Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GiMXZ4nb9Z602O9J-6Dz0gMMGTU.roa
File: GiMXZ4nb9Z602O9J-6Dz0gMMGTU.roa (raw, json)
Hash identifier: q6HL5jNYrXfrYxStxQGsJSu9RSAGoKJPPuSUwi5zivQ=
Subject key identifier: 1A:23:17:67:89:DB:F5:9E:B4:D8:EF:49:FB:A0:F3:D2:03:0C:19:35
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019246A718AE2DEDCF3717B963354612D81D
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GiMXZ4nb9Z602O9J-6Dz0gMMGTU.roa
Signing time: Tue 01 Oct 2024 05:56:48 +0000
ROA not before: Tue 01 Oct 2024 05:56:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.2.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.63.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 08:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:46:a7:18:ae:2d:ed:cf:37:17:b9:63:35:46:12:d8:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 1 05:56:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a23176789dbf59eb4d8ef49fba0f3d2030c1935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f7:61:36:1b:67:79:06:54:51:f5:75:97:30:
4c:b2:6d:e7:9d:bb:d8:b0:6d:1d:b1:aa:36:54:e1:
d1:14:fd:d8:18:11:d4:25:25:28:ff:1e:7c:ab:9b:
70:b1:49:28:05:ad:a7:43:38:f6:6b:8e:31:32:f1:
e0:c3:80:82:be:9a:0e:37:7f:3e:9d:91:e3:61:df:
be:7d:7f:b0:54:02:88:13:26:72:04:62:c7:66:66:
33:6b:34:63:f7:5a:2a:16:6a:75:b5:70:df:42:7e:
0f:fc:72:94:bc:97:3a:1f:32:a7:c8:0d:86:a4:8a:
ea:dd:ba:f4:0f:a3:25:54:39:cc:24:72:3c:1a:8f:
94:21:72:bf:3e:85:6f:f5:40:0c:6a:68:ab:34:f7:
cc:73:25:ad:d9:52:7f:c8:b0:00:12:c1:1a:00:bc:
2f:a1:1c:2a:9a:fc:7a:e8:08:c5:b8:ee:26:61:2e:
3c:6c:3f:f8:99:75:af:6a:df:ba:d5:c2:21:f7:4e:
d4:d1:78:2b:63:19:ae:79:61:dc:10:7f:f0:b9:32:
53:13:6f:50:62:38:01:00:cc:a7:67:1c:1a:1d:2e:
3c:39:4c:6a:39:7f:04:3a:33:50:77:0d:fd:66:34:
b1:3c:ca:f3:3c:92:de:8e:30:ef:16:ff:e6:bb:f5:
4e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:23:17:67:89:DB:F5:9E:B4:D8:EF:49:FB:A0:F3:D2:03:0C:19:35
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GiMXZ4nb9Z602O9J-6Dz0gMMGTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.2.0/24
31.56.4.0/23
31.56.39.0/24
31.56.59.0/24
31.56.63.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.89.0/24
31.56.112.0/21
31.56.126.0/24
31.56.137.0-31.56.138.255
31.56.147.0/24
31.57.0.0-31.57.9.255
Signature Algorithm: sha256WithRSAEncryption
59:08:02:6a:85:c7:f1:b8:9f:06:aa:5d:af:e7:62:0b:51:b4:
4d:03:f6:4a:80:9e:1d:74:db:9f:ce:aa:00:f0:df:0c:8c:57:
3c:cb:ff:5d:f4:72:d4:52:52:aa:2d:aa:96:c1:5d:cf:02:b3:
bd:1b:0b:63:eb:0a:ab:cd:e6:8a:79:5d:b7:3c:ef:2e:c4:89:
13:96:f0:f7:9e:51:8c:1f:22:b5:5a:d7:9b:de:74:2b:8a:aa:
67:83:7b:68:34:4f:9f:c5:77:99:b0:ca:07:64:ac:15:2f:8b:
d8:37:d0:d3:a3:aa:f7:d0:69:ed:f2:1b:73:8c:cd:1b:b7:c6:
8c:04:72:3f:68:21:e6:0d:4b:99:e3:37:bd:5f:51:0f:5a:83:
32:88:19:4c:29:55:55:6c:d9:eb:bd:48:12:bf:b8:79:5a:30:
86:5c:86:e1:46:97:17:8a:27:c1:c3:a6:32:f0:63:e2:22:84:
9e:a8:95:de:6b:bc:ee:10:5c:9c:d5:0b:41:68:11:bd:9e:bc:
2d:60:41:76:c7:b4:45:b1:56:4a:85:72:74:b9:40:a0:74:ab:
a2:1e:66:d2:8c:cc:91:c9:59:be:d6:e2:72:44:5c:44:94:dc:
9d:dc:28:92:69:38:22:13:84:da:cf:61:a6:4c:6d:92:3b:7e:
56:4b:2b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 10:03:07 2024 by rpki-client on console-fra.rpki-client.org