Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TJLENZrBpTfcRQ1wTl1EFqyCwlA.roa
File: TJLENZrBpTfcRQ1wTl1EFqyCwlA.roa (raw, json)
Hash identifier: R5aXDQogxH6Ma3eVB0AI1cQ4B/49KPgaWOrRzrDKem8=
Subject key identifier: 4C:92:C4:35:9A:C1:A5:37:DC:45:0D:70:4E:5D:44:16:AC:82:C2:50
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019270CEC54F6DF1630F5B05D4D4881DEAA8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TJLENZrBpTfcRQ1wTl1EFqyCwlA.roa
Signing time: Wed 09 Oct 2024 10:24:12 +0000
ROA not before: Wed 09 Oct 2024 10:24:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.35.0/24 maxlen: 24
31.56.39.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 09 Oct 2024 20:13:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:ce:c5:4f:6d:f1:63:0f:5b:05:d4:d4:88:1d:ea:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 9 10:24:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c92c4359ac1a537dc450d704e5d4416ac82c250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:63:48:5a:e7:5c:73:07:e2:a6:7c:f5:09:13:
78:31:74:74:d8:45:17:dd:03:0f:da:ce:88:84:25:
73:6d:ee:e7:f8:8d:74:09:f1:4b:b1:d4:10:91:bd:
b1:f7:d6:1b:10:b9:12:eb:c1:e5:26:64:70:6e:18:
38:d7:8a:99:26:04:b5:02:1e:47:16:23:2f:a7:d4:
72:e1:cc:e0:7b:44:1a:a7:2e:a3:b5:a0:a3:5f:b0:
17:a2:1d:ef:d9:dc:10:78:31:4b:95:55:66:be:b4:
a2:09:38:8d:f9:ec:10:30:80:72:05:13:08:2b:2d:
1e:22:bd:ac:e8:9f:76:5a:93:79:e3:43:48:3d:80:
05:a1:75:b7:cd:c2:2d:d1:92:83:e8:36:f8:c7:12:
24:7d:14:14:24:e7:29:0c:9c:e2:d8:d2:cb:da:5d:
e1:da:79:85:00:52:23:e7:7d:1c:24:f7:13:22:0b:
a3:02:86:b2:2c:b8:04:14:21:3e:b7:26:eb:56:7a:
1b:f7:d8:0b:4e:fd:dc:58:d9:d9:4f:41:e1:c9:df:
d9:16:66:f3:1d:e2:e3:49:82:72:18:a8:e9:ed:1f:
b5:a5:ae:52:c6:90:64:36:69:42:8e:47:09:59:4b:
25:c1:72:08:f7:de:29:64:5a:b5:07:11:9c:98:43:
d3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:92:C4:35:9A:C1:A5:37:DC:45:0D:70:4E:5D:44:16:AC:82:C2:50
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TJLENZrBpTfcRQ1wTl1EFqyCwlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.35.0/24
31.56.39.0/24
31.56.89.0/24
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:6e:ba:fd:f9:2e:b4:1c:85:bc:c4:d0:53:29:1c:b7:11:a0:
7b:6c:fb:20:19:ef:58:21:27:97:f9:75:4c:cf:d3:85:ac:94:
e7:86:29:04:70:5e:c3:b5:7e:85:85:67:2a:92:e1:05:9b:bd:
0a:15:ce:47:20:80:94:f4:82:c5:4e:78:a5:c9:2f:2a:2a:e7:
4c:ca:ce:51:93:42:3d:f7:fc:37:09:c2:2d:9a:52:d3:14:13:
08:aa:f9:cf:d6:dd:d3:8c:cb:4b:17:4d:a2:79:02:80:ca:a1:
ae:8e:d3:bf:79:7b:73:25:0a:01:9e:fa:d0:cf:fd:f2:91:31:
fc:a3:08:d6:be:e7:64:12:97:46:28:3c:c9:12:75:d0:71:fa:
17:1b:d5:17:a1:db:5e:92:72:f3:34:cd:f4:c0:0c:86:4c:be:
2e:20:2d:5d:80:5e:23:d8:71:12:c0:a1:c4:66:07:4d:78:af:
e2:ba:c5:da:0c:7c:4b:d4:52:57:ed:b1:75:c0:63:cf:b3:f3:
36:49:ba:9b:db:34:d5:94:92:b0:03:0d:42:39:5b:28:9a:d9:
e8:1e:09:40:bb:5a:0a:34:99:9b:ab:c2:b9:46:72:62:8e:6f:
c0:a8:02:b4:5e:d5:db:e7:39:08:10:14:fd:1c:fb:aa:f0:42:
6e:b6:52:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 02:31:56 2024 by rpki-client on console-ams.rpki-client.org