Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JW80LPoMSgel1KZsV4Ru9zzyOwA.roa
File: JW80LPoMSgel1KZsV4Ru9zzyOwA.roa (raw, json)
Hash identifier: qNyn6rvgxKnJfR1TaVSgYgYWR5NmXrJsmr2OIapPVVo=
Subject key identifier: 25:6F:34:2C:FA:0C:4A:07:A5:D4:A6:6C:57:84:6E:F7:3C:F2:3B:00
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193F491F133256A83DE3A9B74C4811E5284
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JW80LPoMSgel1KZsV4Ru9zzyOwA.roa
Signing time: Mon 23 Dec 2024 17:30:25 +0000
ROA not before: Mon 23 Dec 2024 17:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 31.56.8.0/21 maxlen: 24
31.56.142.0/23 maxlen: 24
31.56.148.0/22 maxlen: 24
31.57.184.0/22 maxlen: 24
31.59.68.0/24 maxlen: 24
31.59.136.0/21 maxlen: 24
31.59.144.0/21 maxlen: 24
31.59.152.0/21 maxlen: 24
31.59.160.0/21 maxlen: 24
31.59.168.0/21 maxlen: 24
217.60.236.0/24 maxlen: 24
217.60.245.0/24 maxlen: 24
217.60.248.0/24 maxlen: 24
217.60.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Dec 2024 14:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:91:f1:33:25:6a:83:de:3a:9b:74:c4:81:1e:52:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 23 17:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=256f342cfa0c4a07a5d4a66c57846ef73cf23b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:51:4b:a8:f3:fd:eb:e5:e9:c9:4e:ec:2d:8d:
de:32:7b:1f:cf:39:9a:9d:59:f2:3b:11:01:fc:4a:
aa:ed:1c:af:95:d3:8b:96:1d:b5:92:c4:24:da:9a:
73:5b:21:96:ff:e1:2a:6e:53:0b:09:d1:2a:42:3e:
40:62:06:3e:be:f1:c6:d5:f3:c8:21:cf:61:1a:40:
49:10:36:2e:a4:cb:63:41:0c:f1:c5:46:a7:c2:0c:
84:a8:69:7a:a3:52:b2:39:5e:72:23:87:7e:8d:3f:
b3:86:01:ec:24:f2:ba:8e:79:21:71:8e:0c:7d:a9:
60:5e:ce:3c:e1:9d:3e:dd:82:72:ea:e3:64:28:c5:
7a:80:7a:94:af:f2:b7:52:b1:0e:a7:5c:ad:74:57:
a4:b9:4c:3b:bd:7d:67:2e:3c:61:c8:b1:84:b2:12:
8e:1f:5f:ff:dc:fa:1a:1e:c3:ac:d1:04:51:e9:e1:
c9:aa:81:32:fb:8c:e2:dd:64:09:04:22:f4:62:e1:
66:dc:1d:0b:f8:f4:a6:c7:7a:cf:bd:d2:92:1a:95:
c9:47:6c:b9:e4:6f:57:0a:c3:52:9b:38:12:68:35:
48:72:43:b9:57:6e:d5:85:94:f0:95:6f:06:df:bb:
8b:1c:46:7c:74:0f:19:42:ea:95:cf:34:e4:d8:3a:
3f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6F:34:2C:FA:0C:4A:07:A5:D4:A6:6C:57:84:6E:F7:3C:F2:3B:00
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JW80LPoMSgel1KZsV4Ru9zzyOwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.8.0/21
31.56.142.0/23
31.56.148.0/22
31.57.184.0/22
31.59.68.0/24
31.59.136.0-31.59.175.255
217.60.236.0/24
217.60.245.0/24
217.60.248.0/24
217.60.254.0/24
Signature Algorithm: sha256WithRSAEncryption
99:62:d9:0d:5a:fa:83:fc:7f:55:ba:92:d5:42:7e:4d:9a:d0:
4f:9c:26:4a:28:bb:a6:86:cd:d0:4e:f5:5f:a8:ed:4b:30:6f:
79:7d:44:fe:b2:bc:9e:30:2d:b8:6a:d5:9b:87:35:ff:ea:64:
85:94:e5:39:23:59:27:07:63:ff:b4:c8:17:06:ca:8f:74:fc:
a7:34:c5:6c:3c:65:99:f2:6e:23:21:cb:d9:1a:a4:3c:3f:96:
cd:fd:2c:32:9a:19:0f:1f:53:bf:45:7a:ea:e2:7e:a0:f7:de:
55:91:be:5a:fd:b4:95:8d:40:49:24:c9:aa:04:34:9b:bf:a7:
0a:53:b7:3f:55:e4:e5:a7:26:a0:9f:c4:9c:d1:19:7d:d8:7d:
24:dd:e0:ce:26:69:6f:1c:b0:6f:02:09:d7:26:4b:69:61:50:
a1:da:7a:c5:c2:e9:f5:99:33:5e:53:6b:a2:02:bc:21:ec:d5:
68:a8:8f:08:90:4a:c5:7c:eb:a5:90:4d:e0:ba:7f:83:68:21:
82:be:79:21:e3:42:7d:b9:2b:e1:2c:e1:cc:35:61:e7:7d:32:
8f:d2:34:2f:cb:4e:36:e0:6e:79:d9:b3:5e:45:67:57:be:cb:
31:d3:8e:41:20:e5:47:92:44:75:50:42:85:39:7c:89:5f:87:
ce:74:0d:6c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:38 2025 by rpki-client