Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/B7PXSbUN_cvrRuvNYWUpbIEcG2E.roa
File: B7PXSbUN_cvrRuvNYWUpbIEcG2E.roa (raw, json)
Hash identifier: O2Yb43ZUyq5D9l0MHUcAkiUjJ22j/of3YmuRpmq5MaI=
Subject key identifier: 07:B3:D7:49:B5:0D:FD:CB:EB:46:EB:CD:61:65:29:6C:81:1C:1B:61
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193EB17B7F7F803BDC5E605C0BD4EEA08EF
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/B7PXSbUN_cvrRuvNYWUpbIEcG2E.roa
Signing time: Sat 21 Dec 2024 21:20:20 +0000
ROA not before: Sat 21 Dec 2024 21:20:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 263702
IP address blocks: 31.57.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:eb:17:b7:f7:f8:03:bd:c5:e6:05:c0:bd:4e:ea:08:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 21 21:20:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07b3d749b50dfdcbeb46ebcd6165296c811c1b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1e:59:67:6c:73:5d:bf:c7:66:8e:e2:f5:d8:
f9:a5:ac:e0:f0:ef:fc:ce:70:f9:fc:ad:71:b4:8b:
44:34:1c:91:e9:c9:aa:75:03:3c:b3:c5:9f:22:e6:
e5:bb:f7:8b:ab:85:5b:10:8a:87:38:f3:11:d8:07:
ab:7c:1e:a1:bc:70:8b:3c:4a:71:e2:3f:0c:92:09:
c5:0f:ab:2d:fb:b1:55:0f:a1:61:9f:f1:12:2c:a2:
62:57:68:00:97:4e:0e:4c:0a:c7:2b:7c:35:51:13:
f8:4d:3e:b8:89:e5:74:8f:da:89:b7:a1:bb:a9:d8:
da:59:b1:fb:b0:8c:04:b2:2a:69:d2:85:0d:28:1c:
35:75:69:ec:a2:8e:97:df:5b:67:0d:2e:6c:9b:5e:
35:f7:fc:00:7f:e2:34:f1:23:d1:2f:e9:aa:46:c9:
26:14:da:5e:ad:21:15:c8:c3:62:2a:79:0e:56:f0:
68:71:0d:1d:ae:70:e9:68:fa:58:53:c0:45:4b:ca:
06:65:2d:c1:61:84:69:c2:40:4c:4e:35:31:ca:46:
88:4f:6d:57:c9:a2:ca:5a:49:84:55:6a:b5:d1:c1:
62:47:d4:05:b4:4e:af:7c:26:0e:d1:5f:cf:59:eb:
2b:e3:5b:4e:f3:d1:c9:81:cc:cc:d7:93:16:b3:d9:
f3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B3:D7:49:B5:0D:FD:CB:EB:46:EB:CD:61:65:29:6C:81:1C:1B:61
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/B7PXSbUN_cvrRuvNYWUpbIEcG2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:cf:42:55:87:51:7e:fe:cb:1f:43:fa:85:28:ce:f0:c0:6a:
7f:ed:83:f7:1a:f6:cb:de:c6:0b:89:e1:53:87:8b:cb:57:9a:
58:01:ab:5c:c6:4f:b1:38:78:ff:3d:65:f1:51:ee:b5:41:4b:
c3:06:71:e2:8f:0f:99:81:04:d6:78:9c:51:4b:b2:58:81:ba:
71:26:70:e8:94:68:c2:63:c4:0d:a3:87:00:83:b3:b1:25:18:
a0:1a:a7:80:c5:e6:46:5c:58:78:d4:33:60:28:2b:c1:e6:f9:
e0:75:b5:b0:69:e7:43:be:ce:99:fb:78:5b:0b:39:17:7a:23:
ca:3f:38:65:ed:60:bd:ca:11:f5:d7:8a:e2:dd:3e:e8:7a:ee:
fa:93:f8:58:81:22:d0:4e:ae:6a:79:ab:29:c2:b7:f0:de:da:
8d:aa:0c:0a:2d:35:c9:1b:99:c6:33:76:bb:4d:19:e0:27:fd:
24:8f:d2:bc:b7:ca:2c:ef:8e:fc:7f:31:4b:9d:d0:81:6d:72:
f0:39:02:a8:c0:e9:a9:eb:45:8e:b3:7d:86:e4:0e:5a:a0:78:
b4:c5:d6:b4:fc:6a:22:33:0d:2d:78:ea:12:73:56:ae:34:65:
b0:ec:e9:38:02:cf:a8:73:ae:73:52:b4:61:1e:d7:44:a1:5c:
dd:90:c1:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPrF7f3+AO9xeYFwL1O6gjvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMjIxMjEyMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2IzZDc0OWI1MGRmZGNiZWI0NmViY2Q2MTY1Mjk2YzgxMWMxYjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtB5ZZ2xzXb/HZo7i9dj5pazg8O/8
znD5/K1xtItENByR6cmqdQM8s8WfIublu/eLq4VbEIqHOPMR2AerfB6hvHCLPEpx
4j8MkgnFD6st+7FVD6Fhn/ESLKJiV2gAl04OTArHK3w1URP4TT64ieV0j9qJt6G7
qdjaWbH7sIwEsipp0oUNKBw1dWnsoo6X31tnDS5sm1419/wAf+I08SPRL+mqRskm
FNperSEVyMNiKnkOVvBocQ0drnDpaPpYU8BFS8oGZS3BYYRpwkBMTjUxykaIT21X
yaLKWkmEVWq10cFiR9QFtE6vfCYO0V/PWesr41tO89HJgczM15MWs9nzqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAez10m1Df3L60brzWFlKWyBHBthMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvQjdQWFNiVU5fY3ZyUnV2TllXVXBiSUVjRzJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzmRMA0G
CSqGSIb3DQEBCwUAA4IBAQBOz0JVh1F+/ssfQ/qFKM7wwGp/7YP3GvbL3sYLieFT
h4vLV5pYAatcxk+xOHj/PWXxUe61QUvDBnHijw+ZgQTWeJxRS7JYgbpxJnDolGjC
Y8QNo4cAg7OxJRigGqeAxeZGXFh41DNgKCvB5vngdbWwaedDvs6Z+3hbCzkXeiPK
Pzhl7WC9yhH114ri3T7oeu76k/hYgSLQTq5qeaspwrfw3tqNqgwKLTXJG5nGM3a7
TRngJ/0kj9K8t8os7478fzFLndCBbXLwOQKowOmp60WOs32G5A5aoHi0xda0/Goi
Mw0teOoSc1auNGWw7Ok4As+oc65zUrRhHtdEoVzdkMGg
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:13 2025 by rpki-client