Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hLNaeuUwj06GqKVhneJlE4eMmpU.roa
File: hLNaeuUwj06GqKVhneJlE4eMmpU.roa (raw, json)
Hash identifier: hUOUQcJOWCb/9WJbrfij1LlOKjiOsn9+ePIt65CzrIc=
Subject key identifier: 84:B3:5A:7A:E5:30:8F:4E:86:A8:A5:61:9D:E2:65:13:87:8C:9A:95
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01928EE6A164B79D80DCB674B2188B63B5DC
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hLNaeuUwj06GqKVhneJlE4eMmpU.roa
Signing time: Tue 15 Oct 2024 06:38:52 +0000
ROA not before: Tue 15 Oct 2024 06:38:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 09:54:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8e:e6:a1:64:b7:9d:80:dc:b6:74:b2:18:8b:63:b5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 15 06:38:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84b35a7ae5308f4e86a8a5619de26513878c9a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:74:b2:bb:4b:02:68:69:9e:5e:94:cb:b0:1e:
2e:03:b4:76:62:aa:f5:d5:35:66:c0:77:ee:3f:a6:
05:4c:bb:0e:cb:66:c9:22:11:1d:78:d8:4e:78:83:
c8:d1:b1:d0:5c:d7:f5:3d:4b:5c:7e:ba:5c:b5:a1:
f8:ef:47:37:0e:6f:1a:11:dd:4e:af:ea:d4:3b:fc:
ab:89:62:3c:c3:0e:4e:dd:d5:8c:c8:eb:f7:57:64:
53:2a:36:45:e1:93:c6:e5:f2:a2:32:fd:ff:5f:8f:
50:e3:bf:02:a5:1b:c7:2d:1f:1e:44:87:7a:6f:0f:
a2:b4:77:7f:ce:c4:a8:65:eb:f7:56:2a:a1:30:8c:
2c:71:5a:63:a0:7c:f8:47:6b:76:ec:f8:38:46:0b:
71:cd:5b:2e:5a:88:f0:be:ba:1e:f9:8d:ea:31:a3:
9d:66:dd:5e:29:ae:3d:96:ee:4a:ad:3f:a4:94:c1:
dd:52:fc:9c:48:a6:5c:74:45:a1:10:3e:1d:dd:76:
22:6a:52:0c:28:7b:81:09:14:ad:7b:ad:7e:83:04:
8d:84:ec:86:76:08:19:b7:6e:67:c4:6c:47:98:5d:
2b:2e:3b:57:ba:71:98:ef:73:c3:84:14:fb:96:79:
77:26:23:c4:a8:fd:95:8b:da:b8:d3:ec:1f:0e:aa:
b0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B3:5A:7A:E5:30:8F:4E:86:A8:A5:61:9D:E2:65:13:87:8C:9A:95
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hLNaeuUwj06GqKVhneJlE4eMmpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.56.137.0-31.56.140.255
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
13:ec:7d:1a:26:a7:7f:19:70:b5:10:6e:fc:c9:85:9d:85:79:
97:8d:ec:37:9b:cc:62:75:a1:fd:97:c4:dd:9b:be:6a:e0:65:
a2:57:7f:fb:88:32:f7:dc:7a:55:f8:d7:d2:d5:cd:f1:40:81:
4d:c2:98:2a:4b:e7:a3:d5:f1:d2:3e:5d:e4:67:30:e6:03:af:
a8:ea:da:de:3c:5c:77:16:ba:49:5f:ff:44:0e:34:80:e1:d8:
df:34:f3:a4:93:9a:9b:a1:b7:15:82:d6:9a:84:fc:9c:59:31:
02:f6:70:9a:11:54:f9:26:b8:39:3f:80:bd:29:81:fc:63:96:
f5:47:89:77:1b:53:02:24:f4:99:c2:63:80:08:04:25:dc:18:
a3:b2:19:14:88:89:fb:1b:f4:49:6f:db:d3:78:30:e6:f4:9d:
45:b9:f9:29:63:a6:55:51:5e:b8:1c:ee:db:e9:1a:09:eb:46:
b9:bb:c2:fb:5c:b0:04:90:af:32:7f:08:20:a0:67:7b:cf:51:
04:e6:61:c8:0e:a0:0e:4e:c9:e9:9c:3b:0e:fa:29:96:14:5d:
68:0e:53:f4:c5:84:de:f6:bc:d6:a1:2c:b1:e3:b4:ce:b3:e4:
58:5f:14:29:12:4a:82:e9:d6:6d:5d:f5:60:60:0e:52:37:01:
9c:22:20:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 12:17:59 2024 by rpki-client on console-ams.rpki-client.org