Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JCmUvJqaDVUJlf-wLfzKSycIwho.roa
File: JCmUvJqaDVUJlf-wLfzKSycIwho.roa (raw, json)
Hash identifier: Dl9zMFLBX2atxc7u2IXrFVgXZu2bWnNKeShOh+yw/Qo=
Subject key identifier: 24:29:94:BC:9A:9A:0D:55:09:95:FF:B0:2D:FC:CA:4B:27:08:C2:1A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019586B86752627B771B5C76E6F24F2AD92C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JCmUvJqaDVUJlf-wLfzKSycIwho.roa
Signing time: Tue 11 Mar 2025 19:39:46 +0000
ROA not before: Tue 11 Mar 2025 19:39:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.156.0/24 maxlen: 24
31.57.92.0/22 maxlen: 22
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.57.208.0/22 maxlen: 22
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.92.0/22 maxlen: 22
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.220.0/22 maxlen: 22
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Mar 2025 14:38:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:86:b8:67:52:62:7b:77:1b:5c:76:e6:f2:4f:2a:d9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 11 19:39:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=242994bc9a9a0d550995ffb02dfcca4b2708c21a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:44:9a:c4:da:f7:06:50:a6:0c:06:18:32:65:
f8:85:67:eb:75:55:47:a9:cb:7d:56:7e:52:77:76:
79:f8:07:8e:4d:c0:db:15:e1:f9:95:9e:4b:11:13:
ee:84:64:0e:ed:44:cd:15:7c:ea:cf:4c:8f:f6:fd:
02:50:2c:54:aa:2b:97:80:69:20:d4:c0:be:27:6c:
9b:d2:79:b8:2c:91:57:47:bb:30:ec:d0:f2:79:bb:
17:30:84:4e:69:82:2c:5d:30:f3:a6:0e:ff:b2:18:
49:c3:ad:50:c1:e7:8b:4f:2a:43:8b:ab:ca:fd:17:
eb:94:c1:07:e2:2d:8a:0d:b7:7d:29:94:32:00:cd:
7c:99:0c:a6:d3:30:fa:06:ec:36:73:19:ad:53:e4:
c6:00:57:9c:92:c1:ab:b1:e2:fb:52:c2:bd:bc:56:
c4:93:cb:c0:d3:bc:c5:3c:b2:ba:6b:0a:da:f6:b6:
de:f2:85:73:74:3e:f9:a2:cb:1c:66:71:ef:82:b3:
c5:51:67:b4:66:d9:18:23:b9:85:60:0a:c3:80:8f:
6e:92:2e:4e:76:fd:e5:30:16:41:59:57:f0:ce:17:
a0:5d:d5:cf:73:c1:ad:6d:4b:d8:40:40:ab:7f:96:
12:8a:9e:f4:96:d3:94:e4:9d:c3:57:5a:39:86:8f:
5e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:29:94:BC:9A:9A:0D:55:09:95:FF:B0:2D:FC:CA:4B:27:08:C2:1A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JCmUvJqaDVUJlf-wLfzKSycIwho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.156.0/24
31.57.92.0/22
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.57.208.0/22
31.58.33.0/24
31.58.90.0/24
31.58.92.0/22
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.220.0-31.58.224.255
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
Signature Algorithm: sha256WithRSAEncryption
62:1a:c4:c3:95:a0:31:27:35:37:d8:e2:28:67:fd:42:69:92:
07:0f:2f:22:30:83:f6:42:76:12:3f:e7:1c:2a:9f:a9:8b:d4:
c7:12:49:fb:e0:89:37:4e:36:18:ce:8a:d6:0a:0b:58:12:2a:
f2:98:5b:49:54:bc:da:cc:7b:9c:d1:e3:6b:9f:12:ae:b3:9b:
c9:60:f1:a0:3f:07:91:31:15:0d:9c:58:82:da:ad:40:03:28:
02:32:65:61:80:73:0c:55:78:94:1d:4d:19:07:be:c5:ca:20:
6e:46:c1:29:fb:95:78:ef:c9:54:1f:30:8d:07:1b:8f:72:6c:
4d:1d:c2:45:eb:cf:c5:e4:68:c1:77:d6:6a:77:54:6f:72:30:
3c:b4:bf:e9:6b:b3:4a:04:bd:5f:c5:96:39:b9:e6:37:ea:16:
d2:7d:a6:15:e6:fa:90:e0:83:9c:e3:a6:7b:79:e3:c7:1b:47:
b4:32:9f:ad:f5:03:f1:d9:61:f8:8a:12:47:f8:00:d8:92:0b:
24:1a:30:6d:51:b2:da:5f:3e:ca:5e:bb:be:a0:a2:5b:53:64:
c2:ed:e0:c9:56:91:6e:3e:b0:05:27:d9:93:cc:8f:0b:13:f6:
95:cd:ff:65:09:5d:05:54:4a:24:d0:2f:e0:fa:c9:6b:8e:64:
47:22:d2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 09:50:51 2025 by rpki-client