Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LSF22TShRvf4F1D_0KDXo92f0y8.roa
File: LSF22TShRvf4F1D_0KDXo92f0y8.roa (raw, json)
Hash identifier: sW1M0TponMeOTjnf2cGEvphJzGr6O2Jsa6vfYc1fkgg=
Subject key identifier: 2D:21:76:D9:34:A1:46:F7:F8:17:50:FF:D0:A0:D7:A3:DD:9F:D3:2F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192E348A459F26FBB0D7C7CE017C8F1EF04
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LSF22TShRvf4F1D_0KDXo92f0y8.roa
Signing time: Thu 31 Oct 2024 15:54:01 +0000
ROA not before: Thu 31 Oct 2024 15:54:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.16.0/22 maxlen: 24
31.57.20.0/22 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.58.196.0/22 maxlen: 24
31.58.204.0/22 maxlen: 24
31.58.212.0/22 maxlen: 24
31.58.220.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
217.60.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 07:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e3:48:a4:59:f2:6f:bb:0d:7c:7c:e0:17:c8:f1:ef:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 31 15:54:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d2176d934a146f7f81750ffd0a0d7a3dd9fd32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b8:fe:e3:46:20:3d:d4:ac:14:d2:59:51:8e:
8c:48:40:23:a8:28:bc:e4:a7:c3:7e:be:6c:2f:15:
fd:b7:3c:37:38:aa:e6:0e:42:69:74:bf:b4:4f:99:
11:fd:39:56:9d:c3:c9:48:17:60:74:8f:f2:3d:59:
a2:96:10:dc:48:72:d8:62:03:68:dc:05:eb:c6:aa:
ef:de:6c:47:3b:75:ee:05:68:5f:d6:ad:88:a5:63:
d5:10:c9:a3:98:f6:fc:68:63:3f:4c:1d:c4:b4:c7:
54:b3:cd:e8:99:45:78:22:4d:86:f1:62:20:6b:79:
d8:df:5a:cf:ff:d2:80:7c:5f:fe:54:a9:ca:66:f4:
7d:32:60:81:ba:c1:d5:1b:13:06:d1:f0:16:47:d2:
19:4d:55:57:08:01:31:e0:ed:13:a0:df:15:24:a2:
9f:86:ee:fa:e2:c5:a3:5f:a1:20:d8:04:cb:d5:e1:
0d:ed:27:b9:9b:e1:2f:3b:9b:29:db:76:ce:91:ed:
be:92:e8:38:7b:2c:5e:05:0a:72:9f:a7:4a:09:c7:
66:00:3c:49:06:86:73:45:d7:08:d1:b6:1e:0c:f7:
be:a8:9d:02:ed:05:a4:fd:58:e1:ee:0e:b6:8f:6b:
60:3c:27:a6:83:ed:4b:03:0e:06:c8:e0:16:6c:df:
17:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:21:76:D9:34:A1:46:F7:F8:17:50:FF:D0:A0:D7:A3:DD:9F:D3:2F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LSF22TShRvf4F1D_0KDXo92f0y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.16.0/20
31.57.48.0/20
31.57.92.0-31.57.99.255
31.57.120.0/21
31.58.196.0/22
31.58.204.0/22
31.58.212.0/22
31.58.220.0-31.58.227.255
217.60.0.0/18
Signature Algorithm: sha256WithRSAEncryption
62:2e:d4:3c:7e:41:42:a5:6e:19:59:14:24:00:55:ea:5a:c9:
13:d3:7a:6f:42:ee:b0:39:48:9c:9b:77:4e:18:73:1e:4b:b5:
0f:c6:40:a7:d4:4b:66:90:92:c7:19:8d:35:74:11:93:02:fe:
d8:d3:aa:84:79:04:2a:d6:15:74:a4:36:c1:6d:74:29:43:1a:
cb:46:e7:06:db:8e:0f:0f:b5:12:0e:f5:ed:39:d8:1d:51:b6:
bd:5c:63:02:54:e0:73:cd:70:7e:07:56:fd:49:b8:6c:ae:08:
92:65:36:68:56:dc:52:09:aa:2f:6e:87:91:39:0d:f2:75:41:
2b:33:dc:c0:c8:8c:e5:7e:bf:79:56:07:02:4a:0b:55:78:e1:
69:8a:8c:79:ef:35:6f:03:e0:f0:b0:eb:d7:ff:81:db:33:5c:
bb:be:35:72:83:b5:05:70:b0:c9:14:56:90:f7:70:fc:a0:c2:
eb:48:5b:7d:99:b7:80:e1:9a:a4:ca:e3:5b:02:3f:7c:20:31:
80:17:c5:aa:40:c1:42:8f:92:8c:06:4a:13:93:23:7f:4d:1c:
02:1c:e0:97:4f:fa:02:62:2c:58:f7:fe:c1:14:e5:34:c7:1c:
3f:50:38:74:14:33:c7:c4:80:68:cb:3f:61:73:8a:67:29:ed:
f4:d9:a4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 08:25:35 2024 by rpki-client on console-fra.rpki-client.org