Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VB_e86AHOYa2SkzolzkyA_OqaNA.roa
File: VB_e86AHOYa2SkzolzkyA_OqaNA.roa (raw, json)
Hash identifier: x2s11KIX3vc+ovM4MqhAN83dXdMCMANjyIexAK/W/KE=
Subject key identifier: 54:1F:DE:F3:A0:07:39:86:B6:4A:4C:E8:97:39:32:03:F3:AA:68:D0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019265DEBBBC99F72A692FC373BC1DC1A438
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VB_e86AHOYa2SkzolzkyA_OqaNA.roa
Signing time: Mon 07 Oct 2024 07:25:48 +0000
ROA not before: Mon 07 Oct 2024 07:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.2.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.63.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 12:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:65:de:bb:bc:99:f7:2a:69:2f:c3:73:bc:1d:c1:a4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 7 07:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=541fdef3a0073986b64a4ce897393203f3aa68d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:74:7b:f3:bd:f2:81:d5:7c:4f:e8:e4:9a:54:
19:c8:91:cb:16:4c:0c:62:fa:68:32:dd:67:25:ba:
5d:0b:b9:ef:5b:43:6e:ff:ab:01:a2:5e:5b:f8:cb:
80:51:07:83:82:78:e6:b0:f0:68:ee:5c:85:3c:30:
77:e4:19:71:cc:df:9d:37:7d:78:84:85:49:28:df:
01:a0:2b:43:b4:89:1b:b6:87:8e:27:af:d3:79:10:
d8:4b:f4:a2:34:16:d5:c8:b2:c6:f1:20:10:99:9b:
73:4a:c0:05:4b:94:9c:55:ee:13:fe:f8:e5:4b:a6:
06:01:31:ca:ea:c7:39:1c:f0:ad:26:e7:a1:e7:73:
bd:1d:de:26:f9:1b:63:56:d9:c5:9b:65:b2:18:fb:
36:d9:cd:c0:05:a3:96:2d:72:5c:c2:fe:98:0c:ea:
3a:37:18:f1:9b:83:49:a3:e6:fe:86:4c:6e:68:e7:
4c:39:ca:cc:4b:89:6a:72:e1:60:45:38:4c:3e:c9:
6b:ed:9a:4c:48:62:4a:24:05:32:a0:74:21:f0:d1:
42:23:97:85:fa:3c:4d:ad:8d:e0:32:a0:27:ea:b7:
1f:fb:6b:00:74:c5:72:f1:b3:74:98:ee:2d:45:87:
d3:84:58:74:68:ac:f2:cc:b0:be:db:11:41:51:d2:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1F:DE:F3:A0:07:39:86:B6:4A:4C:E8:97:39:32:03:F3:AA:68:D0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/VB_e86AHOYa2SkzolzkyA_OqaNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.2.0/24
31.56.4.0/23
31.56.39.0/24
31.56.59.0/24
31.56.63.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.89.0/24
31.56.112.0/21
31.56.126.0/24
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
Signature Algorithm: sha256WithRSAEncryption
53:bc:cb:7e:c2:0c:63:8f:64:8a:98:c9:23:f6:b8:47:68:f9:
a0:a3:f0:73:a3:fd:e3:f9:a2:7e:a0:af:7f:66:d2:c9:cc:66:
49:c6:1e:c2:0f:fd:89:1c:ef:5e:70:f1:bd:bc:e5:f8:e5:ec:
8b:d1:8f:a1:46:b2:14:db:1d:1a:b8:4c:30:41:9f:3e:23:94:
69:6c:0b:aa:2e:4c:39:b6:65:81:c1:f3:31:05:c4:f3:58:3a:
e0:1b:1a:d5:5c:8e:a3:24:df:fd:1b:13:d1:43:ee:93:f3:a5:
01:4c:c9:e2:33:f0:ec:f7:60:61:21:36:01:0d:e1:30:20:f9:
db:38:f0:03:4a:00:92:14:b7:35:12:9e:fc:c8:34:64:36:01:
14:8d:ea:3f:ed:cf:f1:d3:8e:12:f8:c3:4e:3e:67:05:f3:f8:
cc:5f:f1:2b:68:d8:74:6c:51:e1:d8:78:2e:43:63:c9:3e:66:
bc:18:6e:51:4b:bf:4f:65:34:f7:7a:23:1f:d1:33:6a:84:9c:
9c:59:37:da:4e:22:f9:11:3f:c6:7c:4d:57:04:24:61:f5:c4:
f2:1e:8b:18:60:63:09:f9:8f:f8:cc:aa:3b:17:73:9d:ff:8d:
ed:74:67:8b:c3:21:8f:d8:6f:0f:25:2c:64:c6:be:2e:2b:50:
ef:80:82:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 19:10:56 2024 by rpki-client on console-ams.rpki-client.org