Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MPARaZn1zk8esnEXeeTkQM30em4.roa
File: MPARaZn1zk8esnEXeeTkQM30em4.roa (raw, json)
Hash identifier: hpIsUxiolGeHTo/cZi4RsLKtosCHsdYNiPGjc5li5nM=
Subject key identifier: 30:F0:11:69:99:F5:CE:4F:1E:B2:71:17:79:E4:E4:40:CD:F4:7A:6E
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019183A8AF282ABC188A40244EC7C795F80C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MPARaZn1zk8esnEXeeTkQM30em4.roa
Signing time: Sat 24 Aug 2024 09:12:35 +0000
ROA not before: Sat 24 Aug 2024 09:12:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.56.23.0/24 maxlen: 24
31.56.25.0/24 maxlen: 24
31.56.27.0/24 maxlen: 24
31.56.28.0/22 maxlen: 24
31.56.32.0/24 maxlen: 24
31.56.34.0/24 maxlen: 24
31.56.36.0/24 maxlen: 24
31.56.38.0/24 maxlen: 24
31.56.40.0/24 maxlen: 24
31.56.58.0/24 maxlen: 24
31.56.61.0/24 maxlen: 24
31.56.68.0/24 maxlen: 24
31.56.70.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.73.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.80.0/22 maxlen: 22
31.56.92.0/22 maxlen: 22
31.56.96.0/22 maxlen: 22
31.56.100.0/22 maxlen: 22
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 23 Sep 2024 15:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:a8:af:28:2a:bc:18:8a:40:24:4e:c7:c7:95:f8:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 24 09:12:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30f0116999f5ce4f1eb2711779e4e440cdf47a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d7:e5:ea:6a:0a:60:e1:07:33:13:0b:b1:17:
78:72:08:02:6c:f1:07:ec:80:c6:3d:aa:d5:79:7d:
9c:0f:04:45:2e:11:ff:f7:d3:20:b9:bf:e7:c8:b9:
0d:97:7e:34:56:3a:fe:04:65:3a:cd:e9:a8:51:c5:
db:60:95:0b:b5:bb:3e:55:a1:eb:4a:4f:22:8e:c0:
1c:1f:81:e9:fa:4a:71:03:fb:41:2d:37:d3:87:34:
11:78:9f:96:8c:e4:e0:94:7b:2d:0c:c3:62:0f:39:
2a:53:b5:a9:a4:ef:ce:30:c0:8d:5a:9b:1f:6f:e9:
6b:70:fd:37:88:d1:62:fa:7a:08:8c:40:7f:bc:cf:
e9:0e:b8:f7:fd:92:2c:02:59:41:7d:32:f6:4e:4b:
04:b5:61:4b:1b:85:fc:c3:c3:5a:26:9d:b8:77:89:
41:6b:df:b7:8a:f1:cd:db:da:1f:56:09:20:42:95:
ac:d7:1f:9f:91:c6:e8:c9:1e:76:0f:f8:08:fc:f1:
12:36:f5:a1:4b:a2:2b:1f:28:4c:ca:44:10:2d:6a:
f7:2e:23:00:f7:e4:15:e4:45:63:8d:cc:12:ff:ff:
d8:1c:b0:f3:07:73:70:35:0e:af:df:13:74:89:d5:
32:f4:2a:0a:39:16:88:3f:0e:b9:50:32:5a:55:de:
de:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F0:11:69:99:F5:CE:4F:1E:B2:71:17:79:E4:E4:40:CD:F4:7A:6E
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/MPARaZn1zk8esnEXeeTkQM30em4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.23.0/24
31.56.25.0/24
31.56.27.0-31.56.32.255
31.56.34.0/24
31.56.36.0/24
31.56.38.0/24
31.56.40.0/24
31.56.58.0/24
31.56.61.0/24
31.56.68.0/24
31.56.70.0/23
31.56.73.0-31.56.75.255
31.56.80.0/22
31.56.92.0-31.56.111.255
Signature Algorithm: sha256WithRSAEncryption
8a:56:af:29:5d:74:48:87:dd:5f:25:65:57:22:12:4b:4d:f4:
5e:69:4e:83:79:4b:e5:c9:47:83:db:27:86:cf:a7:3f:d4:49:
d8:b2:40:17:ef:92:bc:eb:52:ee:df:12:c7:bc:ac:a2:e8:3e:
76:a9:37:e8:01:09:11:2e:5c:80:b7:a1:6c:57:85:d9:a6:62:
14:67:d5:8d:87:ad:38:15:8e:21:f1:46:73:27:c7:b4:b5:cd:
f8:85:8d:fd:13:dc:56:5e:8d:54:2a:8e:53:80:ce:47:11:4a:
a0:49:e9:2a:23:2f:21:da:f0:d5:01:dc:9f:05:14:3a:a5:dc:
07:20:d3:4f:1b:72:2c:a4:ac:36:30:f8:f1:16:52:6f:ab:d0:
ae:07:28:66:1d:e2:30:63:64:ba:3e:db:90:bc:44:1c:3f:92:
a5:77:a2:20:7a:88:da:ad:a8:91:18:2a:f7:ac:28:4b:65:06:
75:b1:1b:8c:42:8f:dd:6b:8c:8d:bc:2d:76:a3:c3:1f:26:6e:
83:df:b7:4f:65:12:80:f6:5b:88:41:92:67:d4:17:9e:cd:df:
8c:90:6b:8e:7b:8a:9d:2e:d2:1f:02:dc:28:0d:a8:19:75:f3:
1c:b1:c9:19:3f:52:b4:7e:31:12:0c:c5:1a:4e:e2:eb:30:e7:
f1:0f:91:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 20:19:21 2024 by rpki-client on console-fra.rpki-client.org