Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XXn3fsVDD8N4uvu2r4dRWwhDszw.roa
File: XXn3fsVDD8N4uvu2r4dRWwhDszw.roa (raw, json)
Hash identifier: JAZagtpe5ZGeWM9yTYTLBdeaG+1r4i9waZ0xMFall24=
Subject key identifier: 5D:79:F7:7E:C5:43:0F:C3:78:BA:FB:B6:AF:87:51:5B:08:43:B3:3C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194554CEAA10EB2A20AF317150467B083F9
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XXn3fsVDD8N4uvu2r4dRWwhDszw.roa
Signing time: Sat 11 Jan 2025 12:18:11 +0000
ROA not before: Sat 11 Jan 2025 12:18:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.120.0/24 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.122.0/24 maxlen: 24
31.56.123.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.104.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.252.0/24 maxlen: 24
31.57.253.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 11:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:55:4c:ea:a1:0e:b2:a2:0a:f3:17:15:04:67:b0:83:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 11 12:18:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d79f77ec5430fc378bafbb6af87515b0843b33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c9:be:ec:41:bd:82:a5:aa:b8:f7:b6:3f:4c:
22:15:86:59:27:08:bf:a9:06:92:0d:72:9d:94:19:
1d:7c:25:25:c1:92:0e:d0:dc:37:2f:73:e5:c5:51:
10:d8:27:9a:d8:bd:d7:6e:1b:28:fa:0e:25:ae:31:
9e:d3:b2:db:54:19:02:ca:d3:d0:67:da:14:20:e0:
c3:cf:33:23:78:1e:59:49:7f:50:c8:d4:e5:b5:cb:
39:9d:95:44:88:cf:10:75:02:9a:75:33:fb:ed:e7:
80:69:29:e4:5e:12:f5:f0:8c:21:d6:1d:ec:aa:bc:
96:c5:99:93:d5:dc:69:36:1c:8a:50:7f:b9:67:46:
62:ab:d0:b3:fa:58:9b:7d:a0:b2:55:79:dd:56:51:
ee:b0:c9:7d:a8:3d:c0:34:32:f0:28:0f:4d:d1:27:
c4:cc:21:96:a1:21:41:34:bc:da:0c:e5:9a:37:b8:
02:14:d6:36:37:94:7f:94:98:c2:e8:07:5d:1a:80:
4f:e6:1a:e5:a4:a0:5f:2c:56:17:dd:ed:ac:17:69:
d1:a1:b3:38:a6:51:6e:9d:f0:bc:af:29:ed:54:d4:
9d:b8:6e:20:01:b9:f8:3f:f9:8d:41:0e:e8:98:c4:
c2:33:49:f5:33:10:dc:58:69:ce:6b:b5:b4:a5:c6:
d3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:79:F7:7E:C5:43:0F:C3:78:BA:FB:B6:AF:87:51:5B:08:43:B3:3C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XXn3fsVDD8N4uvu2r4dRWwhDszw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.120.0/22
31.56.200.0/24
31.56.202.0/24
31.57.104.0/24
31.57.132.0/24
31.57.181.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.252.0/23
31.57.255.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
87:77:9c:3e:61:a6:33:b8:f8:c7:bd:75:5b:fb:2c:9f:bd:dc:
18:bf:36:3c:69:52:d7:12:9e:07:36:e3:e5:78:2e:1b:00:44:
0b:52:d2:e9:24:6e:14:30:5a:a9:c3:be:3b:66:de:78:9c:e4:
90:73:06:43:e2:39:88:c5:8c:f9:6e:46:f6:db:d4:8e:0d:fe:
27:60:00:2e:fb:b9:e7:8d:2c:f2:64:d5:ed:de:46:96:c1:e4:
59:e6:b4:7f:99:23:bc:cb:88:7e:72:68:21:3b:10:a8:46:a1:
e7:c5:fc:8c:47:ab:93:76:74:3b:2f:22:40:ea:7d:88:00:37:
74:c8:38:f2:e8:bc:3f:c7:8e:50:e0:0d:5d:79:87:88:8e:67:
25:b2:ef:19:4f:40:c4:f6:af:5f:fe:44:27:bd:56:53:5c:ad:
68:24:15:c9:76:37:6f:e4:28:cb:13:51:65:5a:60:99:fe:1e:
7c:66:d1:82:39:4f:8b:b2:7b:4a:e7:34:3e:51:3a:ec:3c:08:
1a:d2:d0:57:42:1a:56:6a:bd:7e:a5:a9:81:f7:6f:4d:d6:4d:
76:c1:12:1b:86:34:f2:78:c4:44:48:59:06:44:40:8e:78:be:
c3:a2:3b:b5:ff:8a:dd:d9:52:60:88:5e:0e:f7:e5:c1:5d:6b:
c2:31:a4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:50:56 2025 by rpki-client