Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hBV2tvPdOSMLofIZmftA1jkMw7U.roa
File: hBV2tvPdOSMLofIZmftA1jkMw7U.roa (raw, json)
Hash identifier: 16uIvipwFXz4onj7nxD9KuqK5c4t+vpvyvFcrpNKq9I=
Subject key identifier: 84:15:76:B6:F3:DD:39:23:0B:A1:F2:19:99:FB:40:D6:39:0C:C3:B5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019562C43319D931E29C9C41829E544277D4
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hBV2tvPdOSMLofIZmftA1jkMw7U.roa
Signing time: Tue 04 Mar 2025 20:06:20 +0000
ROA not before: Tue 04 Mar 2025 20:06:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.90.0/23 maxlen: 23
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.200.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.136.0/21 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.200.0/24 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.68.0/22 maxlen: 24
31.58.76.0/22 maxlen: 24
31.58.84.0/22 maxlen: 24
31.58.91.0/24 maxlen: 24
31.58.100.0/22 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.120.0/22 maxlen: 24
31.59.184.0/22 maxlen: 24
31.59.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 16:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:62:c4:33:19:d9:31:e2:9c:9c:41:82:9e:54:42:77:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 4 20:06:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=841576b6f3dd39230ba1f21999fb40d6390cc3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:10:89:40:6d:71:e6:67:42:ea:a3:b0:5a:
48:83:a1:04:83:3e:9a:26:94:01:a2:a7:77:d8:a3:
be:38:94:fa:dc:75:e4:cc:fd:d9:81:b3:f6:fd:32:
13:c1:02:0d:00:16:93:39:e6:9d:f7:12:99:19:61:
a2:ac:43:66:24:22:68:d3:46:04:f3:03:3a:34:41:
76:3f:c8:b5:03:05:19:99:03:b8:4a:06:c6:3f:98:
dd:0f:da:00:49:8b:e5:63:14:fb:3d:56:93:3e:06:
b0:19:c6:9d:ac:d9:70:a5:52:6c:dd:80:24:93:0b:
36:21:6d:2a:57:f7:e4:b2:63:8a:a7:4a:b6:2f:78:
6d:6e:5e:1a:33:e3:d1:a2:37:23:ea:6a:71:13:1f:
a2:f6:60:50:da:4f:b9:af:47:8b:32:b5:52:82:0a:
de:ad:87:63:23:6b:9c:62:da:86:1e:eb:e8:fa:56:
b5:7d:c8:b3:07:97:fa:6f:2b:22:2f:33:8b:5e:7a:
ae:40:57:ae:ad:07:23:9b:6e:4a:c1:74:ba:bf:b0:
92:04:ce:33:3b:39:06:52:87:a9:97:f4:32:06:92:
8c:83:e2:ad:56:6a:d0:e4:2d:47:e2:14:2a:01:3e:
23:2c:de:32:22:d8:90:b6:d5:d2:1f:11:85:89:1b:
92:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:15:76:B6:F3:DD:39:23:0B:A1:F2:19:99:FB:40:D6:39:0C:C3:B5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hBV2tvPdOSMLofIZmftA1jkMw7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.71.0/24
31.56.85.0/24
31.56.90.0/23
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.200.0/22
31.57.92.0-31.57.99.255
31.57.104.0/21
31.57.132.0/23
31.57.136.0/21
31.57.146.0/23
31.57.176.0/21
31.57.192.0/22
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.232.0/22
31.57.252.0/22
31.58.34.0/23
31.58.50.0/23
31.58.68.0/22
31.58.76.0/22
31.58.84.0/22
31.58.91.0/24
31.58.100.0/22
31.58.152.0/22
31.58.224.0/22
31.59.41.0/24
31.59.96.0/22
31.59.112.0/22
31.59.120.0/22
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
47:bf:80:f8:42:4d:21:e7:4c:b0:10:ff:cc:29:4c:8a:5f:53:
41:3d:9a:1f:24:14:3f:e8:78:36:e7:0e:42:79:d6:0a:b0:7e:
99:39:fa:b8:c4:2b:4d:5e:65:1e:0e:84:5d:85:4c:8b:09:67:
6b:fb:a5:ae:11:ed:c3:50:75:f5:cd:44:43:2a:a4:91:88:fc:
89:b4:24:62:01:7c:9f:3a:0b:b4:45:53:c6:3e:03:86:12:fc:
e3:ab:61:7c:be:95:11:44:bd:7b:a8:ef:e0:b4:72:8b:f9:13:
76:d5:1f:54:b8:02:00:65:e3:1f:5e:8c:47:1f:48:80:78:9b:
41:b8:a3:ea:1e:12:a7:0a:3c:d4:02:45:8a:9e:fe:36:ef:51:
f5:04:1f:9c:17:56:6f:7e:c6:68:1a:98:26:d0:a0:bf:91:6d:
8f:7b:49:d5:81:86:5b:7b:35:6b:43:81:39:67:43:78:2a:92:
86:e1:b5:21:a8:70:89:ce:cc:61:ad:09:e7:e5:20:c4:4c:6d:
e1:e2:b5:23:4a:3a:bc:28:e1:37:49:91:ed:0a:5a:d5:c5:e4:
e2:02:f8:c7:2b:7b:9f:39:92:8f:0a:92:cc:08:4b:4c:fb:f7:
00:ad:a4:e8:30:df:5a:ea:96:f0:a3:68:08:ff:d6:ff:2b:f4:
41:60:0b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 09:48:14 2025 by rpki-client