Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LU-7VQrWr3RRErbxwN_a9io6Ixc.roa
File: LU-7VQrWr3RRErbxwN_a9io6Ixc.roa (raw, json)
Hash identifier: ok1qHNJcsNsaYSaXaGysAybgax8jSo+ubQmsp20dckc=
Subject key identifier: 2D:4F:BB:55:0A:D6:AF:74:51:12:B6:F1:C0:DF:DA:F6:2A:3A:23:17
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019465B55AE6DC2E119837738297DA29C870
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LU-7VQrWr3RRErbxwN_a9io6Ixc.roa
Signing time: Tue 14 Jan 2025 16:46:11 +0000
ROA not before: Tue 14 Jan 2025 16:46:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400916
IP address blocks: 31.57.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Jan 2025 20:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:65:b5:5a:e6:dc:2e:11:98:37:73:82:97:da:29:c8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 14 16:46:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d4fbb550ad6af745112b6f1c0dfdaf62a3a2317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:d0:13:e4:96:c6:75:08:35:c0:b8:65:66:
6a:cd:58:b7:2a:f8:4b:25:0b:ca:20:ba:e0:06:3e:
d0:16:9a:ec:2e:56:b3:9a:d7:3b:2e:4e:c7:a9:72:
6a:89:b8:bd:8a:af:0c:98:1a:3b:f9:d9:8c:e7:9d:
a2:5f:eb:78:30:76:89:c6:d9:d2:9d:a6:f1:6f:1f:
ee:ef:50:c4:e2:b2:1e:f0:98:4b:d2:d7:b3:96:39:
13:95:19:1d:35:a7:83:2a:37:80:7d:2f:b3:8f:d8:
da:cf:1f:29:53:17:46:df:7f:9a:49:84:28:77:35:
b3:00:11:d0:be:7c:a8:74:c0:56:8e:28:b7:3f:2b:
fe:cf:0b:4e:6a:48:a7:9e:52:32:1b:2a:66:ce:17:
9e:19:5a:d0:e4:49:f0:cd:ac:a2:b7:51:2b:d5:75:
da:99:68:f6:4f:13:05:af:26:51:e4:01:1e:25:48:
38:aa:6b:0f:d0:8d:f5:f6:9d:1a:80:90:c2:29:7a:
50:8b:0f:44:14:86:ec:ad:14:6b:54:c3:8e:c8:c9:
5a:11:2a:da:e9:55:5f:70:a7:6c:b9:7c:cb:50:d9:
71:c2:6b:e6:fd:c1:97:b8:28:72:2d:a0:14:ca:c8:
21:f6:ac:1f:e2:14:cb:87:03:91:71:da:bc:d4:48:
63:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4F:BB:55:0A:D6:AF:74:51:12:B6:F1:C0:DF:DA:F6:2A:3A:23:17
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LU-7VQrWr3RRErbxwN_a9io6Ixc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:2b:56:c0:a5:8e:3a:01:f5:b9:50:c1:a6:9e:c5:d2:8e:40:
7d:70:cc:a9:b4:31:3e:00:5d:cc:76:87:fb:dd:e9:e4:35:ed:
1f:04:41:10:3c:d2:46:f7:03:74:7a:09:c9:1c:72:e8:a2:a0:
52:38:04:15:d2:a9:e8:37:9c:7f:cd:84:3e:2f:81:aa:79:63:
ca:d0:52:37:82:1d:af:2c:2f:16:8f:49:af:b6:99:5d:a5:d1:
b8:10:28:18:f1:69:67:21:a2:0e:68:07:1c:3e:ed:dd:d1:20:
60:da:a7:fa:c7:25:8a:bf:e4:af:ed:a4:3f:36:f1:9c:4b:e2:
0a:75:5e:77:fd:da:a4:f9:44:1e:14:ab:d1:1d:e6:fe:3c:7d:
59:7e:3e:3c:61:40:fc:b5:c9:31:94:31:5b:9a:c7:26:dc:a2:
a5:41:3a:90:9d:7d:81:74:76:90:2b:81:f4:70:bc:00:6a:69:
c7:96:85:ed:a8:8f:69:b7:fd:bc:a7:57:6a:f7:c4:18:fb:46:
56:3f:17:88:4f:4a:c3:05:cf:9f:71:1b:fe:99:b3:8d:08:d0:
cf:7d:c7:80:06:ac:a1:0e:29:a0:82:e6:c8:2d:a6:97:19:59:
d7:c7:c1:95:55:e8:31:30:b8:d2:c3:b2:b0:07:90:3a:3e:70:
b6:90:c3:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:08:03 2025 by rpki-client