Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D5j9dBg7FoBxioyv1B3G5xXzMq8.roa
File: D5j9dBg7FoBxioyv1B3G5xXzMq8.roa (raw, json)
Hash identifier: Tlq0wT02EGLKbwj1T2cuzdjRtu2xu/h1mFtYNLOLa4M=
Subject key identifier: 0F:98:FD:74:18:3B:16:80:71:8A:8C:AF:D4:1D:C6:E7:15:F3:32:AF
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01942823727831CB9C5540D949FE54BFF2E9
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D5j9dBg7FoBxioyv1B3G5xXzMq8.roa
Signing time: Thu 02 Jan 2025 17:49:59 +0000
ROA not before: Thu 02 Jan 2025 17:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214174
IP address blocks: 31.56.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Jan 2025 18:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:72:78:31:cb:9c:55:40:d9:49:fe:54:bf:f2:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 2 17:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f98fd74183b1680718a8cafd41dc6e715f332af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8c:47:25:e0:e5:c1:26:ba:1c:e4:1b:f6:cc:
cd:8b:4f:2a:9a:da:a3:81:df:35:ad:81:28:3b:6a:
36:fa:85:30:b6:a6:5a:b3:17:3f:f6:26:0a:62:97:
be:6b:66:7a:83:3f:e3:4e:bb:90:d2:de:b8:d3:8c:
38:9b:0d:e3:52:a7:bb:0f:d8:d9:fc:2a:b6:bb:64:
8d:d4:31:1d:27:19:11:19:7f:12:c9:00:de:09:2d:
f2:64:10:6f:49:28:21:bd:15:8e:db:02:73:27:23:
85:0d:09:cc:a6:3c:4d:58:af:0f:01:44:37:65:76:
93:23:b9:ad:75:c8:dc:de:cb:de:36:4c:c2:a2:07:
bc:41:5a:03:f2:0c:c2:32:b5:90:6c:de:38:37:ab:
ab:08:e6:8a:22:c1:28:07:b1:07:c4:b2:db:36:6a:
73:ad:8f:68:25:56:f6:ca:9b:1e:47:d1:cd:2b:f2:
c3:5b:8b:cb:3b:1d:70:67:50:e4:76:87:17:1b:b0:
33:de:27:d7:4b:7a:70:b6:1a:48:73:3b:ba:45:39:
7f:b7:cd:40:d4:94:02:7c:27:d3:f4:4d:8e:44:95:
ad:40:f2:4f:b4:0d:7d:eb:69:52:66:ff:d5:1f:70:
f5:c1:22:61:ff:ea:ac:25:24:6f:c3:ab:38:71:2f:
45:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:98:FD:74:18:3B:16:80:71:8A:8C:AF:D4:1D:C6:E7:15:F3:32:AF
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/D5j9dBg7FoBxioyv1B3G5xXzMq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.48.0/24
Signature Algorithm: sha256WithRSAEncryption
96:51:40:78:1f:ca:0b:09:ac:b8:92:50:69:bc:5d:de:0a:f5:
5d:dc:3b:c8:17:60:17:c5:11:86:91:35:fc:ac:73:8c:c5:b5:
20:fa:ac:88:f3:4b:77:4f:c5:c2:26:f5:a9:30:da:45:a2:ee:
f4:56:c3:18:00:ab:ac:12:e0:8c:1f:0b:80:b3:c9:65:1e:19:
f4:24:82:7f:68:7a:5e:f8:a5:3c:3c:b3:88:29:97:40:74:d8:
cf:59:b3:10:33:5a:74:f6:2e:ab:3e:f0:a5:d2:c5:34:2e:0e:
17:38:af:e8:21:1c:fb:b6:9c:2c:77:db:93:a8:52:42:ed:4e:
36:e5:dc:9c:fe:a7:e0:1e:b3:d8:8f:77:68:de:15:d4:a0:3d:
e7:51:37:a0:5c:35:51:e6:56:bb:6d:05:0a:21:de:d0:81:20:
13:46:e3:25:c9:05:87:a0:13:fc:3b:cf:00:82:7d:15:32:30:
d0:3b:68:be:86:a8:e3:bf:a0:ba:a0:28:60:de:77:56:e1:12:
72:ac:91:cb:92:1e:d2:f4:3b:be:00:9e:95:0a:b3:8f:29:b1:
a9:c7:e4:35:6e:d3:94:f2:d6:65:79:c8:d2:3f:c6:ff:f2:ea:
69:20:25:55:d8:fd:e4:66:9c:fa:53:32:1f:46:41:60:44:b1:
cf:29:78:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI3J4McucVUDZSf5Uv/LpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMTAyMTc0OTU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjk4ZmQ3NDE4M2IxNjgwNzE4YThjYWZkNDFkYzZlNzE1ZjMzMmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIxHJeDlwSa6HOQb9szNi08qmtqj
gd81rYEoO2o2+oUwtqZasxc/9iYKYpe+a2Z6gz/jTruQ0t6404w4mw3jUqe7D9jZ
/Cq2u2SN1DEdJxkRGX8SyQDeCS3yZBBvSSghvRWO2wJzJyOFDQnMpjxNWK8PAUQ3
ZXaTI7mtdcjc3sveNkzCoge8QVoD8gzCMrWQbN44N6urCOaKIsEoB7EHxLLbNmpz
rY9oJVb2ypseR9HNK/LDW4vLOx1wZ1DkdocXG7Az3ifXS3pwthpIczu6RTl/t81A
1JQCfCfT9E2ORJWtQPJPtA1962lSZv/VH3D1wSJh/+qsJSRvw6s4cS9FfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA+Y/XQYOxaAcYqMr9QdxucV8zKvMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvRDVqOWRCZzdGb0J4aW95djFCM0c1eFh6TXE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzgwMA0G
CSqGSIb3DQEBCwUAA4IBAQCWUUB4H8oLCay4klBpvF3eCvVd3DvIF2AXxRGGkTX8
rHOMxbUg+qyI80t3T8XCJvWpMNpFou70VsMYAKusEuCMHwuAs8llHhn0JIJ/aHpe
+KU8PLOIKZdAdNjPWbMQM1p09i6rPvCl0sU0Lg4XOK/oIRz7tpwsd9uTqFJC7U42
5dyc/qfgHrPYj3do3hXUoD3nUTegXDVR5la7bQUKId7QgSATRuMlyQWHoBP8O88A
gn0VMjDQO2i+hqjjv6C6oChg3ndW4RJyrJHLkh7S9Du+AJ6VCrOPKbGpx+Q1btOU
8tZlecjSP8b/8uppICVV2P3kZpz6UzIfRkFgRLHPKXjv
-----END CERTIFICATE-----
Generated at Fri Mar 14 01:51:10 2025 by rpki-client