Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/dWowtX0Rr-Hiuhqqs1_3lnXk3Ac.roa
File: dWowtX0Rr-Hiuhqqs1_3lnXk3Ac.roa (raw, json)
Hash identifier: 0MQamBjbB49tG5MAB+kHmx1SORzHnftNgOkoZBfqYAU=
Subject key identifier: 75:6A:30:B5:7D:11:AF:E1:E2:BA:1A:AA:B3:5F:F7:96:75:E4:DC:07
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0196EE95B5E60AFE93D6AFCD2C377E14F6A6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/dWowtX0Rr-Hiuhqqs1_3lnXk3Ac.roa
Signing time: Tue 20 May 2025 16:45:10 +0000
ROA not before: Tue 20 May 2025 16:45:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 31.56.66.0/24 maxlen: 24
31.57.35.0/24 maxlen: 24
31.57.100.0/24 maxlen: 24
31.57.228.0/24 maxlen: 24
31.57.248.0/24 maxlen: 24
31.59.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 07:55:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ee:95:b5:e6:0a:fe:93:d6:af:cd:2c:37:7e:14:f6:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 20 16:45:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=756a30b57d11afe1e2ba1aaab35ff79675e4dc07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:12:26:95:31:d2:07:e6:fc:a9:3a:7e:ee:0b:
d0:16:57:16:1d:74:b7:03:80:c8:30:45:cc:62:81:
f8:a0:16:db:cc:91:b1:4a:e2:e7:e4:13:fa:ab:4f:
fb:86:19:a4:05:6d:53:d6:d7:f7:45:08:5b:2c:79:
52:67:f9:23:21:a7:6b:74:34:82:e8:c6:23:ab:65:
c4:3a:53:ce:44:fe:ea:a8:55:ab:fe:74:9b:f8:84:
c5:cd:d6:a5:69:63:d8:7e:ae:2c:92:31:eb:3a:0a:
9b:87:0a:09:81:fc:3e:30:ae:8b:c1:1a:89:65:15:
98:d2:00:b8:e6:9a:c9:d9:d5:03:0a:7d:65:bc:a7:
e9:85:e9:f7:79:07:f0:d8:4b:1b:c3:55:f6:bd:7f:
05:49:ad:48:34:5a:20:f3:cd:3e:dd:7d:52:a5:30:
54:1c:7b:2e:3e:e8:e0:68:c3:63:c7:46:14:53:ae:
02:e0:c4:37:f4:cb:ae:ef:d9:45:37:82:b0:3f:c4:
fd:98:d8:4b:53:6d:de:f9:96:29:c3:fa:08:c1:ea:
4c:df:f2:ff:b1:06:7d:77:92:dc:d0:4c:c7:40:4a:
e8:30:d1:04:95:ed:a8:0d:f1:03:52:66:00:e1:41:
41:f2:ee:a0:38:bc:da:56:fb:27:8a:34:65:11:f0:
01:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6A:30:B5:7D:11:AF:E1:E2:BA:1A:AA:B3:5F:F7:96:75:E4:DC:07
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/dWowtX0Rr-Hiuhqqs1_3lnXk3Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.66.0/24
31.57.35.0/24
31.57.100.0/24
31.57.228.0/24
31.57.248.0/24
31.59.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:0e:8e:21:0f:73:d5:6b:bc:a9:5e:43:03:0e:ae:89:72:49:
fe:4f:89:a9:2b:0c:e6:71:91:87:28:68:8a:2a:c6:bd:0d:e8:
f1:4d:06:83:a6:4c:99:c5:ad:bb:82:a7:f7:08:11:c0:15:ca:
e5:ab:03:26:5e:a8:28:43:9c:86:7b:af:15:3c:4b:92:dc:59:
1f:18:92:fe:59:dd:f6:06:aa:1e:24:14:f7:22:d7:f9:5f:be:
72:a4:15:a4:ef:18:72:bd:96:cf:b3:c9:de:ca:48:00:9a:1f:
e6:e8:d1:3e:cb:db:68:72:d5:01:e1:2b:b5:13:01:f4:43:44:
e3:f4:4f:70:c0:aa:45:d4:5b:ef:34:25:8c:05:43:a4:cf:5c:
34:d0:8a:7c:a6:ad:bc:60:ce:c5:f8:f7:7f:e6:77:7a:a7:13:
af:62:73:c4:47:0a:4f:a3:e0:80:34:24:a8:22:2a:70:18:6a:
1b:6f:6f:73:e3:7a:5d:e9:4b:0e:2e:8d:ac:98:60:fa:7d:55:
df:08:63:a5:7e:0a:f8:61:d4:7c:5b:27:2d:90:f6:db:e7:95:
b8:32:80:74:90:8b:3f:30:53:81:67:ae:e8:a9:53:e4:3d:ed:
ce:d2:91:29:1f:41:ed:f0:78:52:6c:bb:cd:38:c8:e9:3d:9e:
bf:c0:d8:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 03:19:33 2025 by rpki-client