Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JfHGwQVZWjS_-Hoh4tmTrHI5pjQ.roa
File: JfHGwQVZWjS_-Hoh4tmTrHI5pjQ.roa (raw, json)
Hash identifier: qYJjaZDJxQJkauExpqivJkO0kOzqkCzTSr4QEuSVYu8=
Subject key identifier: 25:F1:C6:C1:05:59:5A:34:BF:F8:7A:21:E2:D9:93:AC:72:39:A6:34
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019272EA04478CEBCF5C8AE0D6246448F5D8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JfHGwQVZWjS_-Hoh4tmTrHI5pjQ.roa
Signing time: Wed 09 Oct 2024 20:13:12 +0000
ROA not before: Wed 09 Oct 2024 20:13:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 11 Oct 2024 07:44:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:72:ea:04:47:8c:eb:cf:5c:8a:e0:d6:24:64:48:f5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 9 20:13:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25f1c6c105595a34bff87a21e2d993ac7239a634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:08:63:c6:77:96:b5:c2:80:c7:7b:47:0f:1c:
e7:e8:3f:62:5e:93:14:19:59:05:39:ca:cc:e4:6b:
ba:93:0d:f7:f9:07:a7:44:7a:57:fb:2d:26:43:4f:
25:a7:0d:33:d2:bd:8f:7f:e7:e4:0a:ac:3e:8e:5b:
18:22:6d:95:41:2a:1b:9d:c8:2e:2b:37:11:b4:a1:
e6:81:19:9e:07:78:bc:d2:b0:71:3a:44:65:53:4a:
ef:61:a9:7b:50:f3:eb:99:79:51:27:c5:3f:53:a5:
40:19:73:b8:63:7f:6c:0a:38:4a:0d:5b:ae:f0:8d:
9e:66:80:58:95:46:c1:ca:53:1b:2a:21:91:1b:9c:
c7:82:3d:62:e8:79:59:3b:60:43:52:9b:ad:8f:26:
79:65:7a:cb:ba:ce:3f:e3:83:06:5d:e7:42:d1:a3:
cb:95:41:30:e8:d5:39:15:80:7a:ea:0c:55:72:90:
5c:27:58:15:0a:6a:51:de:28:52:21:1a:77:63:98:
bf:e4:93:f6:7e:2c:20:82:60:e5:a9:bd:52:9c:0a:
34:32:a5:1c:3f:be:c9:34:5b:29:8d:d9:91:ce:9c:
0d:d3:9d:9f:dd:47:4f:e3:8c:d3:52:5f:7f:20:80:
45:ae:01:80:e3:c2:f3:bf:f1:b1:24:a6:ea:d1:d1:
1d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F1:C6:C1:05:59:5A:34:BF:F8:7A:21:E2:D9:93:AC:72:39:A6:34
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JfHGwQVZWjS_-Hoh4tmTrHI5pjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.89.0/24
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
Signature Algorithm: sha256WithRSAEncryption
47:0a:11:a6:4f:62:59:2b:95:ed:f0:ca:8f:54:2f:1f:d2:3c:
46:91:f2:f7:ac:cf:96:f8:7c:41:fa:b5:87:6a:c1:d3:b2:f2:
d9:94:8a:82:9e:78:c1:6f:52:7c:04:01:8c:8c:b8:8e:a4:e1:
d1:f7:01:64:f2:98:f9:18:da:c7:be:ad:61:68:09:89:65:12:
32:02:67:f4:a0:58:d4:46:0f:24:b4:52:8a:7c:25:cf:ce:82:
79:32:5c:4a:3a:ff:6e:59:39:d1:c4:dd:cb:c6:0e:a2:db:5f:
8d:5b:82:28:27:17:08:5f:83:b2:71:7e:25:a8:43:06:62:c4:
a5:44:f2:16:11:8e:e9:6b:34:94:56:08:f7:2c:ad:8b:d8:49:
c1:06:5f:11:4e:68:a6:6c:48:7d:3c:b7:1e:92:a5:4a:ed:13:
2b:51:f2:76:41:33:e3:2c:33:86:b6:7d:23:6d:0a:81:0f:78:
30:81:fe:4b:90:9a:60:8a:f6:31:db:19:62:a5:f6:e7:b1:d8:
73:bc:f1:f2:d1:23:09:4b:3c:6d:22:50:4f:04:ec:c1:4f:06:
27:7e:79:89:01:33:7d:27:01:59:41:b6:6a:84:41:e4:ca:46:
3d:ca:95:82:cf:a2:45:2a:75:2b:9b:a8:91:c8:90:e2:cf:a8:
b9:ff:7d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 09:08:50 2024 by rpki-client on console-fra.rpki-client.org