Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ERzQqq73coTYjJ73Gk7vFlF5Gwo.roa
File: ERzQqq73coTYjJ73Gk7vFlF5Gwo.roa (raw, json)
Hash identifier: B07kgVo61FrMgg5MJ2o1qUheXTlddcergAsIVizDKjM=
Subject key identifier: 11:1C:D0:AA:AE:F7:72:84:D8:8C:9E:F7:1A:4E:EF:16:51:79:1B:0A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019444D5076932C3E65E8DE2CD7B3A88045F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ERzQqq73coTYjJ73Gk7vFlF5Gwo.roa
Signing time: Wed 08 Jan 2025 07:33:19 +0000
ROA not before: Wed 08 Jan 2025 07:33:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.112.0/24 maxlen: 24
31.56.113.0/24 maxlen: 24
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.157.0/24 maxlen: 24
31.56.200.0/22 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.136.0/21 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.198.0/24 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.136.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.42.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.97.0/24 maxlen: 24
31.59.112.0/22 maxlen: 22
31.59.112.0/24 maxlen: 24
31.59.113.0/24 maxlen: 24
31.59.130.0/24 maxlen: 24
31.59.184.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 13:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:44:d5:07:69:32:c3:e6:5e:8d:e2:cd:7b:3a:88:04:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 8 07:33:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=111cd0aaaef77284d88c9ef71a4eef1651791b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:50:13:f1:8e:a1:49:d8:74:da:40:de:d5:d3:
2e:06:cf:41:ca:f4:0a:a2:f2:51:b1:06:e7:af:8b:
55:98:6e:2e:d3:98:dd:59:60:ee:87:e9:5a:1f:6c:
59:3c:9b:06:9a:a2:df:fb:75:94:cb:7d:42:23:bd:
b9:ea:76:6d:f5:3b:18:bc:e0:9c:f0:25:be:af:94:
c7:7b:64:31:45:3c:2b:41:01:41:26:2c:de:e6:16:
21:43:79:22:14:23:e9:9a:78:3c:92:bf:35:b9:25:
5d:59:41:5d:62:19:80:b2:bd:a3:44:c5:28:89:a6:
af:53:0f:e7:14:b6:22:74:21:44:9f:cd:ab:e0:54:
13:6f:6d:84:90:ba:23:02:02:50:1a:3e:50:2d:36:
d9:6f:ce:22:36:13:bd:8b:de:18:0f:14:ec:36:9c:
9c:58:12:46:74:7a:e6:f1:a7:9c:37:23:d7:c2:07:
9e:4a:d6:a7:15:da:b8:24:7c:05:ec:8c:7d:ea:ca:
21:d6:5b:09:45:ee:8a:0f:3b:d3:50:f7:3c:83:0b:
d8:d1:c8:52:d9:61:b9:99:5b:19:27:06:63:40:c2:
7b:d3:93:80:da:62:a8:2e:ac:b4:72:17:b4:21:13:
71:de:86:39:b7:fb:df:0a:66:49:c8:7e:ef:ae:ab:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1C:D0:AA:AE:F7:72:84:D8:8C:9E:F7:1A:4E:EF:16:51:79:1B:0A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ERzQqq73coTYjJ73Gk7vFlF5Gwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.59.0/24
31.56.67.0/24
31.56.74.0/23
31.56.89.0/24
31.56.104.0-31.56.115.255
31.56.118.0-31.56.123.255
31.56.126.0/24
31.56.157.0/24
31.56.200.0/22
31.57.132.0/23
31.57.136.0/21
31.57.146.0/23
31.57.176.0/21
31.57.191.0-31.57.195.255
31.57.198.0/24
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.232.0/22
31.57.252.0/22
31.58.34.0/23
31.58.136.0/24
31.58.142.0/24
31.58.152.0/22
31.58.157.0/24
31.58.163.0/24
31.58.230.0/23
31.59.41.0-31.59.43.255
31.59.56.0-31.59.58.255
31.59.96.0/22
31.59.112.0/22
31.59.130.0/24
31.59.184.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:ca:73:98:31:48:53:02:a2:70:cd:a1:f3:45:65:a6:f2:e4:
87:47:59:34:7c:7b:ed:62:3d:4b:15:31:31:53:4c:28:16:2a:
55:a0:3a:da:91:36:c3:7c:92:5b:ca:c7:e6:de:0b:cc:f9:e7:
e8:dc:71:5a:cf:9b:f8:3d:61:4b:bc:ed:3f:34:e5:79:50:31:
4f:36:41:83:97:08:b6:cd:ad:11:2a:71:de:bb:95:31:2e:35:
82:6b:34:df:26:38:f5:10:4c:a8:31:9b:95:7f:80:dd:31:ef:
28:e7:f3:51:4f:b7:85:ba:f2:3a:85:20:97:47:36:0d:f9:56:
29:38:46:ba:69:82:6d:44:b2:85:8f:20:22:81:8c:73:d2:bd:
3d:79:56:3a:57:71:56:d1:dc:e9:61:18:0f:c0:31:dc:85:a5:
73:10:1d:80:08:d7:7d:0b:e6:23:33:da:f3:5d:1c:85:ee:bf:
6d:4f:b8:35:c2:75:1f:02:5f:a3:b7:54:68:49:cd:77:b0:f1:
fc:04:68:ec:67:ad:93:02:e2:85:14:c8:b8:8b:54:47:26:7c:
18:e1:a7:38:a6:11:e0:f9:e5:47:57:5b:f2:66:cb:4a:19:b3:
cd:70:bc:aa:a6:98:8e:58:b7:fc:78:1a:83:c5:82:b3:cd:4c:
b1:59:2b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:38 2025 by rpki-client