Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8qkFckB-mj_QMhAH9P5dHreuqzw.roa
File: 8qkFckB-mj_QMhAH9P5dHreuqzw.roa (raw, json)
Hash identifier: dZK5VuR/B3X85MVYjhArzX8Tim/bccugck9XZs4TJvk=
Subject key identifier: F2:A9:05:72:40:7E:9A:3F:D0:32:10:07:F4:FE:5D:1E:B7:AE:AB:3C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191DD913F22693B72B70228F638A59FC774
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8qkFckB-mj_QMhAH9P5dHreuqzw.roa
Signing time: Tue 10 Sep 2024 20:12:49 +0000
ROA not before: Tue 10 Sep 2024 20:12:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216022
IP address blocks: 31.56.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 06:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:91:3f:22:69:3b:72:b7:02:28:f6:38:a5:9f:c7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 10 20:12:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2a90572407e9a3fd0321007f4fe5d1eb7aeab3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fb:13:4a:0a:6f:95:56:c7:2b:23:d5:1c:7d:
93:49:b1:80:96:c2:b9:dc:ed:57:c6:92:86:54:d9:
54:e1:ac:b8:59:07:f2:9d:39:6f:6e:b4:30:19:e3:
2c:ed:3c:1a:de:36:21:ca:09:f6:20:28:97:40:fd:
d3:f8:70:43:1f:f3:b0:48:e6:8c:c6:4d:bf:cc:7f:
df:98:ee:54:a5:2a:8d:c5:c1:5a:05:03:c6:de:cd:
5b:c5:09:26:2d:5e:68:c9:5d:08:19:aa:43:01:c1:
f5:47:ec:6f:04:24:cf:af:a9:bd:f0:5e:4d:24:57:
35:8f:3d:ef:7c:c4:f5:79:8e:7b:c3:8b:11:e1:4f:
65:d6:52:05:91:d0:e5:34:c6:ee:60:30:bb:f4:06:
2f:87:89:10:51:9f:74:d5:71:75:dd:4a:b7:6c:cb:
04:d0:a2:1c:16:72:cf:45:59:ac:5e:40:6d:89:45:
80:21:46:f3:36:b0:2c:d3:17:48:bf:87:7c:0a:3c:
1c:99:83:40:aa:b0:99:e8:f3:10:b1:4f:b2:65:46:
42:9d:41:a8:a8:89:e6:b9:5c:c5:34:9d:0a:fc:aa:
38:26:38:f1:f3:72:d7:cd:4a:d7:02:1f:f4:49:1e:
fd:7c:67:1a:5e:47:67:61:39:d2:42:37:1d:e1:83:
69:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A9:05:72:40:7E:9A:3F:D0:32:10:07:F4:FE:5D:1E:B7:AE:AB:3C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8qkFckB-mj_QMhAH9P5dHreuqzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.241.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:28:1a:da:69:58:40:6d:86:cf:f3:e8:23:ad:af:0e:04:14:
4c:f8:f9:70:51:c8:88:96:0f:a8:88:06:87:ac:88:6e:59:da:
23:f9:27:b3:50:aa:da:6c:c6:6f:d1:33:60:4c:19:12:84:cf:
04:8c:4d:81:ed:0a:b9:a5:c7:52:44:3e:14:07:a8:4d:99:41:
28:b6:bf:45:88:0a:a8:5a:43:1f:b1:7a:e3:71:df:40:45:ba:
05:e8:8d:92:a8:8e:10:58:94:10:e5:3e:ab:f2:50:44:1b:68:
17:57:f7:f2:e9:42:ee:e0:90:fd:63:01:ca:7c:03:73:35:60:
ad:57:c3:1d:dd:cf:82:7d:97:ba:07:53:5a:27:73:ed:d6:64:
5a:02:80:51:75:fb:8a:81:ee:01:50:db:d4:2d:15:ab:f6:fc:
56:59:69:e8:87:0c:11:73:a7:77:30:79:14:0b:ad:68:2f:03:
b7:37:d3:b5:2e:05:df:fc:c3:c5:81:28:91:63:f9:81:3d:11:
9c:9e:cf:36:16:33:af:e3:22:2e:e2:34:f8:47:96:99:23:c8:
47:2e:96:5a:9c:cb:f8:a5:c0:9f:a3:13:c0:50:e5:e2:85:d9:
98:ba:9e:7f:bc:71:a2:db:ea:8d:b4:33:95:ae:44:c1:76:14:
04:4f:c3:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHdkT8iaTtytwIo9jiln8d0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwOTEwMjAxMjQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMmE5MDU3MjQwN2U5YTNmZDAzMjEwMDdmNGZlNWQxZWI3YWVhYjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfsTSgpvlVbHKyPVHH2TSbGAlsK5
3O1XxpKGVNlU4ay4WQfynTlvbrQwGeMs7Twa3jYhygn2ICiXQP3T+HBDH/OwSOaM
xk2/zH/fmO5UpSqNxcFaBQPG3s1bxQkmLV5oyV0IGapDAcH1R+xvBCTPr6m98F5N
JFc1jz3vfMT1eY57w4sR4U9l1lIFkdDlNMbuYDC79AYvh4kQUZ901XF13Uq3bMsE
0KIcFnLPRVmsXkBtiUWAIUbzNrAs0xdIv4d8CjwcmYNAqrCZ6PMQsU+yZUZCnUGo
qInmuVzFNJ0K/Ko4Jjjx83LXzUrXAh/0SR79fGcaXkdnYTnSQjcd4YNpxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPKpBXJAfpo/0DIQB/T+XR63rqs8MB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvOHFrRmNrQi1tal9RTWhBSDlQNWRIcmV1cXp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzjxMA0G
CSqGSIb3DQEBCwUAA4IBAQArKBraaVhAbYbP8+gjra8OBBRM+PlwUciIlg+oiAaH
rIhuWdoj+SezUKrabMZv0TNgTBkShM8EjE2B7Qq5pcdSRD4UB6hNmUEotr9FiAqo
WkMfsXrjcd9ARboF6I2SqI4QWJQQ5T6r8lBEG2gXV/fy6ULu4JD9YwHKfANzNWCt
V8Md3c+CfZe6B1NaJ3Pt1mRaAoBRdfuKge4BUNvULRWr9vxWWWnohwwRc6d3MHkU
C61oLwO3N9O1LgXf/MPFgSiRY/mBPRGcns82FjOv4yIu4jT4R5aZI8hHLpZanMv4
pcCfoxPAUOXihdmYup5/vHGi2+qNtDOVrkTBdhQET8MI
-----END CERTIFICATE-----
Generated at Fri Oct 4 08:34:02 2024 by rpki-client on console-fra.rpki-client.org