Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hUK7nF98GqA9OtRc8FJv-tNnT6I.roa
File: hUK7nF98GqA9OtRc8FJv-tNnT6I.roa (raw, json)
Hash identifier: pZU4zOnMNXE1yDXcdSf4sgkwYiHIoLdJkueTvnyxScM=
Subject key identifier: 85:42:BB:9C:5F:7C:1A:A0:3D:3A:D4:5C:F0:52:6F:FA:D3:67:4F:A2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019294AE1E77A6EC9BFDA4AC1BD6967BC444
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hUK7nF98GqA9OtRc8FJv-tNnT6I.roa
Signing time: Wed 16 Oct 2024 09:34:51 +0000
ROA not before: Wed 16 Oct 2024 09:34:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 18:26:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:94:ae:1e:77:a6:ec:9b:fd:a4:ac:1b:d6:96:7b:c4:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 16 09:34:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8542bb9c5f7c1aa03d3ad45cf0526ffad3674fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:16:45:be:b2:65:69:28:42:fa:6a:55:ef:3f:
1d:b1:24:ae:f1:56:cb:e0:d1:ab:16:80:ac:88:4b:
dc:04:fe:9f:5f:f9:7f:7d:f3:9c:13:28:b7:d6:c9:
37:ef:55:c3:61:b6:b4:43:8e:ba:46:73:87:d1:fd:
80:36:20:f3:62:07:d4:22:a5:aa:d4:28:22:5b:7c:
f0:9f:99:d9:50:93:36:dc:4f:f9:46:82:ce:63:84:
03:bf:f2:eb:3d:cf:ad:83:54:48:6a:a2:f4:05:9d:
84:6b:2b:ea:03:b9:10:b9:11:a7:bc:97:78:88:5e:
ef:b0:1b:ce:43:d3:e4:8c:db:92:48:19:9e:2b:99:
06:20:fa:12:1b:65:ee:43:b9:e9:eb:5c:4d:a7:7d:
18:03:37:48:fb:ae:d7:d8:af:c0:ff:aa:54:87:dd:
91:17:14:46:f8:76:6d:8b:a2:e4:8c:3a:5c:2e:5c:
a3:e6:7a:c7:19:18:9c:b7:f2:f4:81:a9:6e:6a:06:
e2:17:48:a8:83:ba:fe:01:eb:cf:28:1c:f7:c0:c7:
fc:92:b4:8e:25:30:ee:9b:11:05:54:7a:00:5d:86:
37:f8:be:ab:dc:e6:d5:0c:d9:22:a5:e8:e6:21:40:
b8:c5:bf:fd:ab:30:6a:20:52:43:dc:24:69:fc:bf:
3d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:42:BB:9C:5F:7C:1A:A0:3D:3A:D4:5C:F0:52:6F:FA:D3:67:4F:A2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hUK7nF98GqA9OtRc8FJv-tNnT6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.56.137.0/24
31.56.139.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
89:6b:59:92:cb:02:2d:6e:af:7f:ea:c1:b9:06:3b:f3:27:52:
ab:7e:af:8f:b0:bb:78:bb:92:b6:5d:05:5e:4b:a7:cb:2d:2a:
d5:1d:ef:46:da:7a:4e:35:f5:86:c5:65:90:8a:ac:66:42:7d:
93:23:4e:8c:cd:9f:6d:19:a6:d4:cd:eb:ad:90:e0:bd:0a:d1:
8c:d5:18:51:e5:49:02:1e:4f:b5:82:ed:10:3d:99:70:53:54:
bc:27:c5:90:ab:c0:57:df:bb:92:82:da:8e:07:b5:ec:b0:ed:
6d:32:e1:94:e1:e3:53:ab:8f:31:ca:fc:9a:55:93:f0:47:6f:
9f:bb:d0:f4:c0:37:c8:86:66:7c:0c:03:c7:93:4f:c5:85:18:
99:22:df:71:a3:2f:94:d0:66:9d:3c:b7:9f:27:cd:6f:81:4d:
22:dc:26:aa:2f:41:45:eb:03:bd:dc:a4:d5:be:e2:ef:41:ee:
82:a9:ad:51:8c:59:b8:aa:38:8c:56:42:27:e5:ed:d0:9b:91:
12:62:fa:b2:46:0f:a5:f6:31:12:9d:5a:0d:b4:b9:7e:18:e3:
fc:62:f8:6c:bd:4f:42:48:36:93:3d:39:94:f7:0c:59:04:49:
fa:04:53:a5:90:0e:74:3e:13:ec:22:f4:6d:08:3f:9f:22:38:
96:00:23:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 19:25:32 2024 by rpki-client on console-fra.rpki-client.org