Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QRDfr-WM-U8ii1HZHMDuWzzD_PI.roa
File: QRDfr-WM-U8ii1HZHMDuWzzD_PI.roa (raw, json)
Hash identifier: Y+ILJrTQk4r0l/+rSRWUPy8kmyxe9Vhn5dM+/gNwwQk=
Subject key identifier: 41:10:DF:AF:E5:8C:F9:4F:22:8B:51:D9:1C:C0:EE:5B:3C:C3:FC:F2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01927A8BC134F56E6C9A32FED374D3E62F7A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QRDfr-WM-U8ii1HZHMDuWzzD_PI.roa
Signing time: Fri 11 Oct 2024 07:47:12 +0000
ROA not before: Fri 11 Oct 2024 07:47:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.88.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 11 Oct 2024 14:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:8b:c1:34:f5:6e:6c:9a:32:fe:d3:74:d3:e6:2f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 11 07:47:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4110dfafe58cf94f228b51d91cc0ee5b3cc3fcf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:27:71:5f:aa:1f:57:4d:65:0f:21:6a:db:99:
83:25:a1:29:a4:79:c6:56:94:98:17:e6:1e:e7:82:
5f:1b:fb:c5:2a:92:31:e2:f7:4c:9d:0e:1d:47:c4:
f0:54:74:61:a6:0f:9c:d5:e3:bf:eb:b5:52:4d:04:
e6:fc:99:97:4c:48:73:0f:5e:a6:58:06:a4:4f:8f:
5c:bd:50:ed:6d:5e:11:86:2e:59:6e:82:8d:fe:82:
b0:be:29:ad:26:97:c4:e0:38:09:1e:e3:99:10:54:
3d:fd:51:a5:44:54:f1:f2:dc:e0:48:9a:e5:33:5f:
7f:1f:34:95:45:47:3c:f6:47:b8:0f:1b:ed:de:9e:
ce:f5:c7:b2:e9:97:5d:5c:4c:fe:79:6a:80:54:3e:
59:ab:ff:bd:ed:c2:76:92:34:81:9f:68:39:45:39:
d0:c8:0b:80:5a:ba:04:15:f9:c3:46:65:4d:36:1a:
8b:06:6d:ca:67:80:af:06:20:d3:99:6a:46:bc:cb:
2c:f2:a8:a5:da:72:21:9d:d8:2e:f4:cd:85:a4:9d:
10:68:3a:88:f7:d4:8b:69:7c:5c:25:1f:91:61:5e:
70:3c:22:0b:9f:9f:ad:61:e6:d3:f7:11:74:68:67:
a5:a6:1b:22:b3:d8:e9:c5:9a:b6:13:38:a0:5d:d7:
fd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:10:DF:AF:E5:8C:F9:4F:22:8B:51:D9:1C:C0:EE:5B:3C:C3:FC:F2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QRDfr-WM-U8ii1HZHMDuWzzD_PI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.66.0/24
31.56.86.0/24
31.56.88.0/23
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
Signature Algorithm: sha256WithRSAEncryption
81:02:b5:8a:e4:98:17:1c:24:d9:85:5c:f7:3e:8c:3c:01:fe:
69:51:4f:ec:50:b8:b3:5a:1e:c9:81:f2:48:a3:f5:2c:0c:70:
b9:92:a0:6b:87:a1:c7:41:2e:18:77:b5:3d:65:72:32:82:41:
ac:8f:34:57:a1:c8:43:25:52:6e:c1:13:e8:16:27:08:4a:98:
bf:3c:91:b0:a7:b8:ff:7f:92:8f:64:8b:64:56:86:47:55:81:
e4:a9:0a:f0:9e:7e:f4:ca:b2:f0:f9:19:60:86:6d:77:ee:08:
a7:7e:66:34:ac:da:f1:59:f9:15:74:41:ed:84:3e:9a:a1:01:
5e:b7:08:eb:a5:08:b3:83:e2:3c:e0:30:63:49:a7:85:6e:fb:
49:9a:db:7d:e9:5c:b6:01:35:4b:9f:e8:33:7f:44:a9:20:d6:
59:6b:1d:c1:cc:46:d8:29:b6:0b:6f:bb:1d:93:c7:ff:11:f4:
06:4b:7d:df:f0:19:23:a5:34:10:3c:e7:7c:dc:d2:d4:d4:28:
38:f8:a4:d8:e0:5c:88:a1:30:32:6b:3e:05:86:5c:0d:d1:51:
1f:94:7d:30:ee:89:e4:80:e0:9f:d8:5d:38:a3:c8:4e:77:00:
53:04:65:60:e7:98:ed:eb:84:75:7b:c4:59:76:60:f9:b4:78:
1a:f5:fe:8f
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAZJ6i8E09W5smjL+03TT5i96MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDExMDc0NzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTEwZGZhZmU1OGNmOTRmMjI4YjUxZDkxY2MwZWU1YjNjYzNmY2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCdxX6ofV01lDyFq25mDJaEppHnG
VpSYF+Ye54JfG/vFKpIx4vdMnQ4dR8TwVHRhpg+c1eO/67VSTQTm/JmXTEhzD16m
WAakT49cvVDtbV4Rhi5ZboKN/oKwvimtJpfE4DgJHuOZEFQ9/VGlRFTx8tzgSJrl
M19/HzSVRUc89ke4Dxvt3p7O9cey6ZddXEz+eWqAVD5Zq/+97cJ2kjSBn2g5RTnQ
yAuAWroEFfnDRmVNNhqLBm3KZ4CvBiDTmWpGvMss8qil2nIhndgu9M2FpJ0QaDqI
99SLaXxcJR+RYV5wPCILn5+tYebT9xF0aGelphsis9jpxZq2EzigXdf9tQIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFEEQ36/ljPlPIotR2RzA7ls8w/zyMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvUVJEZnItV00tVThpaTFIWkhNRHVXenpEX1BJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBXBAIAATBRAwQBHzgEAwQA
HzgnAwQAHzhCAwQAHzhWAwQBHzhYAwQDHzhwMAwDBAAfOIkDBAAfOIwDBAAfOJED
BAAfOJMwCwMDAB85AwQBHzkIAwQBHzmEMA0GCSqGSIb3DQEBCwUAA4IBAQCBArWK
5JgXHCTZhVz3Pow8Af5pUU/sULizWh7JgfJIo/UsDHC5kqBrh6HHQS4Yd7U9ZXIy
gkGsjzRXochDJVJuwRPoFicISpi/PJGwp7j/f5KPZItkVoZHVYHkqQrwnn70yrLw
+Rlghm137ginfmY0rNrxWfkVdEHthD6aoQFetwjrpQizg+I84DBjSaeFbvtJmtt9
6Vy2ATVLn+gzf0SpINZZax3BzEbYKbYLb7sdk8f/EfQGS33f8BkjpTQQPOd83NLU
1Cg4+KTY4FyIoTAyaz4FhlwN0VEflH0w7onkgOCf2F04o8hOdwBTBGVg55jt64R1
e8RZdmD5tHga9f6P
-----END CERTIFICATE-----
Generated at Fri Oct 11 18:49:55 2024 by rpki-client on console-fra.rpki-client.org