Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/APW_oEuIdsS57c6v1HY-SlB97-Y.roa
File: APW_oEuIdsS57c6v1HY-SlB97-Y.roa (raw, json)
Hash identifier: nC4OFixHbmH0wnoxVRinyGi89guxvwrWGf/dd6iJqF8=
Subject key identifier: 00:F5:BF:A0:4B:88:76:C4:B9:ED:CE:AF:D4:76:3E:4A:50:7D:EF:E6
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194F459F5C50493569ED9C522F4A2B5C0CC
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/APW_oEuIdsS57c6v1HY-SlB97-Y.roa
Signing time: Tue 11 Feb 2025 09:32:03 +0000
ROA not before: Tue 11 Feb 2025 09:32:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.104.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.252.0/24 maxlen: 24
31.57.253.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Feb 2025 17:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f4:59:f5:c5:04:93:56:9e:d9:c5:22:f4:a2:b5:c0:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 11 09:32:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00f5bfa04b8876c4b9edceafd4763e4a507defe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:56:7d:2a:7a:10:ac:af:b0:be:a5:a7:5a:
92:a3:94:08:36:91:e9:32:45:7f:ce:75:e8:40:21:
35:09:ae:12:7a:0d:da:a0:b3:a5:05:37:3a:3c:75:
1c:aa:07:c0:d2:ca:71:fb:cc:28:6e:6d:95:74:5e:
d6:56:d8:05:72:6e:f2:c8:8f:eb:06:3d:2b:33:c5:
a8:2e:90:64:cc:96:80:e6:41:cb:06:0a:75:cd:00:
2d:62:32:c4:f0:58:b5:ce:01:e2:3f:98:2e:da:f6:
a2:e0:b3:3e:e8:37:d9:d2:68:3b:bf:58:19:df:9e:
65:95:e3:f8:e9:d8:c0:5f:6b:f5:8e:af:10:07:f2:
5e:23:46:c2:ed:af:04:3c:44:71:be:92:ac:d5:38:
12:41:9a:55:30:99:e7:52:ee:07:ed:52:3c:9f:c7:
ea:29:5b:c5:10:97:5c:86:8c:d4:4a:77:51:05:ea:
13:02:bd:04:c9:c1:94:c2:28:a6:e5:5e:6e:c6:bb:
cf:96:22:38:55:4d:f8:ae:48:33:3a:81:8c:7e:6d:
9a:ee:4a:7b:f4:be:52:2c:f0:f5:ee:1d:6b:94:7d:
df:8f:2c:5e:78:28:61:97:0e:70:37:b1:58:6f:21:
fd:0d:4b:dc:25:3a:0c:da:5d:f7:9d:c6:ff:93:27:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F5:BF:A0:4B:88:76:C4:B9:ED:CE:AF:D4:76:3E:4A:50:7D:EF:E6
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/APW_oEuIdsS57c6v1HY-SlB97-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.200.0/24
31.56.202.0/24
31.57.104.0/24
31.57.181.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.252.0/23
31.57.255.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
09:e1:47:10:8d:56:b9:42:e4:11:89:83:44:d9:fe:e8:c0:aa:
7a:3b:a6:31:69:be:54:4a:82:fc:39:1f:7d:6f:8a:25:f7:00:
34:88:a3:1f:02:81:22:29:3e:78:e6:8f:0d:45:06:96:42:88:
7d:ac:64:eb:c5:82:02:7e:af:16:4e:20:76:db:f8:30:90:90:
f4:fb:28:e6:13:99:2d:3b:83:cf:78:ec:c6:07:3c:1a:fb:e2:
28:2f:69:4c:04:56:22:24:f7:cc:c4:a1:bd:e0:ea:65:fc:2b:
42:cb:9f:69:6e:c8:7d:d5:97:82:ff:86:61:ec:73:23:9f:2a:
09:63:aa:87:c0:3d:2b:e6:c6:bc:b4:c1:b8:75:4c:27:08:ab:
6c:df:45:58:21:b1:96:a5:f2:e5:72:10:27:87:a1:ec:e9:3f:
ee:62:e6:55:cc:9d:4b:ec:60:f6:2f:c5:bb:35:4b:cc:51:c8:
1d:cf:16:83:2c:7d:2e:56:bb:30:a5:4e:8f:c5:a1:2a:ac:eb:
18:fa:e9:c5:bd:fb:68:ca:6f:35:4d:df:66:d7:56:35:71:1e:
b7:61:53:13:b3:08:68:00:18:29:3f:de:46:12:05:8b:33:50:
6a:5e:36:2e:39:4c:3d:21:af:7a:d9:04:f6:9e:9b:1d:82:b8:
0b:b8:3e:33
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAZT0WfXFBJNWntnFIvSitcDMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMjExMDkzMjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGY1YmZhMDRiODg3NmM0YjllZGNlYWZkNDc2M2U0YTUwN2RlZmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtS5WfSp6EKyvsL6lp1qSo5QINpHp
MkV/znXoQCE1Ca4Seg3aoLOlBTc6PHUcqgfA0spx+8wobm2VdF7WVtgFcm7yyI/r
Bj0rM8WoLpBkzJaA5kHLBgp1zQAtYjLE8Fi1zgHiP5gu2vai4LM+6DfZ0mg7v1gZ
355lleP46djAX2v1jq8QB/JeI0bC7a8EPERxvpKs1TgSQZpVMJnnUu4H7VI8n8fq
KVvFEJdchozUSndRBeoTAr0EycGUwiim5V5uxrvPliI4VU34rkgzOoGMfm2a7kp7
9L5SLPD17h1rlH3fjyxeeChhlw5wN7FYbyH9DUvcJToM2l33ncb/kycjvQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFAD1v6BLiHbEue3Or9R2PkpQfe/mMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvQVBXX29FdUlkc1M1N2M2djFIWS1TbEI5Ny1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQAHzhFAwQA
HzhIAwQAHzhUAwQAHzjIAwQAHzjKAwQAHzloAwQAHzm1AwQAHznXAwQAHznbAwQA
HzndAwQBHzn8AwQAHzn/AwQBHzpYMA0GCSqGSIb3DQEBCwUAA4IBAQAJ4UcQjVa5
QuQRiYNE2f7owKp6O6Yxab5USoL8OR99b4ol9wA0iKMfAoEiKT545o8NRQaWQoh9
rGTrxYICfq8WTiB22/gwkJD0+yjmE5ktO4PPeOzGBzwa++IoL2lMBFYiJPfMxKG9
4Opl/CtCy59pbsh91ZeC/4Zh7HMjnyoJY6qHwD0r5sa8tMG4dUwnCKts30VYIbGW
pfLlchAnh6Hs6T/uYuZVzJ1L7GD2L8W7NUvMUcgdzxaDLH0uVrswpU6PxaEqrOsY
+unFvftoym81Td9m11Y1cR63YVMTswhoABgpP95GEgWLM1BqXjYuOUw9Ia962QT2
npsdgrgLuD4z
-----END CERTIFICATE-----
Generated at Fri Apr 18 10:01:03 2025 by rpki-client