Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fIx4EeTXlXvtTsL_BoyhkMqeaIw.roa
File: fIx4EeTXlXvtTsL_BoyhkMqeaIw.roa (raw, json)
Hash identifier: L0zV4RML3JTXjkxD7oD2isYC0AiBDaYPdZpRXOv32HI=
Subject key identifier: 7C:8C:78:11:E4:D7:95:7B:ED:4E:C2:FF:06:8C:A1:90:CA:9E:68:8C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193DE40BA4B46EEA717FC3C39DE1DB2D002
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fIx4EeTXlXvtTsL_BoyhkMqeaIw.roa
Signing time: Thu 19 Dec 2024 09:30:04 +0000
ROA not before: Thu 19 Dec 2024 09:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.56.23.0/24 maxlen: 24
31.56.25.0/24 maxlen: 24
31.56.27.0/24 maxlen: 24
31.56.28.0/22 maxlen: 24
31.56.32.0/24 maxlen: 24
31.56.34.0/24 maxlen: 24
31.56.36.0/24 maxlen: 24
31.56.38.0/24 maxlen: 24
31.56.40.0/24 maxlen: 24
31.56.58.0/24 maxlen: 24
31.56.61.0/24 maxlen: 24
31.56.68.0/24 maxlen: 24
31.56.70.0/24 maxlen: 24
31.56.80.0/22 maxlen: 22
31.56.92.0/22 maxlen: 22
31.56.96.0/22 maxlen: 22
31.56.100.0/22 maxlen: 22
31.57.119.0/24 maxlen: 24
31.57.168.0/22 maxlen: 24
31.58.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:40:ba:4b:46:ee:a7:17:fc:3c:39:de:1d:b2:d0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 19 09:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c8c7811e4d7957bed4ec2ff068ca190ca9e688c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:f9:70:30:bd:97:12:bb:36:8e:75:89:30:
bd:73:dc:20:ec:0f:70:ce:c4:42:54:a1:9d:c2:eb:
8f:82:d6:e6:14:fb:29:bf:74:4f:e7:74:3f:1e:43:
0b:c4:22:f1:0f:be:37:f5:19:40:6b:4b:61:21:43:
06:fe:00:b3:e2:62:ef:2f:8d:b7:cf:7b:a8:19:49:
63:71:cc:90:b5:35:00:96:0f:66:c9:81:59:8e:59:
15:4d:d1:61:54:bd:2e:ae:e7:cc:5a:76:93:94:fe:
c6:5d:e3:e5:3c:20:15:bb:58:c5:cc:6a:47:f6:3f:
59:c7:9c:66:f7:6c:e5:42:dd:ac:88:7a:be:fc:fd:
60:33:4f:25:f6:49:a4:49:50:89:f7:7a:24:09:69:
bb:84:8e:38:9b:9a:d9:76:0f:44:3d:16:26:9e:ef:
3d:42:4d:a5:51:e7:b8:0a:cb:ad:24:57:72:77:bc:
b0:d9:4e:e7:be:5f:8c:aa:56:4a:28:b1:7d:2e:8b:
78:62:4f:50:48:76:a6:2b:56:57:88:6b:82:fa:fe:
2a:43:90:f9:2b:6d:f9:b8:12:32:f8:98:71:7c:53:
d1:04:c9:d1:3b:49:06:de:e4:bf:93:7e:81:98:4d:
30:73:df:ee:31:2a:09:94:9e:cf:df:6b:44:a7:64:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8C:78:11:E4:D7:95:7B:ED:4E:C2:FF:06:8C:A1:90:CA:9E:68:8C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fIx4EeTXlXvtTsL_BoyhkMqeaIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.23.0/24
31.56.25.0/24
31.56.27.0-31.56.32.255
31.56.34.0/24
31.56.36.0/24
31.56.38.0/24
31.56.40.0/24
31.56.58.0/24
31.56.61.0/24
31.56.68.0/24
31.56.70.0/24
31.56.80.0/22
31.56.92.0-31.56.103.255
31.57.119.0/24
31.57.168.0/22
31.58.130.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:5f:10:45:7d:e6:40:41:8a:68:93:c1:45:a1:11:0b:3d:b7:
bf:50:cf:a4:f1:ea:2e:8c:ae:43:b6:da:0a:4d:36:72:d0:7f:
54:a4:15:b7:b5:66:5e:0f:6b:80:46:55:1d:a1:87:c4:44:5f:
cb:a9:41:b1:11:7c:d7:48:46:eb:41:33:ea:8d:3f:92:74:8b:
7a:cd:33:c7:44:ae:7b:1c:7f:af:12:83:83:f0:c5:0d:9a:4f:
a4:c8:e8:4f:57:62:a9:5a:d9:75:08:21:dd:ed:20:19:36:6b:
fb:d8:a8:33:9e:53:94:e2:70:75:1e:65:d7:48:69:ce:09:36:
c9:30:10:32:7b:a9:52:d7:16:c7:a5:1a:12:b9:a8:fc:6d:e2:
9d:5a:ba:55:fd:58:b4:28:a8:96:0e:7d:16:e9:4c:16:4a:fc:
a9:77:cc:3b:f5:5c:b4:81:e8:97:85:3a:76:a9:30:21:89:15:
86:30:f1:d1:e8:9f:51:be:86:2b:18:a5:92:50:4b:75:7e:df:
31:3a:32:75:63:fb:d2:dc:20:27:d8:40:ba:a8:af:67:53:16:
d1:ef:c6:00:1c:a1:32:dc:f1:4f:fd:39:05:51:11:e5:f7:aa:
93:ab:89:1d:7b:39:f7:e0:23:2a:5e:09:69:f9:fc:db:66:e4:
7c:c6:87:73
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAZPeQLpLRu6nF/w8Od4dstACMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMjE5MDkzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzhjNzgxMWU0ZDc5NTdiZWQ0ZWMyZmYwNjhjYTE5MGNhOWU2ODhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJb5cDC9lxK7No51iTC9c9wg7A9w
zsRCVKGdwuuPgtbmFPspv3RP53Q/HkMLxCLxD7439RlAa0thIUMG/gCz4mLvL423
z3uoGUljccyQtTUAlg9myYFZjlkVTdFhVL0urufMWnaTlP7GXePlPCAVu1jFzGpH
9j9Zx5xm92zlQt2siHq+/P1gM08l9kmkSVCJ93okCWm7hI44m5rZdg9EPRYmnu89
Qk2lUee4CsutJFdyd7yw2U7nvl+MqlZKKLF9Lot4Yk9QSHamK1ZXiGuC+v4qQ5D5
K235uBIy+JhxfFPRBMnRO0kG3uS/k36BmE0wc9/uMSoJlJ7P32tEp2Q4jwIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFHyMeBHk15V77U7C/waMoZDKnmiMMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvZkl4NEVlVFhsWHZ0VHNMX0JveWhrTXFlYUl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAB84FwME
AB84GTAMAwQAHzgbAwQAHzggAwQAHzgiAwQAHzgkAwQAHzgmAwQAHzgoAwQAHzg6
AwQAHzg9AwQAHzhEAwQAHzhGAwQCHzhQMAwDBAIfOFwDBAMfOGADBAAfOXcDBAIf
OagDBAAfOoIwDQYJKoZIhvcNAQELBQADggEBAH9fEEV95kBBimiTwUWhEQs9t79Q
z6Tx6i6MrkO22gpNNnLQf1SkFbe1Zl4Pa4BGVR2hh8REX8upQbERfNdIRutBM+qN
P5J0i3rNM8dErnscf68Sg4PwxQ2aT6TI6E9XYqla2XUIId3tIBk2a/vYqDOeU5Ti
cHUeZddIac4JNskwEDJ7qVLXFselGhK5qPxt4p1aulX9WLQoqJYOfRbpTBZK/Kl3
zDv1XLSB6JeFOnapMCGJFYYw8dHon1G+hisYpZJQS3V+3zE6MnVj+9LcICfYQLqo
r2dTFtHvxgAcoTLc8U/9OQVREeX3qpOriR17OffgIypeCWn5/Ntm5HzGh3M=
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:10 2025 by rpki-client