Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XSyuhsgSXNZMBh9Hw8FBslUo3-Y.roa
File: XSyuhsgSXNZMBh9Hw8FBslUo3-Y.roa (raw, json)
Hash identifier: l2UgZFy/tGHglsWNXSp5FBMT/djo2W82cay/b0ZC/HQ=
Subject key identifier: 5D:2C:AE:86:C8:12:5C:D6:4C:06:1F:47:C3:C1:41:B2:55:28:DF:E6
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01946EE19B3D489FC18F23B76D67A6BF9264
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XSyuhsgSXNZMBh9Hw8FBslUo3-Y.roa
Signing time: Thu 16 Jan 2025 11:31:06 +0000
ROA not before: Thu 16 Jan 2025 11:31:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.208.0/24 maxlen: 24
31.57.209.0/24 maxlen: 24
31.57.210.0/24 maxlen: 24
31.57.211.0/24 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.227.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.56.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 18:25:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6e:e1:9b:3d:48:9f:c1:8f:23:b7:6d:67:a6:bf:92:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 16 11:31:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d2cae86c8125cd64c061f47c3c141b25528dfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:29:96:66:77:5a:b1:e1:cc:77:fa:79:59:2a:
a4:cb:c0:5b:f9:7c:1f:1d:fd:2a:97:96:fb:5c:a0:
99:86:a9:51:e2:a0:61:16:17:39:86:d4:4d:0a:73:
9b:1e:40:ff:e6:b4:cd:36:83:d1:84:63:ad:a2:bc:
4f:5c:bb:0d:2c:9d:16:fc:8a:bd:ff:7d:09:83:73:
db:24:e8:d6:18:17:d3:b0:73:e2:6a:9a:58:2f:1a:
28:8e:66:76:83:44:db:e7:50:eb:b1:94:38:1e:00:
6c:1f:5f:a7:12:ea:9a:c5:bb:dc:bd:e2:fd:92:46:
3f:ce:6a:ce:a3:cd:3c:13:fd:64:11:75:bf:bc:8b:
97:b0:58:be:8e:4e:12:6d:92:6f:e2:fa:02:7d:b4:
9c:e6:48:89:3d:fe:22:f1:04:6b:d4:62:60:43:7a:
79:61:5a:5d:39:da:98:4e:04:fb:e4:a3:d5:12:c6:
3d:ad:ae:29:c9:da:f2:51:13:13:70:a5:c0:60:8a:
4e:12:80:41:a7:be:01:18:c4:80:e2:1b:32:80:3f:
82:1c:93:ff:f6:08:94:95:4e:c7:23:74:90:fa:40:
b7:5b:44:b5:2a:f3:16:93:b0:69:41:45:74:38:70:
6c:d4:0c:5b:0b:bb:09:95:a7:f7:5a:39:6c:c9:26:
eb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2C:AE:86:C8:12:5C:D6:4C:06:1F:47:C3:C1:41:B2:55:28:DF:E6
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XSyuhsgSXNZMBh9Hw8FBslUo3-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.86.0/24
31.56.107.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.208.0-31.57.214.255
31.57.216.0/24
31.57.227.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
31.58.50.0/23
31.58.56.0/23
31.58.64.0/23
Signature Algorithm: sha256WithRSAEncryption
84:72:93:d4:5a:c0:af:3a:3f:10:4c:92:7f:e2:b5:8b:66:0c:
4b:26:f9:42:66:b7:d0:ba:c3:86:1b:2f:34:e4:ab:d1:07:ca:
57:77:15:57:22:fe:19:b4:b3:3d:a2:36:84:46:ec:c9:8d:c2:
6d:0c:d1:aa:10:b1:cd:7b:59:63:bd:34:fc:f1:66:f3:cc:63:
86:8a:70:2c:74:e3:4f:a8:40:24:94:08:aa:d6:69:a0:cf:e2:
07:bb:3c:19:82:0a:78:9b:8c:b4:da:a5:b1:15:29:a2:46:18:
1d:91:01:ab:cf:db:f7:ff:4b:ed:40:38:ac:03:ef:b3:b4:46:
d9:7a:68:54:d7:e3:be:dd:5f:8e:5c:ce:e9:ab:48:c0:3c:ff:
25:7e:78:4e:20:6d:c1:33:f9:9e:22:02:a4:5c:20:97:fb:0b:
d6:d5:41:38:58:6a:77:f0:6b:92:23:a3:f5:40:1b:43:55:7b:
04:38:b2:8a:f7:8b:d8:63:66:e9:7a:47:4b:34:54:b4:ba:c6:
67:c5:c7:56:ae:f8:c4:55:07:df:c7:d5:c3:1c:27:c7:c0:f0:
8e:fe:56:62:22:47:d9:0d:9a:a8:f4:c5:74:83:34:d9:ec:25:
31:47:6b:5b:7c:77:0a:a2:28:d4:32:97:09:08:0f:38:f5:e4:
7e:f3:b0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:15:03 2025 by rpki-client