Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hc5vuTfffzBVNmQ6d3kjliinQB0.roa
File: Hc5vuTfffzBVNmQ6d3kjliinQB0.roa (raw, json)
Hash identifier: Op1S0R+Jhja0idexcKLr0xcDL+XI1DdtXLS7lNBtzo8=
Subject key identifier: 1D:CE:6F:B9:37:DF:7F:30:55:36:64:3A:77:79:23:96:28:A7:40:1D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01921F9B5E3A0824620086F35684503A69AC
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hc5vuTfffzBVNmQ6d3kjliinQB0.roa
Signing time: Mon 23 Sep 2024 15:58:48 +0000
ROA not before: Mon 23 Sep 2024 15:58:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.56.23.0/24 maxlen: 24
31.56.25.0/24 maxlen: 24
31.56.27.0/24 maxlen: 24
31.56.28.0/22 maxlen: 24
31.56.32.0/24 maxlen: 24
31.56.34.0/24 maxlen: 24
31.56.36.0/24 maxlen: 24
31.56.38.0/24 maxlen: 24
31.56.40.0/24 maxlen: 24
31.56.58.0/24 maxlen: 24
31.56.61.0/24 maxlen: 24
31.56.68.0/24 maxlen: 24
31.56.70.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.73.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.80.0/22 maxlen: 22
31.56.92.0/22 maxlen: 22
31.56.96.0/22 maxlen: 22
31.56.100.0/22 maxlen: 22
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.57.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Oct 2024 18:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:9b:5e:3a:08:24:62:00:86:f3:56:84:50:3a:69:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 23 15:58:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dce6fb937df7f305536643a7779239628a7401d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:8f:b0:37:24:98:a5:3e:04:e8:45:66:91:
63:4f:28:45:ef:80:5e:22:e6:c8:00:bb:95:95:c8:
c1:c5:b2:8e:2a:38:7b:89:22:df:d2:af:48:14:c3:
d7:ed:b8:68:5a:73:6a:8d:47:08:72:26:14:9d:65:
5c:9f:f8:1e:f3:0b:e3:49:2b:38:e4:d8:c2:84:72:
e4:2d:3e:2b:f9:76:cc:10:d7:f7:44:c4:5a:49:f1:
16:55:79:d3:28:f7:bc:85:33:37:fa:ee:e3:16:b7:
b8:2e:3a:39:73:69:2b:77:01:9f:1b:37:08:58:ab:
a6:b0:a8:af:4a:6e:7b:71:e6:71:86:39:5f:c3:07:
15:af:fd:e7:83:ec:4e:97:5d:5d:de:18:1b:4a:9b:
97:f9:49:a9:98:a4:31:99:1d:31:06:63:5b:e4:e8:
02:03:28:44:9c:ba:8c:44:6a:e3:c3:fe:bd:47:2f:
31:15:b0:28:51:7a:d2:e8:0c:03:e7:a0:b7:50:ec:
1b:2f:0d:00:cd:5d:92:16:25:1f:43:d2:9c:8e:8f:
bf:b1:6d:03:8a:f9:a8:7c:ec:12:72:88:f3:24:66:
3e:f2:c8:85:a0:03:1d:c8:3e:90:63:f3:02:df:ab:
92:9e:6c:9d:ef:9a:77:11:9c:30:1a:f1:65:5b:85:
d2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CE:6F:B9:37:DF:7F:30:55:36:64:3A:77:79:23:96:28:A7:40:1D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hc5vuTfffzBVNmQ6d3kjliinQB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.23.0/24
31.56.25.0/24
31.56.27.0-31.56.32.255
31.56.34.0/24
31.56.36.0/24
31.56.38.0/24
31.56.40.0/24
31.56.58.0/24
31.56.61.0/24
31.56.68.0/24
31.56.70.0/23
31.56.73.0-31.56.75.255
31.56.80.0/22
31.56.92.0-31.56.111.255
31.57.168.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:8c:9d:70:7d:b9:a1:c4:ee:5d:8e:75:35:8e:9f:99:38:45:
d8:65:49:29:7e:be:f4:17:6f:f8:e3:1c:40:e1:ce:c4:b8:7d:
72:f9:5b:e3:a0:74:af:f9:a4:0b:d6:3c:c7:be:62:f6:4d:25:
74:7a:3b:8b:b0:57:26:16:55:60:ee:4d:a9:99:60:3d:30:1e:
1c:b1:36:e7:58:28:20:0c:51:36:e6:da:46:c8:16:6c:f2:3f:
2b:cf:29:c4:36:7d:2c:23:74:9e:33:de:6e:a1:ca:3d:12:55:
2f:c4:9c:86:60:dd:71:1d:82:b1:fa:6f:98:cd:b7:a5:a1:a4:
7e:30:b3:25:95:fd:a9:73:19:b8:c2:85:ea:de:26:35:9d:f6:
57:24:d6:29:b5:57:a7:c6:0a:93:e3:e9:08:35:b8:89:00:b3:
53:f3:91:ff:61:85:4e:6e:d2:3d:0c:d0:cc:55:e5:a6:3b:d6:
5c:10:b4:6b:6e:dd:ff:a8:33:91:42:4a:2a:3b:32:e0:65:68:
13:60:dd:78:1e:ce:2e:2d:8c:a5:ea:74:2a:c2:3c:02:99:c2:
bd:90:2d:15:76:23:6f:46:13:61:0e:e9:8e:5f:17:8f:c8:07:
05:72:09:fb:07:e7:0c:db:77:7e:6c:ce:a5:4d:ab:1b:50:99:
b1:29:ce:ef
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAZIfm146CCRiAIbzVoRQOmmsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwOTIzMTU1ODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGNlNmZiOTM3ZGY3ZjMwNTUzNjY0M2E3Nzc5MjM5NjI4YTc0MDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8OPsDckmKU+BOhFZpFjTyhF74Be
IubIALuVlcjBxbKOKjh7iSLf0q9IFMPX7bhoWnNqjUcIciYUnWVcn/ge8wvjSSs4
5NjChHLkLT4r+XbMENf3RMRaSfEWVXnTKPe8hTM3+u7jFre4Ljo5c2krdwGfGzcI
WKumsKivSm57ceZxhjlfwwcVr/3ng+xOl11d3hgbSpuX+UmpmKQxmR0xBmNb5OgC
AyhEnLqMRGrjw/69Ry8xFbAoUXrS6AwD56C3UOwbLw0AzV2SFiUfQ9Kcjo+/sW0D
ivmofOwScojzJGY+8siFoAMdyD6QY/MC36uSnmyd75p3EZwwGvFlW4XSOwIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFB3Ob7k3338wVTZkOnd5I5Yop0AdMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvSGM1dnVUZmZmekJWTm1RNmQza2psaWluUUIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAB84FwME
AB84GTAMAwQAHzgbAwQAHzggAwQAHzgiAwQAHzgkAwQAHzgmAwQAHzgoAwQAHzg6
AwQAHzg9AwQAHzhEAwQBHzhGMAwDBAAfOEkDBAIfOEgDBAIfOFAwDAMEAh84XAME
BB84YAMEAh85qDANBgkqhkiG9w0BAQsFAAOCAQEAqoydcH25ocTuXY51NY6fmThF
2GVJKX6+9Bdv+OMcQOHOxLh9cvlb46B0r/mkC9Y8x75i9k0ldHo7i7BXJhZVYO5N
qZlgPTAeHLE251goIAxRNubaRsgWbPI/K88pxDZ9LCN0njPebqHKPRJVL8SchmDd
cR2CsfpvmM23paGkfjCzJZX9qXMZuMKF6t4mNZ32VyTWKbVXp8YKk+PpCDW4iQCz
U/OR/2GFTm7SPQzQzFXlpjvWXBC0a27d/6gzkUJKKjsy4GVoE2DdeB7OLi2Mpep0
KsI8ApnCvZAtFXYjb0YTYQ7pjl8Xj8gHBXIJ+wfnDNt3fmzOpU2rG1CZsSnO7w==
-----END CERTIFICATE-----
Generated at Sun Oct 13 21:19:16 2024 by rpki-client on console-fra.rpki-client.org