Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GJ_4V4srgKP3A9oLDRz2sOb1pO0.roa
File: GJ_4V4srgKP3A9oLDRz2sOb1pO0.roa (raw, json)
Hash identifier: JLpQKnHu9rKJDb+o8mIR+zALv1APBFZIMpG33zr0ohk=
Subject key identifier: 18:9F:F8:57:8B:2B:80:A3:F7:03:DA:0B:0D:1C:F6:B0:E6:F5:A4:ED
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01932EBC91C23922DF31A3E6BAB09976B227
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GJ_4V4srgKP3A9oLDRz2sOb1pO0.roa
Signing time: Fri 15 Nov 2024 07:32:10 +0000
ROA not before: Fri 15 Nov 2024 07:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.48.0/24 maxlen: 24
31.56.62.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 11:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2e:bc:91:c2:39:22:df:31:a3:e6:ba:b0:99:76:b2:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 15 07:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=189ff8578b2b80a3f703da0b0d1cf6b0e6f5a4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:95:2a:1b:11:05:2d:46:4f:ff:9f:36:35:
f9:a5:e5:66:13:dd:75:83:dc:00:64:50:94:ca:f5:
f9:b3:9e:bc:c4:cf:38:cf:48:15:62:5d:41:b7:7f:
59:f9:a9:44:cf:66:2d:6c:23:7b:2b:6c:bd:65:10:
b8:dd:f4:93:94:1b:bc:51:31:26:a0:3e:90:a4:df:
16:d1:91:9e:47:ea:40:63:53:1b:fe:86:eb:8b:d9:
8e:b7:e0:93:f3:58:4b:32:03:40:dc:4c:c2:35:06:
60:bb:d5:b4:d1:32:45:bc:e3:37:39:0a:7c:96:8d:
0b:dd:ee:e2:03:ea:cb:fe:9d:33:43:94:7f:d5:4e:
23:4a:ae:86:4a:66:14:71:f1:56:cb:dd:e6:c3:dc:
93:d4:32:38:4f:0d:9f:e9:7a:98:62:63:09:c5:92:
80:cc:05:7e:37:99:d4:80:96:c4:2f:80:cc:dc:38:
0e:e3:b1:97:a1:12:47:80:a0:0c:28:ba:ff:94:12:
d3:ec:73:9e:48:ea:b7:14:6e:8d:11:61:eb:a0:10:
09:7c:e8:d8:dc:d0:e3:f3:9a:ec:d3:32:83:52:ec:
38:8d:8c:5f:49:13:54:7b:87:a0:20:22:89:da:8b:
b2:d1:be:68:ff:a1:37:16:c6:9b:a5:08:40:84:bc:
b9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:F8:57:8B:2B:80:A3:F7:03:DA:0B:0D:1C:F6:B0:E6:F5:A4:ED
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GJ_4V4srgKP3A9oLDRz2sOb1pO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.48.0/24
31.56.62.0/24
31.56.85.0/24
31.56.89.0/24
31.56.120.0/22
31.56.127.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0/21
31.57.192.0/22
31.57.232.0/22
Signature Algorithm: sha256WithRSAEncryption
27:1a:b2:50:cb:96:0a:1f:63:40:ba:9f:0d:5a:b5:a5:52:9c:
8d:c6:5c:bc:7a:82:50:3d:c3:57:f3:f3:84:4f:6d:d3:78:c6:
7d:b3:80:13:c9:10:ac:a1:01:95:95:34:f7:e7:57:d0:8d:0f:
aa:77:ee:fd:1e:64:11:59:7a:2b:a5:0f:ca:b7:39:93:f9:f4:
08:16:28:f5:b4:3c:f9:2c:3f:2e:18:a8:89:ae:92:ea:36:f7:
3f:ba:e2:91:2e:b9:fd:d0:6f:6d:34:66:96:6c:7a:3a:7f:1f:
93:60:1f:61:ef:d1:6b:2a:09:c9:ed:05:d5:4f:86:ab:1c:b2:
09:4e:52:0b:08:aa:b5:96:1f:10:5f:d2:39:8c:a0:6c:8a:ba:
59:2e:cc:a5:c5:60:1d:b7:29:32:82:e3:df:5a:af:a2:f5:44:
76:8e:96:52:55:6f:7c:59:97:2e:36:58:2c:a6:6a:84:60:5c:
81:f7:01:c6:db:8a:1a:17:95:d5:1a:37:2d:4d:ac:fd:25:27:
7f:ee:01:57:1f:2b:5f:d6:d3:fa:8e:0b:09:43:05:54:6c:9a:
13:e9:97:79:6a:be:30:1a:83:74:25:63:79:ba:de:2d:a9:79:
86:ae:9f:da:29:ac:c0:69:13:84:fc:74:dc:4a:92:3d:c9:bd:
e0:7b:4c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 14:43:26 2024 by rpki-client on console-ams.rpki-client.org