Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DGQpQ0rmUOuYt9zo6k8F9O5yB8w.roa
File: DGQpQ0rmUOuYt9zo6k8F9O5yB8w.roa (raw, json)
Hash identifier: yl1yHklWkeLqIRSoZ2WfL70nRMB911+RY5IJQViV0jM=
Subject key identifier: 0C:64:29:43:4A:E6:50:EB:98:B7:DC:E8:EA:4F:05:F4:EE:72:07:CC
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194025D09E270B3C572167B2E4A6F66C6A0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DGQpQ0rmUOuYt9zo6k8F9O5yB8w.roa
Signing time: Thu 26 Dec 2024 09:47:19 +0000
ROA not before: Thu 26 Dec 2024 09:47:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.56.112.0/21 maxlen: 24
31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.194.0/24 maxlen: 24
31.57.224.0/22 maxlen: 23
31.57.252.0/22 maxlen: 23
31.58.59.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.58.176.0/22 maxlen: 22
31.58.200.0/22 maxlen: 22
31.58.216.0/22 maxlen: 22
31.58.240.0/22 maxlen: 22
31.58.252.0/22 maxlen: 22
31.59.14.0/24 maxlen: 24
31.59.30.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.97.0/24 maxlen: 24
31.59.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 27 Dec 2024 14:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:02:5d:09:e2:70:b3:c5:72:16:7b:2e:4a:6f:66:c6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 26 09:47:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c6429434ae650eb98b7dce8ea4f05f4ee7207cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:de:a5:e7:5a:d5:d7:dd:40:b7:e2:74:98:
bf:68:31:9b:66:c8:9c:60:c5:25:5c:35:c2:37:3d:
8b:58:3c:4f:c2:ac:c6:e2:ac:e6:f8:ee:c4:94:64:
d6:f6:bf:53:a9:62:73:80:c5:fe:8d:6c:52:5e:28:
86:c7:5e:32:a9:d4:67:a0:67:ae:55:fc:72:2d:bf:
62:1e:a7:39:69:1b:6b:75:3c:42:c9:66:98:72:15:
b4:ca:28:cc:72:e1:c8:6e:7a:58:9a:cd:3a:7b:aa:
55:fd:3f:8c:72:cd:6d:3d:93:27:47:dd:51:f8:3f:
bd:2a:6d:90:f2:48:50:d8:03:8e:20:73:f0:18:6e:
87:f3:6e:7e:f5:40:0b:62:de:a4:ba:2e:5b:07:7b:
9c:42:35:2f:83:b6:38:95:25:d3:08:7b:98:2d:80:
df:61:e3:2b:9b:ad:4d:1d:ac:28:46:a4:f8:53:b5:
59:ee:54:bc:f4:32:5f:19:28:ee:08:8c:4b:bb:60:
1d:2e:c7:97:e5:fa:3e:1f:b8:c4:7f:ea:dc:a5:71:
3f:0e:e8:8c:8c:e7:9f:34:15:12:cc:f3:38:c7:77:
66:c7:61:06:17:27:d7:d4:06:14:78:58:8e:10:4e:
86:9b:bb:fe:a5:0b:e0:de:54:c5:29:92:4d:95:b4:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:64:29:43:4A:E6:50:EB:98:B7:DC:E8:EA:4F:05:F4:EE:72:07:CC
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DGQpQ0rmUOuYt9zo6k8F9O5yB8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.112.0/21
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.194.0/24
31.57.224.0/22
31.57.252.0/22
31.58.59.0/24
31.58.142.0/24
31.58.146.0/24
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.240.0/22
31.58.252.0/22
31.59.14.0/24
31.59.30.0/24
31.59.64.0/22
31.59.80.0/22
31.59.97.0/24
31.59.124.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:70:f0:13:05:b6:1c:b7:0f:36:4c:46:66:06:b4:58:7d:dd:
f0:68:7b:83:7a:75:99:c7:35:00:78:0c:59:e7:fb:a4:00:4a:
8d:93:63:5e:84:24:70:9d:ed:0a:e2:f4:5c:7b:56:80:af:17:
31:d1:8b:87:c3:77:17:b6:1a:55:62:96:06:f0:49:3e:d6:3c:
52:1d:0f:8a:bd:c5:ff:46:e9:df:ff:dd:20:39:cf:d9:ce:6a:
59:65:c0:0c:cc:f1:4a:86:7f:30:8e:6a:bf:23:c7:74:3d:05:
13:95:cc:b3:8d:16:83:6a:b7:be:7c:a0:65:e7:40:45:8b:fc:
ef:a8:9a:56:b9:cd:3a:ba:c2:d0:28:d4:7a:e4:ac:f1:da:f4:
46:ca:8f:7d:8a:2d:50:a5:c4:1e:9b:03:3f:49:6e:69:ef:34:
34:c7:7a:54:0b:fe:6b:17:d1:15:f8:d7:3a:94:e3:4c:c2:49:
45:3c:85:0d:0c:55:3f:06:e8:d3:e1:c0:41:93:4c:09:90:73:
eb:2b:1e:3b:43:48:7f:73:94:0a:74:5d:11:79:61:83:4f:22:
c0:0b:63:fb:bb:62:29:d6:80:1f:3f:1a:74:03:e8:8e:ff:72:
97:6d:cd:ac:03:9b:f7:9d:4b:ac:0c:3e:02:51:05:ca:68:4b:
22:0b:95:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:36 2025 by rpki-client