Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QwEp3ipYhk96qDkJobMupH8u01M.roa
File: QwEp3ipYhk96qDkJobMupH8u01M.roa (raw, json)
Hash identifier: A56Q+lW4mzfN47k7zucWYnMmBLhzsdQSn1laXj+LK4I=
Subject key identifier: 43:01:29:DE:2A:58:86:4F:7A:A8:39:09:A1:B3:2E:A4:7F:2E:D3:53
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019183A8B00C2BC54644A875C7672F44990C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QwEp3ipYhk96qDkJobMupH8u01M.roa
Signing time: Sat 24 Aug 2024 09:12:36 +0000
ROA not before: Sat 24 Aug 2024 09:12:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 138077
IP address blocks: 31.56.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:a8:b0:0c:2b:c5:46:44:a8:75:c7:67:2f:44:99:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 24 09:12:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=430129de2a58864f7aa83909a1b32ea47f2ed353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:49:51:34:e4:32:b0:b5:0d:c7:f6:63:6e:
6c:cc:dd:54:40:ae:b5:68:42:ed:bf:eb:90:20:c2:
96:f2:9a:65:f2:2f:7a:ef:2f:1e:ee:08:f7:db:2d:
b6:31:4b:fd:53:9a:56:cb:9f:bc:c8:dc:e8:30:41:
9d:d9:9c:ee:88:d8:e3:c0:b7:c4:9e:3d:28:45:2e:
46:02:19:d6:52:76:e2:b6:b3:44:2f:8a:66:8b:8f:
c0:a4:d8:40:b5:38:21:17:a2:ef:10:cb:15:7f:fa:
19:6d:cb:19:8b:b4:36:cc:13:ed:55:11:a9:72:36:
f3:00:3c:8d:38:73:b7:70:4f:57:d6:5f:c9:39:b2:
ac:38:f0:0e:12:c8:72:4d:55:f0:35:d7:71:b3:0b:
af:95:bc:08:3e:3a:13:5e:da:ab:70:05:19:88:8d:
90:98:e4:06:59:4d:a4:b6:cf:04:b2:61:7f:b8:04:
04:1d:4c:d3:8d:c2:06:a0:cc:10:e1:a4:38:b5:4a:
91:91:c9:f9:15:f6:a3:a0:43:bc:fb:16:2f:e2:c3:
5e:c3:03:fa:76:29:be:7b:41:24:5a:65:ad:d5:30:
b3:ad:6c:fc:00:33:b5:d5:f0:da:c3:0b:3a:ab:d6:
21:de:b4:62:84:92:51:62:2d:94:45:e1:7d:ad:16:
22:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:01:29:DE:2A:58:86:4F:7A:A8:39:09:A1:B3:2E:A4:7F:2E:D3:53
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QwEp3ipYhk96qDkJobMupH8u01M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.77.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9e:e8:01:18:bd:05:ee:63:b3:67:d5:24:17:64:8c:29:5f:
5c:ac:68:56:10:92:2a:20:39:a4:9f:fe:93:4a:ee:10:82:ed:
53:27:44:83:f4:66:b9:e4:dc:7e:9a:75:e0:af:9d:60:bc:77:
22:e8:b4:da:e7:19:3c:6a:16:c0:cb:a4:93:fa:11:a2:ce:0b:
d7:75:dc:4b:3f:6c:15:c8:74:e9:a7:22:ef:53:ae:39:01:99:
83:8a:f0:58:fb:c2:7a:90:79:e4:68:90:a2:e4:b7:1d:1e:e8:
50:7d:6a:14:9d:c4:ee:b7:2c:d5:70:b1:ed:d1:6b:ef:a0:c0:
16:86:63:ef:a2:20:b3:90:27:c0:cd:d5:f9:62:e5:5c:9c:00:
f8:a3:c1:49:26:46:b0:d1:13:4d:aa:c9:6a:7f:bd:64:c5:be:
95:04:d1:ce:8e:f8:b2:27:1f:2e:29:41:ae:c0:a4:d9:a0:e5:
6b:b7:28:c8:92:e9:7e:9e:6d:61:fc:e7:f7:f3:b0:96:43:ca:
ca:8f:07:be:f2:2c:01:d2:95:40:1f:0f:12:05:82:3c:6b:b3:
0d:1a:60:9e:2a:e1:ab:c4:40:23:23:7e:ae:fe:94:df:ea:66:
3c:3e:13:3e:33:60:56:6d:59:45:be:bf:bc:84:6b:43:5f:42:
53:67:12:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGDqLAMK8VGRKh1x2cvRJkMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwODI0MDkxMjM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzAxMjlkZTJhNTg4NjRmN2FhODM5MDlhMWIzMmVhNDdmMmVkMzUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYJJUTTkMrC1Dcf2Y25szN1UQK61
aELtv+uQIMKW8ppl8i967y8e7gj32y22MUv9U5pWy5+8yNzoMEGd2ZzuiNjjwLfE
nj0oRS5GAhnWUnbitrNEL4pmi4/ApNhAtTghF6LvEMsVf/oZbcsZi7Q2zBPtVRGp
cjbzADyNOHO3cE9X1l/JObKsOPAOEshyTVXwNddxswuvlbwIPjoTXtqrcAUZiI2Q
mOQGWU2kts8EsmF/uAQEHUzTjcIGoMwQ4aQ4tUqRkcn5FfajoEO8+xYv4sNewwP6
dim+e0EkWmWt1TCzrWz8ADO11fDawws6q9Yh3rRihJJRYi2UReF9rRYi9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEMBKd4qWIZPeqg5CaGzLqR/LtNTMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvUXdFcDNpcFloazk2cURrSm9iTXVwSDh1MDFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzhNMA0G
CSqGSIb3DQEBCwUAA4IBAQBlnugBGL0F7mOzZ9UkF2SMKV9crGhWEJIqIDmkn/6T
Su4Qgu1TJ0SD9Ga55Nx+mnXgr51gvHci6LTa5xk8ahbAy6ST+hGizgvXddxLP2wV
yHTppyLvU645AZmDivBY+8J6kHnkaJCi5LcdHuhQfWoUncTutyzVcLHt0WvvoMAW
hmPvoiCzkCfAzdX5YuVcnAD4o8FJJkaw0RNNqslqf71kxb6VBNHOjviyJx8uKUGu
wKTZoOVrtyjIkul+nm1h/Of387CWQ8rKjwe+8iwB0pVAHw8SBYI8a7MNGmCeKuGr
xEAjI36u/pTf6mY8PhM+M2BWbVlFvr+8hGtDX0JTZxJr
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:49 2025 by rpki-client