Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fZ4LoHbqX4AcuVowJHX8s6ogJgk.roa
File: fZ4LoHbqX4AcuVowJHX8s6ogJgk.roa (raw, json)
Hash identifier: az/JBmGgdYs7u7yKkckvz0Kzlrhz+84IOwIkottCsCw=
Subject key identifier: 7D:9E:0B:A0:76:EA:5F:80:1C:B9:5A:30:24:75:FC:B3:AA:20:26:09
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01943BF053FE24E423961B23317339C78422
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fZ4LoHbqX4AcuVowJHX8s6ogJgk.roa
Signing time: Mon 06 Jan 2025 14:06:33 +0000
ROA not before: Mon 06 Jan 2025 14:06:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213060
IP address blocks: 31.56.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 12:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3b:f0:53:fe:24:e4:23:96:1b:23:31:73:39:c7:84:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 6 14:06:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d9e0ba076ea5f801cb95a302475fcb3aa202609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b2:bd:d6:d6:d4:94:85:ba:08:08:54:62:f3:
11:97:9d:cc:0b:c2:80:d0:32:47:8b:ea:c0:10:cb:
d6:e4:8b:42:99:8d:81:5e:e2:bf:26:06:e0:d0:3e:
54:4e:a5:de:4d:d7:ab:c4:5c:98:a4:93:17:0c:26:
68:8f:ca:05:58:81:45:d9:fb:45:73:53:ee:99:8c:
a8:e3:f6:22:8e:a4:1c:cd:c3:26:6f:11:98:29:c2:
da:21:00:e5:3d:9f:e2:a5:e2:a0:93:5b:18:36:be:
d3:ab:96:d9:43:81:27:c3:03:bc:8f:d6:1e:0c:5f:
d3:82:8c:0a:d3:cd:83:de:7b:b6:18:c1:af:2c:b0:
06:94:98:74:cc:e3:c9:d8:a6:80:29:62:a4:cc:3b:
63:af:1b:8c:5a:65:9c:03:42:51:65:95:18:bd:6d:
57:05:bc:3c:a6:e0:dd:5b:5f:20:1f:51:55:66:f1:
f6:af:f8:c5:5b:e0:6a:08:8f:f3:34:54:3c:e2:76:
96:98:69:83:8f:42:0c:28:ec:7b:f1:14:47:94:24:
ee:f0:ca:25:b8:77:ef:d1:a3:7a:4f:23:1a:e6:70:
b1:68:d3:a2:d7:72:d6:36:3e:89:c5:80:b3:8e:84:
78:bd:2a:d6:43:83:ea:8a:20:42:a6:dd:a4:ab:2c:
21:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9E:0B:A0:76:EA:5F:80:1C:B9:5A:30:24:75:FC:B3:AA:20:26:09
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/fZ4LoHbqX4AcuVowJHX8s6ogJgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.71.0/24
Signature Algorithm: sha256WithRSAEncryption
58:24:76:6f:54:0f:4c:1b:ca:f5:7c:f9:54:c0:50:b8:1c:ab:
9c:89:ef:04:7c:8f:97:af:cc:8d:ea:d7:93:2a:a2:d7:72:9b:
4a:bb:47:00:4a:6f:81:91:77:63:79:0a:0d:d9:1d:c9:ac:4d:
4d:cf:a1:0d:09:5c:c1:e0:eb:32:58:55:85:ab:de:a1:8f:10:
16:ad:47:7d:23:17:f9:3d:9a:bd:15:de:8a:ce:53:15:39:9c:
3b:fe:d3:22:a9:4a:40:19:f0:93:60:c9:87:7e:92:e7:61:21:
49:f2:ab:a3:0e:04:d0:6c:4b:02:8e:d0:fb:c1:ad:fb:97:4f:
ef:44:15:38:8a:7c:54:1a:6c:b1:5c:9a:ae:87:c6:ab:7c:ab:
cd:e6:ed:c5:f2:f7:11:a5:38:6a:6c:7e:d0:0e:9e:f3:85:4b:
15:23:8d:2d:c4:41:f6:05:f9:fc:71:03:5d:fd:d5:5a:a7:e9:
b9:85:d0:b5:df:8d:f0:5d:d9:4e:c7:92:6a:e0:86:36:0f:74:
b7:03:58:bd:5c:7c:9a:84:1f:14:1d:b3:d3:98:4c:38:f8:5c:
fe:e4:61:19:9c:3e:5e:68:c9:f4:b6:ee:92:9f:97:f3:d3:41:
30:8f:89:ab:64:42:45:ae:b4:87:34:41:49:8a:3a:94:b6:60:
3c:9c:b7:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:11 2025 by rpki-client