Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FaJ7i6LnS4Nl-mB4c3luLi4Zqwk.roa
File: FaJ7i6LnS4Nl-mB4c3luLi4Zqwk.roa (raw, json)
Hash identifier: w2SwMNaAutIu/JKiEjWG3lhfRRL3MuoABsyYKa2Etac=
Subject key identifier: 15:A2:7B:8B:A2:E7:4B:83:65:FA:60:78:73:79:6E:2E:2E:19:AB:09
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194282345F0D8587C8957A87EC73E0A1B92
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FaJ7i6LnS4Nl-mB4c3luLi4Zqwk.roa
Signing time: Thu 02 Jan 2025 17:49:47 +0000
ROA not before: Thu 02 Jan 2025 17:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 31.56.16.0/22 maxlen: 24
31.56.60.0/24 maxlen: 24
31.57.16.0/21 maxlen: 24
31.57.135.0/24 maxlen: 24
31.58.176.0/22 maxlen: 24
31.58.200.0/22 maxlen: 24
31.58.216.0/22 maxlen: 24
31.58.235.0/24 maxlen: 24
31.58.240.0/22 maxlen: 24
31.58.252.0/22 maxlen: 24
31.59.64.0/22 maxlen: 24
31.59.80.0/22 maxlen: 24
31.59.124.0/22 maxlen: 24
31.59.176.0/21 maxlen: 24
31.59.188.0/22 maxlen: 24
31.59.192.0/22 maxlen: 24
31.59.216.0/22 maxlen: 24
217.60.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Jan 2025 05:53:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:45:f0:d8:58:7c:89:57:a8:7e:c7:3e:0a:1b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 2 17:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15a27b8ba2e74b8365fa607873796e2e2e19ab09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b1:97:3e:f6:9f:aa:77:f9:e9:2f:57:af:27:
cf:4a:aa:a9:1a:4b:a5:02:fc:9d:5e:ae:13:10:a8:
c3:24:c7:fb:13:41:a0:17:3d:cc:c6:cc:d6:7d:df:
00:09:ee:88:e9:93:d8:0a:29:01:7a:08:48:f3:eb:
e7:b9:b2:dd:10:a1:cc:8b:50:24:4a:73:ee:f4:03:
d9:b1:26:38:fd:f0:0f:d3:8a:98:29:f4:39:e7:eb:
e0:ec:8a:a4:b1:8d:db:ed:00:71:6c:66:5d:2e:03:
78:91:55:01:7d:96:76:f5:ac:c0:64:77:93:b7:4f:
45:53:f0:40:04:ee:b0:b3:66:f3:28:6d:4c:54:fe:
c4:b0:ab:54:ad:0d:2f:23:61:b5:2e:eb:47:7f:32:
58:14:e5:55:7a:48:35:12:6f:91:13:cf:e6:59:92:
06:2b:99:d5:c3:95:15:33:9a:c4:55:2e:25:96:f2:
7c:b9:91:3c:41:5b:94:49:25:74:e3:2b:3e:68:68:
a2:59:0b:e7:0c:cf:1c:6c:4e:e7:ce:fa:d1:d6:58:
10:f0:fd:f5:19:1f:94:b2:2e:ed:b7:bd:1e:25:fa:
df:a6:8f:1e:8d:78:74:2c:e1:92:e6:5f:87:68:e7:
c2:10:29:47:3b:96:07:a9:6f:92:48:35:65:ac:dd:
52:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A2:7B:8B:A2:E7:4B:83:65:FA:60:78:73:79:6E:2E:2E:19:AB:09
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/FaJ7i6LnS4Nl-mB4c3luLi4Zqwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.16.0/22
31.56.60.0/24
31.57.16.0/21
31.57.135.0/24
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.235.0/24
31.58.240.0/22
31.58.252.0/22
31.59.64.0/22
31.59.80.0/22
31.59.124.0/22
31.59.176.0/21
31.59.188.0-31.59.195.255
31.59.216.0/22
217.60.64.0/18
Signature Algorithm: sha256WithRSAEncryption
13:63:70:96:53:d1:87:34:bd:cc:6a:c1:13:d3:e2:ff:80:12:
16:4f:c8:13:f5:6e:8f:49:21:64:1f:66:e6:42:50:73:83:aa:
b0:13:a2:64:e3:f0:c2:34:77:eb:44:ef:a0:e8:b8:f9:ea:7a:
8e:77:c8:be:14:04:40:2a:61:ea:e5:df:47:e4:63:7b:e3:01:
22:6b:3f:69:9e:c7:50:8c:8f:0a:44:bb:f2:0f:d3:da:97:65:
d3:a4:3a:5c:ae:81:52:74:2a:bd:08:ae:d5:ba:ae:e5:85:5b:
05:4a:34:47:c6:f1:72:1c:ee:ce:95:67:84:f6:a0:e8:74:a3:
52:73:a5:89:70:2f:03:aa:46:13:cf:d4:3d:f5:11:67:e4:05:
60:56:87:10:c4:63:2b:02:e6:5e:b8:c4:ec:d9:5b:31:cc:87:
de:89:47:67:9d:57:2b:23:2a:f1:a5:e5:ee:ec:cb:2c:60:2f:
46:78:12:82:a2:6c:b3:6f:28:56:bb:f9:cf:5b:51:0d:2a:59:
32:3a:98:d3:f4:7e:34:cb:b5:90:72:da:f1:ac:27:a6:a8:37:
29:00:c3:a7:c2:f2:05:f7:23:16:f3:c7:19:dc:d2:10:5a:15:
ad:22:e1:01:4b:39:cf:03:c6:ea:40:9f:ae:fe:5b:af:de:ef:
ca:4f:a2:c9
-----BEGIN CERTIFICATE-----
MIIFZjCCBE6gAwIBAgISAZQoI0Xw2Fh8iVeofsc+ChuSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMTAyMTc0OTQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWEyN2I4YmEyZTc0YjgzNjVmYTYwNzg3Mzc5NmUyZTJlMTlhYjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrGXPvafqnf56S9XryfPSqqpGkul
AvydXq4TEKjDJMf7E0GgFz3MxszWfd8ACe6I6ZPYCikBeghI8+vnubLdEKHMi1Ak
SnPu9APZsSY4/fAP04qYKfQ55+vg7IqksY3b7QBxbGZdLgN4kVUBfZZ29azAZHeT
t09FU/BABO6ws2bzKG1MVP7EsKtUrQ0vI2G1LutHfzJYFOVVekg1Em+RE8/mWZIG
K5nVw5UVM5rEVS4llvJ8uZE8QVuUSSV04ys+aGiiWQvnDM8cbE7nzvrR1lgQ8P31
GR+Usi7tt70eJfrfpo8ejXh0LOGS5l+HaOfCEClHO5YHqW+SSDVlrN1S2wIDAQAB
o4ICcjCCAm4wHQYDVR0OBBYEFBWie4ui50uDZfpgeHN5bi4uGasJMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvRmFKN2k2TG5TNE5sLW1CNGMzbHVMaTRacXdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGHBggrBgEFBQcBBwEB/wR4MHYwdAQCAAEwbgMEAh84EAME
AB84PAMEAx85EAMEAB85hwMEAh86sAMEAh86yAMEAh862AMEAB866wMEAh868AME
Ah86/AMEAh87QAMEAh87UAMEAh87fAMEAx87sDAMAwQCHzu8AwQCHzvAAwQCHzvY
AwQG2TxAMA0GCSqGSIb3DQEBCwUAA4IBAQATY3CWU9GHNL3MasET0+L/gBIWT8gT
9W6PSSFkH2bmQlBzg6qwE6Jk4/DCNHfrRO+g6Lj56nqOd8i+FARAKmHq5d9H5GN7
4wEiaz9pnsdQjI8KRLvyD9Pal2XTpDpcroFSdCq9CK7Vuq7lhVsFSjRHxvFyHO7O
lWeE9qDodKNSc6WJcC8DqkYTz9Q99RFn5AVgVocQxGMrAuZeuMTs2VsxzIfeiUdn
nVcrIyrxpeXu7MssYC9GeBKComyzbyhWu/nPW1ENKlkyOpjT9H40y7WQctrxrCem
qDcpAMOnwvIF9yMW88cZ3NIQWhWtIuEBSznPA8bqQJ+u/luv3u/KT6LJ
-----END CERTIFICATE-----
Generated at Wed Feb 5 13:54:44 2025 by rpki-client