Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QDol07grETxc_ZR_lQphP1FPnYg.roa
File: QDol07grETxc_ZR_lQphP1FPnYg.roa (raw, json)
Hash identifier: +J6/Xu+ZHn1QVMPu52E9CP/YRzQS4jzkLDImZiFSg00=
Subject key identifier: 40:3A:25:D3:B8:2B:11:3C:5C:FD:94:7F:95:0A:61:3F:51:4F:9D:88
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01921D693BDDE5C4AD70F982923A879E71F1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QDol07grETxc_ZR_lQphP1FPnYg.roa
Signing time: Mon 23 Sep 2024 05:44:48 +0000
ROA not before: Mon 23 Sep 2024 05:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215727
IP address blocks: 31.56.141.0/24 maxlen: 24
31.57.155.0/24 maxlen: 24
31.57.160.0/24 maxlen: 24
31.57.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 19:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1d:69:3b:dd:e5:c4:ad:70:f9:82:92:3a:87:9e:71:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 23 05:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=403a25d3b82b113c5cfd947f950a613f514f9d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a3:92:4d:c8:78:17:71:b2:90:69:13:af:82:
3c:8e:18:51:d1:90:a1:ff:3c:92:a7:a4:46:94:f3:
9f:6f:5d:d8:fb:9a:90:b7:c4:7d:c9:db:b9:5d:e8:
68:48:ac:58:82:b2:25:45:49:f0:4a:ca:35:02:01:
c1:cc:ab:a5:c8:0c:07:96:0b:8a:d6:b6:6d:75:17:
04:7b:8d:bb:f1:fb:e6:cf:4e:11:94:02:cf:b8:0b:
84:f8:64:e3:5c:1b:77:c6:c9:13:02:7e:70:ce:3e:
ea:d4:38:9c:82:68:d5:4a:f0:87:0e:be:5b:5d:2f:
c1:96:5c:60:21:a3:c1:99:cd:d8:c7:4a:dd:da:2c:
bc:da:b6:0e:23:55:0c:f2:b3:d6:5e:13:a0:2e:3f:
62:72:af:a0:59:d6:12:ac:72:60:99:d5:eb:0f:b0:
bd:4a:3f:07:6f:38:c1:8e:ff:42:8c:72:fa:61:c2:
72:53:67:43:26:df:9b:4d:d6:b8:60:d4:b8:fb:22:
3f:d7:2a:4e:a9:03:1c:a7:bc:4a:8c:ab:8a:25:bb:
68:c2:66:46:7d:59:5e:98:94:e3:5f:4b:f6:af:6c:
f2:ad:41:50:f2:5e:dd:ec:a0:ea:dc:1b:79:46:a1:
f3:a7:de:27:13:73:ec:8d:ef:54:33:44:30:a0:f6:
1a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3A:25:D3:B8:2B:11:3C:5C:FD:94:7F:95:0A:61:3F:51:4F:9D:88
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QDol07grETxc_ZR_lQphP1FPnYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.141.0/24
31.57.155.0/24
31.57.160.0/23
Signature Algorithm: sha256WithRSAEncryption
49:77:ce:e2:b5:02:de:63:ef:00:25:73:33:f4:31:e3:be:47:
7f:f0:cc:18:1f:3d:da:5d:6b:11:c3:5f:6b:22:bd:f9:74:2b:
a3:1e:8e:36:e4:ae:31:da:68:79:a5:23:c6:42:8a:1d:18:63:
2b:26:e7:4c:01:64:22:1f:28:23:50:44:85:84:8f:19:bf:e0:
db:1a:3c:77:b5:29:58:44:b2:4f:49:99:5b:49:51:be:39:b8:
75:65:12:15:f3:63:9f:f4:2a:af:8c:ef:87:e8:b6:07:ed:a8:
ee:33:eb:37:26:d5:0a:32:2f:43:fd:d5:4b:69:9c:4d:18:17:
86:da:14:aa:fa:88:08:d2:de:eb:98:17:e3:d1:d1:1c:3c:63:
be:24:06:a6:43:8f:9a:60:32:bb:5b:4a:bd:ea:51:b4:24:ff:
fc:f4:f8:84:15:27:6b:1b:4d:38:2d:1a:94:ba:14:57:e0:22:
53:69:64:8f:e9:6c:a0:b6:c4:33:d5:6e:03:53:94:78:da:f8:
2f:78:a6:9e:34:f8:41:77:a5:bc:94:bf:b2:80:3c:3a:38:14:
0f:82:35:53:ab:b4:a3:4e:5e:f8:85:6f:22:3e:c3:f2:53:89:
36:70:0a:b3:91:fe:ab:3d:fe:a5:33:ee:c3:0c:10:7a:d6:19:
de:dc:38:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 21:58:07 2024 by rpki-client on console-fra.rpki-client.org