Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_9bcyKdgO4ZsowpEFh2irnMBCnc.roa
File: _9bcyKdgO4ZsowpEFh2irnMBCnc.roa (raw, json)
Hash identifier: BS8iGG+aXxWUg97QZW9bIwaU3/RgNQBCoNSaAh/4dzc=
Subject key identifier: FF:D6:DC:C8:A7:60:3B:86:6C:A3:0A:44:16:1D:A2:AE:73:01:0A:77
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193F42FFAD4F2DF8B755BF3977D028BEED8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_9bcyKdgO4ZsowpEFh2irnMBCnc.roa
Signing time: Mon 23 Dec 2024 15:43:25 +0000
ROA not before: Mon 23 Dec 2024 15:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.156.0/24 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.147.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.152.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.131.0/24 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.167.0/24 maxlen: 24
31.59.42.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.130.0/24 maxlen: 24
31.59.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Dec 2024 14:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:2f:fa:d4:f2:df:8b:75:5b:f3:97:7d:02:8b:ee:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 23 15:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffd6dcc8a7603b866ca30a44161da2ae73010a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:83:da:53:6d:e9:bf:61:90:60:16:2f:a6:71:
e7:9c:f7:32:a5:5c:fd:57:86:64:e6:c2:90:70:04:
7d:89:eb:52:92:74:3a:c8:c2:38:dd:89:f5:70:51:
1f:0e:5e:e6:d6:d9:b9:1f:82:05:19:81:06:91:3b:
00:13:2c:37:03:87:82:8e:73:d7:24:00:89:48:50:
4c:0b:48:a6:39:56:30:73:73:31:fb:bc:f3:1b:49:
ed:00:8d:09:74:35:2e:89:ff:3c:c1:90:6e:81:6e:
58:08:da:1a:6e:d6:a8:92:a9:78:6e:c8:d9:db:a9:
19:2a:ba:63:a8:93:74:d5:61:a7:41:b8:9c:d5:75:
19:6b:d5:b4:13:2e:2e:2a:8f:84:17:83:98:d7:43:
a6:77:37:2c:4f:30:a8:e6:53:11:20:d9:d0:03:84:
8d:71:bb:df:55:ec:cd:0e:2f:1e:2c:f0:73:d5:7b:
4d:d6:7f:09:32:cb:ac:0e:da:3d:25:2f:ac:8a:79:
59:7c:a5:96:cc:c6:a1:1e:05:30:bf:5f:c4:4e:25:
63:d2:2b:2d:dd:aa:e4:20:5e:b4:70:89:d9:82:b6:
69:56:17:d1:f5:14:dd:09:fb:ab:6e:b3:c6:28:c8:
a3:e6:ee:e0:29:42:e1:c2:ed:16:83:90:f0:82:2c:
65:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D6:DC:C8:A7:60:3B:86:6C:A3:0A:44:16:1D:A2:AE:73:01:0A:77
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_9bcyKdgO4ZsowpEFh2irnMBCnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.71.0/24
31.56.74.0/23
31.56.89.0/24
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.156.0/24
31.57.65.0/24
31.57.132.0/23
31.57.146.0/23
31.57.151.0-31.57.152.255
31.57.176.0/21
31.57.192.0/22
31.57.200.0/23
31.57.208.0/20
31.57.232.0/22
31.58.34.0/23
31.58.131.0/24
31.58.152.0/22
31.58.167.0/24
31.59.42.0/23
31.59.96.0/22
31.59.112.0/22
31.59.130.0/24
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
be:33:f2:4d:9d:85:9d:03:5c:79:50:82:1a:2f:71:77:89:ce:
1e:11:c4:2e:54:3e:12:fb:05:b9:a3:a5:94:ed:6f:1f:9c:a6:
ad:16:49:d7:94:de:cb:ec:0e:e5:c2:a3:a2:3a:fa:0d:21:08:
61:fe:74:96:ec:f4:a9:c4:77:f4:3b:ee:52:7a:53:13:c2:d7:
28:11:34:65:35:9f:9e:8a:6c:b3:ee:10:3c:ff:00:c2:d1:09:
be:15:ca:a4:2a:1a:9a:3b:68:7c:d5:39:8c:1a:b8:f1:76:c9:
a2:a1:aa:d8:9f:2d:53:1c:ea:ae:d2:97:59:d3:d9:42:81:82:
8d:79:5b:72:e9:f3:26:1c:e4:7a:1b:49:3b:3f:00:1c:53:2e:
34:a5:d1:bb:c7:cd:f2:fa:ae:22:3b:ae:17:43:eb:59:39:0a:
11:f0:38:07:cd:1e:9e:bd:21:34:ce:c8:71:14:a9:67:93:b8:
3a:45:d5:0a:c8:a0:c7:3b:94:be:4c:c2:08:f6:29:1b:c3:df:
ce:61:d3:a9:b5:11:ef:11:6b:da:30:37:44:0d:46:4f:1e:d8:
0f:3b:1b:3a:f7:fb:54:d7:1f:d9:91:50:98:15:d7:32:5b:a9:
34:5b:ed:32:90:e2:38:eb:09:de:5d:8d:1c:63:3a:77:d9:30:
a3:d4:cb:77
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgISAZP0L/rU8t+LdVvzl30Ci+7YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMjIzMTU0MzI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmQ2ZGNjOGE3NjAzYjg2NmNhMzBhNDQxNjFkYTJhZTczMDEwYTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9IPaU23pv2GQYBYvpnHnnPcypVz9
V4Zk5sKQcAR9ietSknQ6yMI43Yn1cFEfDl7m1tm5H4IFGYEGkTsAEyw3A4eCjnPX
JACJSFBMC0imOVYwc3Mx+7zzG0ntAI0JdDUuif88wZBugW5YCNoabtaokql4bsjZ
26kZKrpjqJN01WGnQbic1XUZa9W0Ey4uKo+EF4OY10OmdzcsTzCo5lMRINnQA4SN
cbvfVezNDi8eLPBz1XtN1n8JMsusDto9JS+sinlZfKWWzMahHgUwv1/ETiVj0ist
3arkIF60cInZgrZpVhfR9RTdCfurbrPGKMij5u7gKULhwu0Wg5DwgixlCwIDAQAB
o4ICxjCCAsIwHQYDVR0OBBYEFP/W3MinYDuGbKMKRBYdoq5zAQp3MB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvXzliY3lLZGdPNFpzb3dwRUZoMmlybk1CQ25jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHbBggrBgEFBQcBBwEB/wSByzCByDCBxQQCAAEwgb4DBAEf
OAQDBAAfOBgDBAEfOCoDBAAfODkDBAAfOEcDBAEfOEoDBAAfOFkDBAMfOGgDBAEf
OHIwDAMEAR84dgMEAh84eAMEAB84nAMEAB85QQMEAR85hAMEAR85kjAMAwQAHzmX
AwQAHzmYAwQDHzmwAwQCHznAAwQBHznIAwQEHznQAwQCHznoAwQBHzoiAwQAHzqD
AwQCHzqYAwQAHzqnAwQBHzsqAwQCHztgAwQCHztwAwQAHzuCAwQCHzu4MA0GCSqG
SIb3DQEBCwUAA4IBAQC+M/JNnYWdA1x5UIIaL3F3ic4eEcQuVD4S+wW5o6WU7W8f
nKatFknXlN7L7A7lwqOiOvoNIQhh/nSW7PSpxHf0O+5SelMTwtcoETRlNZ+eimyz
7hA8/wDC0Qm+FcqkKhqaO2h81TmMGrjxdsmioarYny1THOqu0pdZ09lCgYKNeVty
6fMmHOR6G0k7PwAcUy40pdG7x83y+q4iO64XQ+tZOQoR8DgHzR6evSE0zshxFKln
k7g6RdUKyKDHO5S+TMII9ikbw9/OYdOptRHvEWvaMDdEDUZPHtgPOxs69/tU1x/Z
kVCYFdcyW6k0W+0ykOI46wneXY0cYzp32TCj1Mt3
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:51:26 2025 by rpki-client