Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N2hShvatqogi70yyKKPdmL8-JG0.roa
File: N2hShvatqogi70yyKKPdmL8-JG0.roa (raw, json)
Hash identifier: pvFeH12mE4BLPQHe6rPoBfIeOhLROyboXRbgbNvtuq8=
Subject key identifier: 37:68:52:86:F6:AD:AA:88:22:EF:4C:B2:28:A3:DD:98:BF:3E:24:6D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01937F09D2A84BD407DF4CDBF481B65E59D8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N2hShvatqogi70yyKKPdmL8-JG0.roa
Signing time: Sat 30 Nov 2024 21:46:10 +0000
ROA not before: Sat 30 Nov 2024 21:46:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213795
IP address blocks: 31.56.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7f:09:d2:a8:4b:d4:07:df:4c:db:f4:81:b6:5e:59:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 30 21:46:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37685286f6adaa8822ef4cb228a3dd98bf3e246d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:24:00:fa:10:ce:e3:26:0f:d7:3f:40:8f:7b:
1a:53:97:62:41:9b:d8:6f:d3:ce:cb:f2:af:b2:a6:
72:20:32:58:b2:a3:27:8b:b5:fa:e3:74:37:79:29:
7d:85:b1:b1:c9:c7:71:22:80:96:42:62:bc:60:5c:
df:44:bb:5b:47:36:4a:8d:6b:c9:d9:1c:1f:17:bd:
2a:30:b9:aa:a1:ae:32:80:48:39:4a:3e:b8:28:f8:
f3:36:60:f9:1a:83:a7:43:8a:21:d5:17:e9:01:5c:
07:79:32:72:9b:b1:2e:63:45:11:be:2d:cb:1c:1b:
fc:c4:08:c2:93:0a:5a:87:c0:3c:35:a8:87:d9:a7:
2e:16:4d:46:e9:b1:47:dc:6b:bc:46:2f:b2:10:3a:
f4:8e:5a:cd:72:a3:94:81:29:43:f9:c1:5c:90:7b:
a7:fb:53:ad:6d:57:1f:4c:4d:99:e0:40:05:f6:c0:
63:16:a9:31:ba:a9:de:e2:5b:11:dd:b5:e9:4c:ae:
03:94:67:bc:66:87:e9:54:b5:61:26:e6:65:40:ee:
22:3b:be:16:ff:f8:10:c8:65:01:d6:b6:dc:0b:96:
87:80:68:a1:e5:2a:c4:0e:4e:b7:79:5d:da:85:e6:
ee:39:0a:1d:ec:77:5a:7f:31:ad:1f:1a:ea:5c:5e:
d5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:68:52:86:F6:AD:AA:88:22:EF:4C:B2:28:A3:DD:98:BF:3E:24:6D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/N2hShvatqogi70yyKKPdmL8-JG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.60.0/24
Signature Algorithm: sha256WithRSAEncryption
30:74:92:8d:ef:bc:bc:91:b6:3a:77:b6:d7:72:23:83:49:1b:
51:bb:97:b3:bb:37:bc:ce:7c:16:49:d5:ba:9f:35:05:64:41:
ce:49:40:d4:1f:20:5e:d0:78:b5:1d:72:4a:fd:7d:f2:48:b7:
a6:ae:13:4f:a4:3f:6e:e3:b4:e9:9b:d1:4f:a7:8b:11:82:b8:
4e:4f:20:35:5a:ad:7a:18:88:d4:4d:d4:9b:d6:0e:68:08:8e:
ff:ab:6e:ed:64:65:bd:4a:c7:55:b7:58:7f:b8:fc:11:e1:7e:
65:73:24:19:3e:49:90:d8:83:a0:f2:cf:c0:67:c2:75:10:72:
9d:38:42:c6:ff:38:e1:f0:66:24:f8:31:cd:c8:cd:e9:51:15:
d3:44:f9:b4:fd:e7:17:16:7e:98:df:d0:d0:ec:49:eb:28:5e:
cb:63:d8:0b:d0:64:cb:fd:48:8f:74:e2:0f:1c:c1:ee:e5:24:
82:78:a2:cf:c0:dc:fd:35:9a:94:7e:d7:69:59:44:de:8c:45:
f1:7b:e7:96:7d:5e:a3:5c:d6:a5:37:e1:5d:51:7b:10:fa:c5:
51:e9:88:b6:aa:d2:af:f6:8d:3f:dc:dc:b2:46:72:e7:92:48:
d1:8c:c9:61:ff:0f:e6:d6:5e:8e:ad:79:b8:29:f5:82:0a:c7:
d0:c8:00:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:08 2025 by rpki-client