Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TEBxguXxz35x8PCKNg7OHp4O7_w.roa
File: TEBxguXxz35x8PCKNg7OHp4O7_w.roa (raw, json)
Hash identifier: iPvkR8awrTFYKNmmLxXSaDd7pLspook4CBWxOv+sc40=
Subject key identifier: 4C:40:71:82:E5:F1:CF:7E:71:F0:F0:8A:36:0E:CE:1E:9E:0E:EF:FC
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192ADD5681554A1D78A645501AC0C88B992
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TEBxguXxz35x8PCKNg7OHp4O7_w.roa
Signing time: Mon 21 Oct 2024 06:48:16 +0000
ROA not before: Mon 21 Oct 2024 06:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.151.0/24 maxlen: 24
31.57.152.0/24 maxlen: 24
31.57.153.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 09:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ad:d5:68:15:54:a1:d7:8a:64:55:01:ac:0c:88:b9:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 21 06:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c407182e5f1cf7e71f0f08a360ece1e9e0eeffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ac:a2:1a:a3:52:5b:26:44:ba:6a:a9:d2:41:
8e:08:e5:4f:27:fc:ab:8a:d3:96:72:97:37:78:a5:
f3:96:4b:0c:1e:06:d1:27:66:d5:6d:45:47:08:c4:
f8:86:33:1e:1c:60:72:57:a9:78:a2:ba:df:25:b0:
9e:51:ba:ca:bd:8f:be:71:48:f0:b1:60:55:92:58:
08:1b:f2:30:be:ad:d4:f2:e6:31:a7:ed:a9:84:bc:
8c:01:9d:8f:56:21:30:5a:81:b3:fa:84:86:98:36:
e9:d4:56:04:2f:69:94:71:21:c8:5f:47:18:13:35:
2c:f4:55:9c:50:ad:9c:5d:4d:80:2a:17:9f:d3:c9:
53:ba:e7:57:89:fb:db:01:bd:1a:69:df:d7:b1:e2:
9b:f4:98:f1:0a:af:ec:e9:be:f6:fe:ee:86:a4:55:
fc:ac:58:0a:d1:0f:fc:a3:b9:0f:46:64:d4:ac:08:
2f:ec:5b:5c:35:fb:19:30:c7:11:d2:4c:57:59:d8:
59:a6:07:0b:b0:32:ae:a1:9a:2d:3b:f3:84:b5:d8:
2f:8e:8f:39:ac:63:99:30:d0:14:85:17:3e:69:84:
38:63:1c:74:02:0d:75:80:88:34:80:c3:6c:2e:bf:
ce:78:54:41:87:12:b4:27:93:60:36:87:b0:43:f1:
c2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:40:71:82:E5:F1:CF:7E:71:F0:F0:8A:36:0E:CE:1E:9E:0E:EF:FC
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TEBxguXxz35x8PCKNg7OHp4O7_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.151.0-31.57.153.255
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
b5:a4:28:d6:78:fe:71:a1:0e:71:79:e3:78:27:1e:e5:7b:78:
46:e2:83:aa:f5:f0:db:d7:84:cf:ce:8a:8e:bd:e2:da:fb:1d:
ea:40:28:b7:96:36:5e:f6:6a:49:32:69:92:dc:dd:c2:3e:ba:
58:fd:24:37:e4:49:97:9f:e4:94:79:e9:6c:25:ef:a8:c2:45:
cb:fb:89:10:71:ed:a1:60:55:1c:33:c5:ef:3c:d4:aa:e1:e6:
fc:29:43:fb:db:2a:26:7e:fe:0d:c3:a3:4b:f3:d2:b0:85:d6:
78:46:de:dd:ae:bc:f2:d4:22:69:fb:74:4f:e4:33:8f:4f:de:
52:d2:dd:ba:31:18:0c:59:27:40:87:04:9e:63:42:b0:ec:82:
06:cc:b5:57:1c:a9:90:7b:4d:98:d3:94:60:e0:fb:f9:b6:98:
2d:b4:9f:54:4c:06:2e:9a:b8:44:c7:a8:f0:8f:8f:e2:71:a4:
b5:65:e4:89:7f:b9:de:09:db:f4:cc:d8:4d:62:1b:db:77:6b:
40:49:8e:85:ac:32:75:41:6d:70:8d:13:21:f7:0c:f8:29:6c:
9b:08:24:e7:3b:c9:b3:3a:7b:0a:83:e7:9e:bf:af:df:c8:92:
8f:e3:45:98:81:2f:13:da:81:86:57:08:ef:8a:12:ff:4f:26:
56:7e:f0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 11:47:02 2024 by rpki-client on console-fra.rpki-client.org