:6f:64:43:19:
b3:2b:2c:57:5c:c1:2c:a0:6f:af:fa:54:79:58:35:
ff:29:00:28:dd:d2:c2:4f:79:65:5e:7c:d1:aa:1a:
fb:78:cd:31:0e:7f:4b:53:35:4f:e9:e7:07:39:78:
89:86:18:a7:bb:05:5d:09:5d:56:44:d4:c7:b7:53:
8a:29:91:f4:25:47:72:b3:40:a7:01:3f:8c:c1:63:
14:63:92:62:9d:9c:9c:cb:1c:10:35:06:92:a6:da:
9d:7e:da:11:0e:72:d8:cf:d5:46:5a:ba:fd:0b:7d:
f0:45:fc:4a:67:25:d0:7e:43:b8:84:b8:00:29:f1:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:85:9C:E3:A8:A5:BA:A9:6B:D8:C1:36:AE:4F:2F:89:AF:B2:40:9D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8oWc46iluqlr2ME2rk8via-yQJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.16.0/20
31.57.48.0/20
31.57.92.0-31.57.99.255
31.57.120.0/21
31.58.196.0/22
31.58.204.0-31.58.209.255
31.58.212.0/22
31.58.220.0-31.58.227.255
217.60.0.0/18
217.60.245.0/24
217.60.248.0/24
Signature Algorithm: sha256WithRSAEncryption
05:71:bd:32:39:80:64:75:ca:68:9a:fc:e8:72:25:96:b0:f9:
78:9d:84:83:0b:d0:64:21:fe:95:53:d3:bd:b5:9e:c7:66:a8:
89:db:2f:e6:bf:01:53:fb:61:95:f5:a2:b7:59:43:62:20:6f:
92:0c:d2:9d:89:56:0b:e2:c1:07:4b:ee:c9:12:d5:8c:d4:1d:
b3:39:02:4d:d3:4f:e2:a7:7b:31:54:b3:be:3b:93:1d:be:cf:
9f:62:5c:50:0d:a4:b1:a6:e6:96:8b:01:a1:bb:43:76:48:32:
57:a9:03:b2:47:05:a1:ef:17:8d:09:c3:4d:2d:f2:c5:c4:01:
a1:e0:d3:dc:4e:2b:59:b4:fa:02:84:29:83:85:75:5d:2e:9b:
3e:e1:55:05:5d:4d:b7:12:8b:54:22:66:5a:f1:15:43:f9:8b:
f7:c8:bf:9d:d5:69:4a:8d:1a:fc:61:5f:ee:60:fa:7d:45:36:
89:b0:49:be:73:39:e7:04:09:eb:d2:9a:34:d8:fe:1c:69:c6:
19:5c:4a:32:e6:1d:74:64:b3:46:b7:4d:ae:02:70:f2:a2:5f:
7a:c2:22:4b:22:fb:cf:4c:98:6d:6b:46:d8:1f:f5:ec:41:22:
fb:a3:29:d6:35:15:99:d0:7a:06:7a:58:32:f4:de:34:81:4c:
6f:38:5a:f0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:50:54 2025 by rpki-client