Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HSugIKEjlwm1lZ5OAlUDQi0mF38.roa
File: HSugIKEjlwm1lZ5OAlUDQi0mF38.roa (raw, json)
Hash identifier: RcWTRyvxztmRvDAiVTkWXVqC+HJe6DVFo+o7b2gClK4=
Subject key identifier: 1D:2B:A0:20:A1:23:97:09:B5:95:9E:4E:02:55:03:42:2D:26:17:7F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193A796904BA30F548338A77C8B5889338E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HSugIKEjlwm1lZ5OAlUDQi0mF38.roa
Signing time: Sun 08 Dec 2024 18:44:42 +0000
ROA not before: Sun 08 Dec 2024 18:44:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215727
IP address blocks: 31.56.141.0/24 maxlen: 24
31.57.155.0/24 maxlen: 24
31.57.160.0/24 maxlen: 24
31.57.161.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.59.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a7:96:90:4b:a3:0f:54:83:38:a7:7c:8b:58:89:33:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 8 18:44:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d2ba020a1239709b5959e4e025503422d26177f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:46:2f:3b:77:6a:99:ba:41:16:41:dc:25:67:
97:fa:1b:43:11:ac:76:d5:8f:b6:cf:2e:e5:e4:75:
fb:d5:f2:9e:74:5a:69:89:01:d6:db:bf:ab:2c:6a:
7c:5c:d6:cc:4c:b5:a9:62:de:d3:08:ce:13:be:7a:
d9:ce:44:a0:16:5d:eb:94:c7:db:09:d5:8d:92:af:
8c:f2:22:3e:09:11:e4:4a:32:70:a9:41:07:8a:d1:
e9:30:01:b1:81:73:c9:8c:9b:f2:6c:31:4b:6c:99:
85:de:91:c8:d5:b4:d0:54:7b:31:03:c5:00:14:f8:
db:0d:2b:a8:ca:d5:1f:22:08:d5:2b:1d:8a:7c:02:
d7:7f:c6:3e:6a:9e:e5:cc:3a:99:aa:cd:74:4c:31:
a8:8a:6d:c7:30:6c:41:44:ce:7e:09:ec:44:b8:a1:
c1:3a:24:de:03:3d:b8:93:7c:fc:23:c4:fd:e3:42:
ef:ab:00:89:c9:b1:e9:77:8a:39:44:d8:36:a7:49:
b1:a1:5b:cb:e4:55:a7:8d:06:72:52:56:2f:8a:81:
6c:5a:7d:51:67:55:7f:bf:17:f3:bf:0d:75:6b:dc:
bb:11:ac:45:0e:97:a9:2d:27:11:7d:fe:f5:0c:cc:
b1:ac:a6:11:dc:83:39:dd:47:96:c0:59:e7:89:fc:
fb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2B:A0:20:A1:23:97:09:B5:95:9E:4E:02:55:03:42:2D:26:17:7F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HSugIKEjlwm1lZ5OAlUDQi0mF38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.141.0/24
31.57.155.0/24
31.57.160.0/23
31.57.206.0/24
31.59.99.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:b9:45:ab:f9:c8:08:dc:68:af:66:45:70:50:ae:6c:f1:06:
98:9a:c4:ad:51:d3:ce:d2:ed:ab:34:37:10:f0:f0:dd:93:81:
fa:7a:c1:a4:b8:4a:23:0a:f3:ba:15:00:7d:92:99:80:61:6c:
2c:75:3b:42:bb:6e:32:4a:d2:06:ad:74:e6:56:c8:29:39:79:
aa:c6:41:b7:66:a7:63:d6:46:df:ca:91:28:81:66:9d:cd:c7:
be:7f:8a:08:2e:cd:b3:73:ff:3a:5b:77:4a:b4:5a:c2:44:80:
0f:7a:c2:2e:9e:e0:da:74:53:10:09:d7:f4:36:fb:55:f4:e5:
d9:14:fa:90:98:95:91:dd:b6:ba:0a:ab:90:81:3d:75:c6:4f:
bd:4f:1e:17:2c:68:e9:30:48:ce:1c:cf:df:6e:9b:4a:88:78:
69:98:02:c3:af:75:0e:59:41:9b:cd:a6:4f:7b:29:ab:49:a3:
40:29:32:10:d0:87:c6:bc:50:a5:58:1a:26:8a:ac:19:66:5e:
cb:d7:cb:d5:06:bf:1e:46:63:03:f6:f1:35:3a:da:c9:09:04:
e6:46:73:14:f0:cf:35:3d:1e:44:ce:61:61:11:91:15:a1:1f:
1b:57:50:6d:71:96:f5:44:06:fa:10:08:4d:04:48:be:c5:66:
cf:fe:2d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:52 2025 by rpki-client