Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Alogi4Bj9bXmDNS-1nbiIpgT-bw.roa
File: Alogi4Bj9bXmDNS-1nbiIpgT-bw.roa (raw, json)
Hash identifier: zzFkgGMXqFsj8fdhrERE45nqKSgr3bnxKorFNOJOwEM=
Subject key identifier: 02:5A:20:8B:80:63:F5:B5:E6:0C:D4:BE:D6:76:E2:22:98:13:F9:BC
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193CC1BA034EF313293C9CE82D216A57404
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Alogi4Bj9bXmDNS-1nbiIpgT-bw.roa
Signing time: Sun 15 Dec 2024 20:56:22 +0000
ROA not before: Sun 15 Dec 2024 20:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43641
IP address blocks: 31.56.115.0/24 maxlen: 24
31.56.116.0/24 maxlen: 24
31.56.125.0/24 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.192.0/24 maxlen: 24
31.57.193.0/24 maxlen: 24
31.57.195.0/24 maxlen: 24
31.57.232.0/24 maxlen: 24
31.57.233.0/24 maxlen: 24
31.57.234.0/24 maxlen: 24
31.57.235.0/24 maxlen: 24
31.58.145.0/24 maxlen: 24
31.58.148.0/24 maxlen: 24
31.58.149.0/24 maxlen: 24
31.58.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cc:1b:a0:34:ef:31:32:93:c9:ce:82:d2:16:a5:74:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 15 20:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=025a208b8063f5b5e60cd4bed676e2229813f9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:79:7a:9e:aa:1e:29:e7:92:70:b8:fa:b3:
c5:fa:07:92:4e:ae:89:41:d9:1f:e1:05:34:01:13:
88:e5:55:3e:f0:7e:2c:9f:94:89:58:86:c7:1d:ee:
bd:dd:c4:4c:f8:80:6c:f2:ff:53:d4:b3:13:6b:52:
c3:35:72:9c:14:62:f0:eb:a5:d6:9e:7e:c5:24:49:
a7:c9:a0:bf:38:6e:6b:8d:27:5e:d6:65:bc:cd:8f:
66:05:a9:9f:a4:e0:32:63:8f:6c:2d:47:84:9d:2f:
7b:47:29:66:b9:35:7a:e9:4c:10:e1:2c:7f:82:46:
22:44:24:8b:6b:9b:27:ca:3f:1a:39:23:96:c9:a9:
f8:96:2d:22:0a:ae:f5:0a:14:e1:ab:54:38:9f:2c:
9e:6c:2f:7e:56:f4:5e:1a:c8:ce:71:d5:9e:12:27:
c0:ea:64:f1:ae:14:14:61:d6:4d:ba:2f:4e:8c:a7:
6a:8d:70:18:58:ae:41:dd:c1:37:ef:e1:a1:6f:d0:
d1:41:f9:f6:52:51:1d:bd:b7:93:11:3a:35:8d:8b:
f0:1c:97:10:47:fd:02:8a:17:bd:a2:dd:ec:1a:34:
76:ca:4a:86:dc:69:f0:34:c4:20:1c:ee:5e:4c:74:
78:e0:b7:f2:c7:3d:23:61:7e:4c:58:8a:14:cc:85:
1c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5A:20:8B:80:63:F5:B5:E6:0C:D4:BE:D6:76:E2:22:98:13:F9:BC
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Alogi4Bj9bXmDNS-1nbiIpgT-bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.115.0-31.56.116.255
31.56.125.0/24
31.56.127.0/24
31.57.192.0/23
31.57.195.0/24
31.57.232.0/22
31.58.145.0/24
31.58.148.0/23
31.58.151.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:de:d4:9a:71:9e:4f:d2:06:a9:19:9e:09:0b:6e:e2:ec:23:
4f:18:af:87:84:67:6b:f3:96:4f:f7:f9:cd:3a:85:f3:08:4c:
6b:4b:ab:f0:40:b1:b9:56:d9:19:43:5d:45:cd:60:f2:43:9d:
76:5b:93:a8:e8:37:1d:92:70:57:61:b7:13:23:9e:04:7d:b2:
45:21:5b:1a:fc:e9:d2:f9:50:3d:ab:42:c9:3b:1d:f9:b2:0a:
97:34:f5:bc:91:b3:5c:6a:a1:b5:b5:53:d0:ef:a1:19:3a:b0:
d4:e4:6d:9d:58:44:78:e0:a7:74:9a:c6:f1:e2:49:4d:82:1b:
2e:eb:12:f5:e5:c9:08:b6:0b:c0:ce:c1:6e:e5:f5:dc:f3:f0:
ae:fb:72:6f:6d:bc:2d:42:e4:00:3e:d1:fc:0c:c0:9d:8f:14:
e3:a1:4a:ae:57:54:e8:09:81:2a:15:23:6f:aa:17:65:39:26:
64:52:88:b6:10:6d:ac:c7:93:07:54:2d:f0:6f:9b:69:68:0a:
c2:e1:3b:18:c7:92:36:6a:91:b0:c7:58:1c:87:1b:43:57:fe:
14:b3:37:a7:ff:9e:aa:e1:5a:92:5d:74:a1:d5:91:39:d3:4d:
05:1d:4f:2f:63:36:d0:73:c8:38:bc:e8:dc:01:f8:4f:af:38:
f6:6b:2a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:37 2025 by rpki-client