Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8tMnxFnXb8H7EyEyhgfrSCDPb2k.roa
File: 8tMnxFnXb8H7EyEyhgfrSCDPb2k.roa (raw, json)
Hash identifier: QQ4B+deVCVd/hRBx+FXe9JDygd8lfW6BUUEyGTKbqGE=
Subject key identifier: F2:D3:27:C4:59:D7:6F:C1:FB:13:21:32:86:07:EB:48:20:CF:6F:69
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019267EE14861E5E2C4F6F15A59A40FF93D9
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8tMnxFnXb8H7EyEyhgfrSCDPb2k.roa
Signing time: Mon 07 Oct 2024 17:01:48 +0000
ROA not before: Mon 07 Oct 2024 17:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 09:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:ee:14:86:1e:5e:2c:4f:6f:15:a5:9a:40:ff:93:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 7 17:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2d327c459d76fc1fb1321328607eb4820cf6f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f7:3a:59:9e:cd:8b:f4:21:17:b1:55:97:6b:
5d:52:c4:83:c7:c4:05:4c:ca:8f:ca:c1:b5:72:4d:
27:8d:9c:b9:a5:fc:48:6d:bb:6a:78:59:0e:5d:b5:
aa:f1:90:7d:f0:5a:70:f8:43:4b:72:ae:3c:f0:67:
14:09:c6:48:bf:3c:d3:49:a7:a3:31:2c:f2:d6:c3:
c2:45:60:76:36:36:0a:74:34:79:d7:f1:01:78:7e:
70:8b:9f:a0:33:c7:a7:8d:e2:ea:b5:21:16:2c:d2:
3b:14:13:99:33:d3:cc:60:09:6b:d6:a9:9f:15:1a:
67:a0:d9:3d:a5:67:67:e8:b5:cb:eb:6a:ba:73:fd:
3e:9d:8a:f8:9e:e8:08:da:f4:81:08:db:ed:3a:98:
7c:12:81:b3:1f:19:a2:f9:24:d1:31:d0:66:90:f6:
0e:09:2b:ad:07:c8:07:79:7d:25:58:4c:e6:98:11:
d6:19:54:aa:55:56:05:e8:92:03:f9:b3:d0:05:b0:
00:09:b3:a5:b0:90:d2:f0:e3:0f:81:cb:a6:5f:d9:
f2:1f:00:d5:2e:3c:04:9c:92:6f:48:90:5a:5a:44:
ad:c1:12:e7:4a:f8:c8:76:70:ce:81:8f:21:7f:74:
d2:c7:03:2b:98:a6:f6:7a:8c:31:b0:9c:de:92:92:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D3:27:C4:59:D7:6F:C1:FB:13:21:32:86:07:EB:48:20:CF:6F:69
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/8tMnxFnXb8H7EyEyhgfrSCDPb2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.89.0/24
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
Signature Algorithm: sha256WithRSAEncryption
6b:05:fb:c0:e7:97:24:46:9b:bf:87:0e:7b:84:77:e8:c4:61:
27:1e:9d:2b:0a:59:cf:90:94:b7:81:d5:91:8a:5a:28:a0:f5:
16:35:0b:b5:86:ba:08:c6:27:91:58:80:d8:67:d1:7e:5d:81:
43:28:cd:aa:d4:f5:84:47:29:db:42:d1:88:27:00:ed:86:0c:
7f:22:e8:e1:c5:7f:e4:f2:ee:ca:18:4a:dc:a3:bc:9a:9b:ba:
4b:66:48:f6:74:53:b0:b6:d4:5b:d0:62:02:67:26:05:de:75:
3d:94:4f:b4:8d:71:b3:20:0f:9c:ae:41:eb:7d:e8:a1:f0:70:
b7:e1:cd:3c:72:4b:cf:b6:4e:3a:28:10:51:17:ec:bb:2c:3e:
89:4c:dd:e2:19:2f:6f:33:4d:70:b8:1e:9d:49:96:11:b4:f6:
b8:df:ab:20:c3:4e:54:1b:ee:e5:f8:5f:76:25:0f:47:55:7f:
ed:ac:32:94:88:ca:fb:be:1f:d1:57:53:63:9c:24:bd:4b:5e:
f0:b2:0a:12:93:f9:ba:cb:71:c1:38:16:f9:5c:ea:41:96:d8:
51:d5:f9:c5:94:bf:ad:5a:d9:12:fd:b8:f2:0b:11:f3:c6:05:
f3:15:b9:4d:d2:9f:7f:22:97:70:98:a4:6f:db:1c:b7:dc:b0:
a5:e2:32:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 13:43:46 2024 by rpki-client on console-ams.rpki-client.org