Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BKw_KQi_jcvfCTCiJ1SE1F9hR1A.roa
File: BKw_KQi_jcvfCTCiJ1SE1F9hR1A.roa (raw, json)
Hash identifier: 5jS2SNjMvOTUlkkRH4/d/zXFufxYgEIzcyZ/7ouN2kg=
Subject key identifier: 04:AC:3F:29:08:BF:8D:CB:DF:09:30:A2:27:54:84:D4:5F:61:47:50
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192D7CA60C23593F5A3132CEB088070BA30
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BKw_KQi_jcvfCTCiJ1SE1F9hR1A.roa
Signing time: Tue 29 Oct 2024 10:20:17 +0000
ROA not before: Tue 29 Oct 2024 10:20:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.58.49.0/24 maxlen: 24
31.58.59.0/24 maxlen: 24
31.58.129.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.124.0/22 maxlen: 22
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.184.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
217.60.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 18:11:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d7:ca:60:c2:35:93:f5:a3:13:2c:eb:08:80:70:ba:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 29 10:20:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04ac3f2908bf8dcbdf0930a2275484d45f614750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:06:bf:ba:3e:84:1b:4d:62:15:89:99:22:
ec:3d:d5:65:8e:0a:5e:47:8c:53:42:1b:1d:6b:e5:
3e:69:13:3e:73:58:5e:52:97:c6:a2:35:a8:d2:6d:
18:e6:22:ff:39:f2:52:93:60:54:62:44:ea:c1:32:
b8:62:ab:4f:31:5a:8d:4a:b9:8a:eb:c2:34:1a:e9:
ee:8f:5b:93:12:3a:3d:fc:05:01:c2:ba:fd:52:89:
85:d9:33:b4:bb:b8:e0:07:dc:9a:86:5e:27:25:ce:
2e:d3:67:25:ad:af:94:d6:9f:63:93:6c:2d:a4:48:
31:69:ed:8f:89:03:a5:1d:06:af:34:fd:81:a1:04:
ff:b4:fc:4c:23:51:e8:9b:ff:69:44:47:13:a0:65:
ee:72:85:40:82:83:46:03:a6:20:89:72:f9:45:60:
d5:a3:ce:f8:be:a3:e4:8b:75:ed:db:61:ec:2d:fd:
35:80:45:35:71:48:8a:7b:b0:d1:48:36:88:71:50:
e6:c6:fb:ec:76:df:7e:40:8a:bb:53:b6:e4:1a:61:
54:4b:95:90:9c:4a:5b:15:0a:07:33:aa:19:7a:b9:
9c:d5:c8:50:dc:7e:bc:b9:c2:89:9a:80:45:08:45:
67:de:d4:d3:f2:eb:57:99:fa:b7:c9:3d:7b:8a:54:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AC:3F:29:08:BF:8D:CB:DF:09:30:A2:27:54:84:D4:5F:61:47:50
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BKw_KQi_jcvfCTCiJ1SE1F9hR1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.178.0/23
31.57.181.0-31.57.183.255
31.58.49.0/24
31.58.59.0/24
31.58.129.0/24
31.58.146.0/24
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.64.0/22
31.59.80.0/22
31.59.96.0/22
31.59.112.0/22
31.59.124.0/22
31.59.176.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
217.60.251.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:4c:be:6b:04:1e:08:a7:0c:77:be:62:c2:80:d3:e2:9f:cb:
53:23:12:a9:ce:d3:9c:19:29:ec:b5:ca:ae:58:45:2d:cd:57:
10:bb:13:3e:dd:f2:b3:05:1c:93:3b:c7:fd:16:ba:66:c9:72:
e5:ae:8f:ad:69:f4:34:64:12:40:93:27:6c:b3:b3:8c:df:42:
c5:5e:61:3e:d5:b6:43:cb:59:b5:a2:48:5b:35:df:11:d4:5d:
7f:1f:9f:f8:ae:b0:85:f1:3a:28:52:90:e7:83:2e:c0:32:20:
4b:33:08:a1:28:4a:67:73:0e:22:80:de:fc:15:7d:19:7f:4e:
8e:75:85:75:cb:37:92:5b:13:5f:5e:ba:1b:9d:5f:04:31:88:
a6:09:8c:b1:c7:38:66:9a:8f:f5:d0:a9:1c:6c:22:14:78:e9:
b7:80:32:c3:17:52:a5:d0:79:ee:50:7f:b1:ae:22:dc:ca:be:
bd:d1:ac:74:7a:9e:f1:93:77:20:dc:68:d8:8a:0b:08:94:e9:
32:d9:72:8e:85:74:20:4c:cc:c2:46:74:7f:fa:a7:01:09:b0:
21:6a:01:a5:3c:27:2a:1b:7c:ff:b6:d2:2d:60:40:89:b6:3a:
84:46:97:d1:31:43:99:0c:a4:7a:16:e9:4f:e4:59:74:c0:56:
67:e8:c1:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 20:19:37 2024 by rpki-client on console-ams.rpki-client.org