Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SSOopxwxrzZid0khH0ayse3aw5g.roa
File: SSOopxwxrzZid0khH0ayse3aw5g.roa (raw, json)
Hash identifier: V/RUcsvv9fd9b0IAh7ZVEpLLSSb3dLGn5Luu2y4/Cqc=
Subject key identifier: 49:23:A8:A7:1C:31:AF:36:62:77:49:21:1F:46:B2:B1:ED:DA:C3:98
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01928BE2D77E4EECE2A98A45B4A7E168AC91
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SSOopxwxrzZid0khH0ayse3aw5g.roa
Signing time: Mon 14 Oct 2024 16:35:52 +0000
ROA not before: Mon 14 Oct 2024 16:35:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20853
IP address blocks: 31.56.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:e2:d7:7e:4e:ec:e2:a9:8a:45:b4:a7:e1:68:ac:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 14 16:35:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4923a8a71c31af36627749211f46b2b1eddac398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:3d:82:c4:fe:7f:3f:55:b7:1f:97:85:77:
27:33:2b:de:b0:09:6c:94:7a:99:4b:ce:71:f6:b6:
0d:48:24:2d:0d:f4:e4:4e:9a:51:a0:75:9e:e9:57:
a0:3e:ef:e5:32:31:dd:ce:05:4e:f3:da:f3:c8:a1:
73:fb:1b:8b:17:cf:ee:26:80:e0:72:50:c1:fa:81:
06:54:88:87:8b:e5:01:6d:fb:6a:cd:37:80:82:07:
e2:3a:6b:bd:bd:1f:d5:20:d0:8d:c2:82:24:51:85:
c2:a8:00:bc:a3:10:1d:20:38:2e:64:b8:f5:37:a1:
9d:d1:3a:a1:98:5c:8c:e6:ee:ab:ae:48:72:f1:e1:
4e:62:68:4f:50:76:97:f0:cc:c5:48:b3:b4:c9:11:
e0:c9:e7:5e:7e:98:85:6e:d3:58:18:aa:25:99:d4:
24:73:de:dc:69:4a:95:72:56:64:34:b3:a3:8b:46:
0f:b6:e4:47:4a:ef:c7:3b:cf:ef:dc:af:5c:f6:1c:
e8:e6:9f:04:17:f1:0f:93:67:e2:21:3c:2d:4d:45:
00:c1:03:8f:07:a1:d7:26:d0:0b:ff:d5:b1:a2:ca:
6f:6a:7b:21:5e:9b:c7:0e:76:04:58:e9:2f:81:22:
d2:b9:05:22:4c:57:d4:4d:c4:1e:36:48:f9:72:fb:
e1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:23:A8:A7:1C:31:AF:36:62:77:49:21:1F:46:B2:B1:ED:DA:C3:98
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SSOopxwxrzZid0khH0ayse3aw5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.145.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ce:26:f0:df:4f:3c:7a:f8:91:6d:01:3c:b0:da:fa:0d:bb:
73:19:3c:78:cb:75:26:d0:a9:85:68:c1:32:1d:45:cb:32:c4:
e2:95:3f:ae:bf:d6:81:b1:54:85:68:ae:b3:98:61:d9:0f:52:
d9:1e:7c:8e:a5:e6:a8:c0:cc:88:49:d9:84:17:ef:92:6e:4b:
d0:80:39:e9:43:3c:d9:88:76:94:63:7f:84:3f:04:af:47:bb:
31:2e:66:c6:a2:c7:bb:e0:dd:49:68:23:d4:e7:c8:a1:9a:3e:
84:0a:a7:13:38:19:28:c5:0e:47:c1:03:43:09:a4:5e:89:05:
45:e7:6f:d2:eb:ec:ca:18:b5:42:68:36:65:96:c3:88:6d:8d:
1f:0a:77:aa:ff:3a:77:2f:c3:9d:73:26:dd:b1:73:65:15:11:
97:c0:ed:be:a8:fe:fd:cb:b0:35:a1:13:61:3c:1d:94:a5:cc:
27:9d:17:45:1f:3c:8c:4a:e7:4d:9b:6e:d6:67:e9:d5:13:89:
de:9e:43:69:47:2e:10:01:4f:ef:04:b6:4f:ad:e9:f8:fb:e6:
64:dd:85:2d:95:a8:8f:dc:23:7a:24:be:9a:76:f4:52:40:54:
23:d4:27:1b:66:45:e1:9c:ee:a3:4b:94:09:c2:bd:d3:b0:c5:
11:6e:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:16 2025 by rpki-client