Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/d0BpNgShpXznT5-Lqu3J8strQ7A.roa
File: d0BpNgShpXznT5-Lqu3J8strQ7A.roa (raw, json)
Hash identifier: 6pjldozWzfC/NVRe3mMxnDh0SaLC4UWbQc1g0kNx9L4=
Subject key identifier: 77:40:69:36:04:A1:A5:7C:E7:4F:9F:8B:AA:ED:C9:F2:CB:6B:43:B0
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192473F134587BBC97803AF253F7922EC4A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/d0BpNgShpXznT5-Lqu3J8strQ7A.roa
Signing time: Tue 01 Oct 2024 08:42:48 +0000
ROA not before: Tue 01 Oct 2024 08:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.2.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.63.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 06:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:47:3f:13:45:87:bb:c9:78:03:af:25:3f:79:22:ec:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 1 08:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7740693604a1a57ce74f9f8baaedc9f2cb6b43b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:77:85:d8:a8:80:61:2f:6c:81:57:72:59:bb:
ef:89:a1:3d:9f:69:c7:d8:ba:ac:6c:c7:17:fb:fb:
65:e4:98:e0:7c:80:a8:c5:fb:82:4d:ee:34:16:88:
21:ea:95:83:66:bd:b5:e4:63:48:4c:81:00:32:ae:
52:6b:f4:4c:62:8a:fb:78:16:ca:57:82:64:34:04:
b5:5f:b9:82:03:3d:af:4d:29:98:a5:84:cd:c8:48:
c8:58:54:0a:28:d5:8a:6a:9e:bd:26:7b:df:f9:4f:
4c:57:e2:d3:9a:eb:1c:55:c0:b3:a5:ce:d9:74:f2:
d8:bc:3c:4f:10:5b:6c:63:b7:64:b6:c6:d1:10:69:
8d:66:4d:91:5d:24:e4:2a:d2:4e:a1:bd:3e:16:1d:
7b:94:c6:9a:c2:77:a1:0f:3b:7f:c6:5a:d0:90:30:
a5:5d:07:48:09:4e:30:bd:b9:20:42:68:d9:4a:aa:
df:92:2c:c7:1b:9e:2c:42:17:17:7b:42:60:eb:cf:
4e:d2:d4:a9:47:27:08:29:76:97:84:27:ac:49:b4:
c6:56:12:70:07:37:36:5c:ba:5b:99:5c:ff:9a:ad:
ad:b1:c8:e7:2e:ca:04:70:68:97:d2:98:b5:ab:cc:
62:b8:d7:58:4a:f3:5d:92:08:0a:6d:e0:ca:0f:37:
6c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:40:69:36:04:A1:A5:7C:E7:4F:9F:8B:AA:ED:C9:F2:CB:6B:43:B0
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/d0BpNgShpXznT5-Lqu3J8strQ7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.2.0/24
31.56.4.0/23
31.56.39.0/24
31.56.59.0/24
31.56.63.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.89.0/24
31.56.112.0/21
31.56.126.0/24
31.56.137.0-31.56.138.255
31.56.147.0/24
31.57.0.0-31.57.9.255
Signature Algorithm: sha256WithRSAEncryption
91:24:c1:cd:9b:f9:66:e7:ee:40:11:76:82:8d:77:14:e6:c6:
61:bf:0a:e4:96:bb:15:a4:00:b1:db:6d:7c:18:00:94:ff:93:
83:81:5b:29:05:f8:40:b5:f4:a1:46:64:ce:43:bd:cb:8b:7f:
af:2e:a4:3a:c4:3e:d9:d2:d2:9b:bf:4d:06:29:97:ff:f7:43:
6c:3d:71:4a:21:a8:84:2f:e2:5c:d5:97:ff:de:12:74:f9:9e:
4d:16:52:96:01:24:40:9e:e9:95:4a:24:7c:79:39:49:23:9b:
58:0c:42:d8:a2:85:56:f7:8b:c0:3e:18:9d:24:bf:d0:f8:03:
29:75:f3:00:bd:a0:4b:db:7c:bc:64:c7:9b:91:6c:00:2e:a1:
4e:5d:1b:82:0a:a9:49:f1:f6:51:89:a0:76:9f:14:36:f8:cc:
81:f9:5d:59:4e:06:9d:bf:0e:f2:97:d1:a6:c0:d4:40:ba:57:
52:42:d3:ec:7d:9f:5b:1b:31:af:d4:81:87:5e:6a:4f:38:68:
91:fd:11:26:33:56:f3:e5:64:4c:b6:f2:1b:ab:18:3f:d9:15:
2f:6b:79:30:4c:fc:ae:05:f3:8f:cd:e2:f1:85:b6:1f:0b:49:
f4:b9:8b:4f:7e:0f:80:a3:26:61:43:c0:37:64:66:6e:95:6b:
a8:32:d0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 09:16:10 2024 by rpki-client on console-fra.rpki-client.org