Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IEOClQmkrS-C2JVgghXvQXHodPA.roa
File: IEOClQmkrS-C2JVgghXvQXHodPA.roa (raw, json)
Hash identifier: 8xHY3QhqEHAazJ/PZZyKaRPKEFFVWvv/HpXelMYLG5A=
Subject key identifier: 20:43:82:95:09:A4:AD:2F:82:D8:95:60:82:15:EF:41:71:E8:74:F0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01944A23AC7B8D7D90919D1266DCDC5D1995
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IEOClQmkrS-C2JVgghXvQXHodPA.roa
Signing time: Thu 09 Jan 2025 08:17:19 +0000
ROA not before: Thu 09 Jan 2025 08:17:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57142
IP address blocks: 31.57.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Jan 2025 16:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:23:ac:7b:8d:7d:90:91:9d:12:66:dc:dc:5d:19:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 9 08:17:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2043829509a4ad2f82d895608215ef4171e874f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:14:5b:11:19:2b:c6:34:28:06:f4:07:78:
ca:13:fb:ec:4d:99:8b:1d:0a:dd:aa:29:f7:2f:62:
ac:57:b6:96:e2:08:6f:71:58:8d:4b:bf:1a:2b:8b:
a7:4f:4a:ce:28:63:4d:d3:36:0d:22:86:8e:3b:ad:
97:6a:60:d4:e7:22:1b:08:f5:aa:e5:f0:c7:a6:82:
fc:58:12:01:d0:39:ca:ca:20:95:31:3b:3a:9a:5a:
18:77:56:fa:07:0e:5e:b6:af:5a:3b:ba:f7:03:3e:
63:56:52:fd:72:f4:35:fd:90:9c:74:6e:ec:4b:fa:
b9:39:f9:9d:b6:57:f2:8f:dd:b1:8d:f4:2d:d2:1f:
b6:71:4f:b6:c5:52:51:44:f1:ee:59:28:85:43:0c:
f2:a9:c3:f2:26:a2:5a:90:ee:d7:84:33:22:24:e6:
1d:06:f5:e9:ac:b5:6b:92:7c:8f:7e:6e:5d:1e:0b:
c0:42:ea:f6:a2:2b:9a:1f:12:2f:f1:c2:29:aa:e2:
0f:16:b8:f1:fc:09:5e:4a:50:b7:76:ab:cd:63:9c:
29:85:4f:fd:71:95:e0:76:b1:d1:eb:3d:5d:66:37:
11:1d:c4:b9:88:af:3d:82:12:ac:ae:c5:6f:e0:cf:
ee:39:f1:8b:e4:c8:34:aa:c6:f2:62:05:4a:83:b4:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:43:82:95:09:A4:AD:2F:82:D8:95:60:82:15:EF:41:71:E8:74:F0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IEOClQmkrS-C2JVgghXvQXHodPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.198.0/24
Signature Algorithm: sha256WithRSAEncryption
57:88:f8:53:52:92:89:04:a5:86:a5:e8:20:22:19:94:bd:d0:
61:8d:42:6b:04:b1:3b:7e:2d:55:ff:35:84:68:b1:67:8f:41:
2f:e9:40:98:5f:33:b3:25:6e:7e:09:02:fb:b0:56:97:2d:cd:
74:5a:9e:85:4e:b8:30:51:98:aa:cd:66:04:6a:13:2c:94:ce:
fd:c5:57:20:ca:95:04:e2:7c:2d:b1:79:a1:ad:d8:60:e3:09:
7d:2f:e1:ad:3b:26:18:ca:ac:fd:87:37:92:92:55:45:01:b4:
44:e8:e3:e0:3d:24:3d:16:90:46:5c:48:fd:79:1d:7b:af:6a:
f7:c1:34:2a:3f:c8:a7:a7:be:c1:d9:36:a8:cd:37:eb:05:d1:
11:da:96:2f:da:d5:5d:31:d2:aa:eb:21:c5:99:bd:23:08:50:
97:87:26:cb:f6:20:57:7f:71:62:0a:89:dc:93:71:fa:7d:60:
80:ad:ed:67:31:09:8b:34:43:13:f2:f8:4f:bf:8d:d5:97:2e:
de:e6:46:82:1b:1d:2f:3e:e4:38:fb:62:d1:95:7d:a3:d1:fb:
26:0c:01:6d:50:91:73:da:b8:30:1b:3a:3f:84:9e:54:2b:36:
99:3c:01:af:32:80:8c:51:ba:48:86:80:c0:53:53:1d:1b:5f:
6a:56:05:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:50 2025 by rpki-client