Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RQlDMzxmHqBW-o6hFn6_6UKXODs.roa
File: RQlDMzxmHqBW-o6hFn6_6UKXODs.roa (raw, json)
Hash identifier: vLkTm09idlxAWlERlK8PyOotVdkFLc2yFcQsxRmA7FI=
Subject key identifier: 45:09:43:33:3C:66:1E:A0:56:FA:8E:A1:16:7E:BF:E9:42:97:38:3B
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01927CBC0F07807D3FD2283932931018E07E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RQlDMzxmHqBW-o6hFn6_6UKXODs.roa
Signing time: Fri 11 Oct 2024 17:59:12 +0000
ROA not before: Fri 11 Oct 2024 17:59:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.16.0/22 maxlen: 24
31.57.20.0/22 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.58.255.0/24 maxlen: 24
217.60.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 14:14:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7c:bc:0f:07:80:7d:3f:d2:28:39:32:93:10:18:e0:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 11 17:59:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=450943333c661ea056fa8ea1167ebfe94297383b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:2d:fb:85:73:29:2c:aa:42:66:ce:42:62:20:
3a:0d:85:eb:99:e7:9b:36:27:35:27:de:ba:b2:fe:
c7:29:74:ed:84:ad:ec:bc:5a:7e:86:8a:bd:ed:eb:
5a:02:8d:2e:d4:dd:16:15:3b:00:82:fa:51:1a:dc:
62:bd:07:97:be:6e:e2:fa:7d:89:29:a4:7e:72:ab:
fa:0a:10:16:5e:ff:f8:fe:64:48:3d:55:0f:ae:1c:
e1:16:59:51:91:ab:ea:df:cf:2b:e4:91:43:33:59:
74:fc:d6:24:8f:43:16:83:a0:c4:e9:f2:4f:f2:f2:
88:e6:d9:40:09:32:e4:61:73:27:85:d7:34:74:6d:
ed:11:e2:f0:1a:25:73:b2:1d:f2:94:f4:3a:89:54:
c9:4c:5b:9a:ed:5f:04:70:67:04:0c:8c:24:d9:11:
45:30:6a:92:d4:e2:83:ea:84:33:84:e6:83:61:00:
fa:46:a4:64:09:fe:bd:49:ba:74:15:53:65:69:0b:
f7:c2:b2:13:1b:0b:36:c7:6b:c6:a2:92:9e:16:13:
82:9a:ca:8f:55:08:92:f7:ae:e6:54:b1:cb:ef:18:
e8:e0:d5:f3:39:50:29:67:d8:7f:13:ca:62:e6:9d:
da:d4:27:c3:d6:53:90:6d:e8:0a:be:a3:31:36:95:
9c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:09:43:33:3C:66:1E:A0:56:FA:8E:A1:16:7E:BF:E9:42:97:38:3B
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RQlDMzxmHqBW-o6hFn6_6UKXODs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.16.0/20
31.57.48.0/20
31.57.92.0-31.57.99.255
31.57.120.0/21
31.58.255.0/24
217.60.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6c:0e:0f:cf:05:87:3e:87:17:55:66:d6:c1:5b:8e:a6:60:22:
84:b7:dd:f1:e3:55:75:08:f8:1f:14:17:b0:90:d0:4f:38:46:
15:ad:f5:00:80:5b:6e:90:63:31:4c:d4:24:4d:db:f9:ba:4e:
7e:94:0d:e8:5a:8a:4d:67:89:28:db:3e:0e:7b:dc:fd:cc:4f:
9b:64:07:64:65:92:7e:90:99:e5:9d:3a:f7:b0:56:c8:a6:64:
14:67:45:cf:a3:a3:89:f8:b1:80:fc:27:43:38:85:89:78:60:
55:ac:9a:29:a9:96:cf:46:57:9b:7e:e2:09:1b:46:aa:1c:1d:
1d:09:e5:b0:c6:a0:e5:21:f9:dc:cd:ec:2b:1f:36:d1:dd:58:
58:17:d8:82:b9:d7:ab:81:02:98:0f:3e:c2:b8:63:4c:da:cd:
21:40:ef:21:85:ed:68:4b:ca:cc:61:11:f2:25:d8:e8:63:a2:
d4:68:6f:b8:da:4f:f0:df:91:12:8c:18:7d:21:7a:a5:59:10:
cc:4a:f3:d7:ad:c7:e1:30:04:68:cf:74:f7:a7:e3:f4:bb:a4:
f6:3c:f8:fe:52:e3:c5:ac:13:fa:52:73:b6:12:51:80:d9:f5:
f6:ae:df:5d:ab:64:c6:0c:fc:32:3e:02:78:66:fd:c8:79:56:
13:de:d0:48
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Oct 19 17:55:16 2024 by rpki-client on console-ams.rpki-client.org