Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Er0ki43CbQZlecj_kdg8IvsjT6k.roa
File: Er0ki43CbQZlecj_kdg8IvsjT6k.roa (raw, json)
Hash identifier: y0K3Mg/jdOzEFljWKQUsqfEeEA4kRrj85mmmOxBuNS8=
Subject key identifier: 12:BD:24:8B:8D:C2:6D:06:65:79:C8:FF:91:D8:3C:22:FB:23:4F:A9
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194541B23128B402E6022C8E487BC15C4F7
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Er0ki43CbQZlecj_kdg8IvsjT6k.roa
Signing time: Sat 11 Jan 2025 06:44:12 +0000
ROA not before: Sat 11 Jan 2025 06:44:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.120.0/24 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.122.0/24 maxlen: 24
31.56.123.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.252.0/24 maxlen: 24
31.57.253.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Jan 2025 12:18:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:54:1b:23:12:8b:40:2e:60:22:c8:e4:87:bc:15:c4:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 11 06:44:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12bd248b8dc26d066579c8ff91d83c22fb234fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ce:5c:1b:a8:86:6f:d8:e8:0c:33:ee:31:ec:
7b:52:ef:34:9d:a4:e9:a3:ec:2e:f5:6a:fe:7c:6c:
67:46:4c:ed:b5:da:3c:37:74:22:08:21:9e:3c:31:
50:3a:89:16:d2:c9:77:bb:b9:a6:2d:3b:47:09:16:
c7:1b:9e:99:ea:8f:51:de:0c:34:55:15:7a:e5:6f:
dc:33:ab:4a:b8:f6:94:66:13:e1:89:8b:82:44:76:
01:bb:d9:ca:20:6e:1e:88:5c:73:f2:b7:29:30:7e:
66:0f:08:e7:e1:97:3e:e7:fd:78:4e:90:ed:ab:05:
01:63:2b:d8:00:b4:b6:99:10:80:99:12:11:5d:53:
1f:5d:f2:7d:ad:2e:60:b5:43:90:88:19:bf:f3:34:
da:df:e2:12:9a:b5:1f:4d:66:19:a8:26:ab:cb:bf:
66:56:b1:66:e7:8f:f8:c9:fa:80:59:55:2e:3d:6c:
b5:fb:a2:28:64:28:2f:a6:17:c4:e8:a3:0f:d5:4c:
1b:56:05:78:b6:81:bb:39:35:4f:d3:95:15:d8:84:
84:49:7e:a5:b4:c4:2b:ac:96:a1:46:5d:a0:e5:0c:
dc:6d:44:dd:09:9a:98:ad:1b:9b:77:51:cf:fe:f5:
33:2d:31:dd:ff:12:b4:4e:3d:1c:37:83:23:7d:5a:
7c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BD:24:8B:8D:C2:6D:06:65:79:C8:FF:91:D8:3C:22:FB:23:4F:A9
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Er0ki43CbQZlecj_kdg8IvsjT6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.120.0/22
31.56.200.0/24
31.56.202.0/24
31.57.132.0/24
31.57.181.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.252.0/23
31.57.255.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:bb:11:73:de:eb:05:0d:cc:ba:eb:de:33:97:89:e7:e4:0d:
73:37:e7:6f:68:de:ee:3d:cb:ed:21:f9:e9:86:1a:9f:0e:be:
b9:08:fe:3f:24:3d:0e:ac:60:89:c5:82:3e:18:fb:0a:e9:3d:
2f:7d:86:45:c2:61:d3:bc:52:cc:4e:22:89:8d:2b:a7:11:b4:
0f:d6:58:bc:93:8e:6f:d9:45:4a:52:d4:a7:e8:f5:14:ca:7e:
5a:e7:5a:ac:55:70:5e:fa:74:1e:95:b8:d2:ea:a9:1f:a8:07:
e3:91:55:d0:07:4a:89:ed:06:cc:12:44:34:10:bf:da:bd:22:
81:4a:53:1a:cd:59:59:d4:ab:7d:88:44:c9:7f:95:7c:a6:2e:
fc:95:f4:4a:be:7f:df:16:22:3b:1d:76:32:29:2c:bc:32:1e:
1c:46:49:6c:f5:8f:d8:fd:3d:aa:83:68:33:b3:b0:2b:89:d6:
a5:bf:d1:3a:57:97:63:c3:1a:57:25:c7:aa:42:cd:6a:7b:f8:
6f:8e:30:46:ef:02:54:4e:94:e6:fd:73:ce:00:f9:eb:e3:f0:
2e:b8:3f:c2:5b:ae:f9:28:e7:33:c3:c2:18:e7:0d:16:cd:cd:
a5:d4:75:bc:e0:58:aa:0b:bc:16:fe:73:90:06:4e:3f:8e:1d:
50:92:5b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:11 2025 by rpki-client