Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bIDX2SPaC4RBOL5gyRZjfUC9_B8.roa
File: bIDX2SPaC4RBOL5gyRZjfUC9_B8.roa (raw, json)
Hash identifier: qSrv+NtYBDRPYWIispL+LugAeUwCoec5uljtuFyVLi8=
Subject key identifier: 6C:80:D7:D9:23:DA:0B:84:41:38:BE:60:C9:16:63:7D:40:BD:FC:1F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192AE660F086B41911C949355F20D0E8E68
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bIDX2SPaC4RBOL5gyRZjfUC9_B8.roa
Signing time: Mon 21 Oct 2024 09:26:17 +0000
ROA not before: Mon 21 Oct 2024 09:26:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.153.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 13:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:66:0f:08:6b:41:91:1c:94:93:55:f2:0d:0e:8e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 21 09:26:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c80d7d923da0b844138be60c916637d40bdfc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:72:87:90:2b:ba:b3:27:89:6f:5e:2e:96:13:
f5:71:57:31:09:d2:80:f2:08:28:b6:fb:58:05:e6:
b4:fd:f2:20:fb:23:9c:7e:2f:50:d5:19:dc:85:75:
d2:73:1c:15:7c:e6:37:de:98:0e:9e:d8:47:20:06:
96:c5:84:b4:cf:40:a1:08:ae:d2:38:41:b3:1c:33:
cd:d0:1c:b2:12:2a:36:7f:47:39:c4:ff:6c:c9:e2:
f1:ff:48:e3:5e:9a:e3:45:20:e5:06:b2:5c:38:13:
8a:9c:1b:95:f0:53:a1:3b:db:97:b2:3b:b1:9e:50:
bf:d4:b0:d7:1a:ed:30:15:ed:05:8a:31:38:4d:59:
a9:f1:da:cc:28:0f:a4:88:3f:58:bf:64:94:65:68:
3d:4b:cb:bd:89:15:0e:f8:44:42:2c:25:64:a1:51:
da:0b:e4:a7:66:9b:df:e9:0f:46:03:37:99:25:cf:
0f:ca:18:d4:fe:83:16:21:71:f1:39:ff:26:65:5d:
3f:8c:70:e5:69:26:1e:9f:66:1b:37:e5:32:79:dc:
46:da:c0:2b:96:cf:b2:79:4e:41:7d:1a:f7:8a:a7:
79:79:9a:7f:70:30:55:ad:f6:97:76:42:3e:5a:dd:
0e:ca:6b:1c:39:88:76:7e:62:8f:c2:56:f0:10:5e:
51:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:80:D7:D9:23:DA:0B:84:41:38:BE:60:C9:16:63:7D:40:BD:FC:1F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bIDX2SPaC4RBOL5gyRZjfUC9_B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.153.0/24
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
19:4e:04:54:bc:81:a6:8a:ab:22:14:1b:7a:64:df:ab:ea:37:
bc:5b:00:91:ae:31:f6:58:82:89:dd:0f:e2:bc:97:09:b9:96:
3d:b6:9b:02:d5:4a:22:68:37:2e:91:2d:b5:76:57:e1:48:91:
4b:50:95:f1:4f:0f:8a:95:c8:14:84:cf:35:90:e6:3a:74:bf:
2f:e0:4e:b4:9a:79:27:c1:d6:ef:8d:46:df:64:2a:b3:af:78:
e9:c9:4a:d4:eb:d6:90:cd:a8:a1:c7:ff:d2:f6:2e:d3:c4:4f:
e6:26:ff:44:18:8b:06:0e:01:9c:0c:67:48:2a:07:fc:43:d6:
fe:9d:9d:6e:3a:a9:d5:5b:0e:31:82:8c:0d:ff:bf:17:6b:b0:
70:fd:2f:10:86:74:56:93:50:50:87:84:30:00:75:b4:44:c3:
27:0e:76:a9:bb:8a:62:7a:d7:13:73:bb:1e:86:f4:bd:96:ee:
1d:82:e5:bd:64:12:86:86:d8:7a:ae:65:38:d0:a9:0a:1b:40:
a1:c3:8a:8b:f3:c7:b3:4c:b5:3c:37:5a:ee:e5:85:b1:bd:ff:
69:6c:b5:d8:8e:26:79:7c:27:34:d3:23:1e:30:93:c8:fe:d7:
7a:d0:31:ab:7b:32:9f:5e:f0:2c:6b:b8:3b:5b:b9:e4:47:ff:
fe:06:bb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:34 2024 by rpki-client on console-fra.rpki-client.org