Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LHRmBx9z964o3xD4cogduU_hJgw.roa
File: LHRmBx9z964o3xD4cogduU_hJgw.roa (raw, json)
Hash identifier: XNYtt4kj8DtI1t3cAEw0mUas+o+CccmgG2aDVTn6zJ8=
Subject key identifier: 2C:74:66:07:1F:73:F7:AE:28:DF:10:F8:72:88:1D:B9:4F:E1:26:0C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019376DEC1C4EF89C995C8053D18D835D56C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LHRmBx9z964o3xD4cogduU_hJgw.roa
Signing time: Fri 29 Nov 2024 07:42:10 +0000
ROA not before: Fri 29 Nov 2024 07:42:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.48.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.184.0/23 maxlen: 24
31.57.186.0/23 maxlen: 24
31.57.188.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.129.0/24 maxlen: 24
31.58.130.0/24 maxlen: 24
31.58.131.0/24 maxlen: 24
31.59.68.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Nov 2024 18:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:76:de:c1:c4:ef:89:c9:95:c8:05:3d:18:d8:35:d5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 29 07:42:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c7466071f73f7ae28df10f872881db94fe1260c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:2b:02:1c:7b:98:16:92:2f:5d:1f:e7:dd:
0d:6f:da:f2:9f:e7:cc:cb:6b:64:99:52:c3:f9:42:
d8:2b:28:a7:79:15:b5:28:13:b0:2a:6c:2a:e8:b9:
ed:ab:52:f0:9f:74:b5:38:63:92:06:96:ba:85:94:
ec:45:95:6b:66:7e:e4:76:a3:af:01:57:08:dc:1e:
07:62:a1:18:ad:fb:33:f6:6f:a7:05:eb:f2:1b:22:
2b:fc:c9:df:7f:a1:97:0e:4c:a2:bf:9a:74:3e:95:
53:0f:55:74:6a:e1:0d:bc:ca:fe:1f:c0:03:33:91:
81:39:2d:e6:ee:04:cc:1d:88:4f:d6:e1:cc:d8:08:
48:89:18:26:4b:87:81:42:6f:f5:22:3d:0e:c7:3d:
01:88:ce:bf:5b:19:6e:70:05:38:83:4d:91:1c:c1:
e9:53:40:e9:76:5d:9e:d0:58:09:64:50:1a:6f:74:
90:0a:fb:53:05:28:2f:98:c2:28:bd:01:9a:72:13:
d1:8f:99:8f:de:8e:e8:60:ef:4d:cf:82:f5:9d:cb:
a9:0b:35:bc:7e:7b:94:93:bb:a7:75:c6:bd:11:ae:
3b:c9:69:2e:93:42:52:39:05:0d:a9:69:6e:17:aa:
b8:92:c8:e6:fa:ad:e6:0e:73:b8:8e:a6:d0:c4:e9:
93:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:74:66:07:1F:73:F7:AE:28:DF:10:F8:72:88:1D:B9:4F:E1:26:0C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LHRmBx9z964o3xD4cogduU_hJgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.48.0/24
31.56.57.0/24
31.56.89.0/24
31.56.104.0/21
31.56.120.0/22
31.56.127.0/24
31.57.65.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0-31.57.188.255
31.57.192.0/22
31.57.232.0/22
31.58.129.0-31.58.131.255
31.59.68.0/24
31.59.96.0/22
31.59.112.0/22
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:4e:7b:70:48:26:5b:f5:ee:bb:a5:5c:b5:55:f7:36:07:1f:
6f:99:9f:f9:e5:1e:42:ba:02:24:9d:7c:8b:79:19:4f:aa:85:
75:64:ab:bb:b2:28:2d:d6:31:41:6b:cf:8b:e5:05:ab:58:f7:
4f:bd:7e:d4:83:5a:2a:0f:2f:2b:f7:3a:f3:ad:8b:92:24:2b:
69:4e:36:c8:68:a6:76:65:f4:6b:3e:3f:2f:50:ac:c4:ba:b9:
40:36:a5:44:4d:4e:82:9c:26:52:2b:1a:f2:c2:14:02:52:b7:
64:f0:c9:cc:9d:a7:52:95:7d:67:a6:c1:46:4c:d0:3b:21:c5:
55:c3:8f:9e:bb:98:cd:48:db:02:41:49:0d:17:1c:34:f6:23:
87:3a:c8:1f:27:5b:c6:5c:84:4b:1a:7c:7b:52:47:12:33:e4:
d4:fe:3f:8e:81:3b:63:8c:bf:a9:b9:1f:df:cf:f3:6d:8f:49:
af:ef:cb:29:7a:a5:5c:e5:e6:98:a9:af:92:8c:5c:0e:32:f2:
12:38:e1:b9:fb:6a:8f:08:8f:7b:c6:ad:ee:86:5b:a3:a9:d1:
77:24:99:b7:2c:84:ad:e9:1c:e2:08:b7:96:cc:dc:2b:39:1f:
8d:77:9a:02:28:0d:f7:b8:72:44:6d:55:88:53:e3:59:39:fe:
b9:d4:fe:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:51:01 2025 by rpki-client