Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hk2ijhvaDjz5jibysEf5tfuDl98.roa
File: Hk2ijhvaDjz5jibysEf5tfuDl98.roa (raw, json)
Hash identifier: u47+727VoTGec6tB1zdugXPFaAqoRhU+M0u82agW0xg=
Subject key identifier: 1E:4D:A2:8E:1B:DA:0E:3C:F9:8E:26:F2:B0:47:F9:B5:FB:83:97:DF
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195672877DFF0E89BBD19DFB8CE716541F4
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hk2ijhvaDjz5jibysEf5tfuDl98.roa
Signing time: Wed 05 Mar 2025 16:34:20 +0000
ROA not before: Wed 05 Mar 2025 16:34:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.57.140.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Mar 2025 13:15:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:67:28:77:df:f0:e8:9b:bd:19:df:b8:ce:71:65:41:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 5 16:34:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e4da28e1bda0e3cf98e26f2b047f9b5fb8397df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:61:44:e6:af:0e:91:04:06:1d:bb:b6:37:92:
8b:13:17:a7:f4:d5:07:66:48:a7:4d:66:21:40:25:
b2:b5:c6:7d:9f:b0:3a:d4:42:8a:b7:5a:ac:1a:c2:
c6:52:4c:95:bf:b6:ac:58:cb:09:9f:86:86:13:0d:
f6:5a:03:05:a8:d7:d3:3b:9d:2a:f8:f4:31:1f:30:
a8:b8:f7:7b:72:b4:15:08:37:39:4b:89:1b:34:ac:
e4:ca:c1:9e:aa:8a:1b:23:1c:8d:82:57:17:0e:83:
be:22:5e:33:1b:ff:f6:f1:e8:16:e8:f0:21:10:03:
8f:e1:ee:66:bc:d8:f2:ac:7d:95:b9:b3:c4:a2:b3:
d5:fb:0e:1a:33:4f:15:db:8b:37:16:48:9a:dc:cd:
88:3d:82:b6:02:07:da:70:7f:ff:3d:57:b2:fc:1c:
da:2a:fe:d5:eb:4b:24:07:71:63:de:84:c1:61:f0:
ab:5c:97:70:1b:e7:ba:08:12:bb:76:ab:de:df:e9:
aa:b2:2d:5f:34:65:28:0d:35:85:25:9c:b0:e8:25:
ec:76:3b:b0:d3:4f:a6:14:64:37:9c:be:47:86:ad:
6d:16:08:d5:fb:ca:a1:45:01:fb:61:b7:40:cf:ad:
e9:b6:7b:62:22:e5:e8:e4:67:71:e2:aa:7b:39:69:
30:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4D:A2:8E:1B:DA:0E:3C:F9:8E:26:F2:B0:47:F9:B5:FB:83:97:DF
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Hk2ijhvaDjz5jibysEf5tfuDl98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.86.0/24
31.56.107.0/24
31.57.140.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:13:44:d5:88:35:23:e1:ab:a4:9c:38:cf:03:43:c2:6a:69:
d3:78:91:8c:e2:5d:08:84:ea:e6:a8:4f:ec:a0:25:9d:fa:ce:
37:89:6c:81:17:a4:15:68:dc:ac:e6:71:a9:7c:2c:c3:76:ba:
6e:a3:df:8b:41:56:c3:7f:66:7c:98:da:e4:0d:dc:cb:f7:6a:
e2:37:de:d2:1d:9e:fa:0e:61:bf:41:b0:bd:bf:41:07:e8:69:
e2:d0:94:fd:1b:da:7f:19:b8:d7:f8:6f:66:88:6a:2e:39:c0:
1d:a0:26:eb:96:c2:90:5f:29:83:0f:f3:1d:b0:1c:e6:e8:90:
ee:fb:58:a0:39:64:d1:04:41:36:d1:86:41:fa:92:e2:1b:80:
69:71:4b:aa:9d:6c:eb:ea:34:0c:85:eb:f1:53:76:bf:73:72:
31:48:60:c6:9a:f8:4d:55:c9:44:05:4e:10:dd:0b:b0:eb:14:
4e:6d:ef:6a:ee:86:a8:cd:df:f6:f6:95:5b:2f:ba:8b:ca:13:
63:3a:54:a8:0e:e7:6f:25:e5:67:c4:e3:dc:6a:09:10:7d:fc:
a8:6f:b1:f0:06:46:b8:f1:f8:c4:a1:8d:d6:65:ff:50:15:7e:
d5:4d:05:d5:fe:1d:2f:dd:25:57:4c:6e:88:aa:a8:d3:36:35:
2c:3c:40:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 10:05:16 2025 by rpki-client