Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iAuMTn-kZwdMBod7eLcOTIOVPNU.roa
File: iAuMTn-kZwdMBod7eLcOTIOVPNU.roa (raw, json)
Hash identifier: i70leGpTUxrFnjM9Hvty2rl/cThkeA44R3xZi7MDXDc=
Subject key identifier: 88:0B:8C:4E:7F:A4:67:07:4C:06:87:7B:78:B7:0E:4C:83:95:3C:D5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192BE0C68486694EF1FBCA9F1610BE22B7C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iAuMTn-kZwdMBod7eLcOTIOVPNU.roa
Signing time: Thu 24 Oct 2024 10:22:17 +0000
ROA not before: Thu 24 Oct 2024 10:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.153.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 16:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:0c:68:48:66:94:ef:1f:bc:a9:f1:61:0b:e2:2b:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 24 10:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=880b8c4e7fa467074c06877b78b70e4c83953cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:92:7b:0a:5f:f4:fb:42:15:10:97:1b:2a:cb:
4d:b5:cc:e9:c1:bb:02:ca:8b:7e:4a:cf:8e:66:73:
c0:c2:36:e5:e3:de:5e:2f:4a:d8:ae:55:a8:ba:69:
87:e3:82:d6:71:6c:a6:1d:d6:9e:b1:00:a8:36:53:
1c:3a:a7:e6:a7:a9:5a:06:6c:5b:a2:a5:05:db:91:
a6:ba:b7:91:72:f8:7b:74:0b:17:13:a3:69:f6:05:
45:60:af:70:39:90:be:44:ce:20:08:65:83:98:52:
53:45:98:af:5a:f0:4e:78:81:4a:d7:03:fb:65:1b:
0d:3a:a3:fa:8c:6f:4a:a8:18:ac:5d:b0:64:7a:fd:
d9:fe:a4:ba:5a:2e:d4:16:bd:74:50:d0:78:9f:8e:
99:f6:76:f6:a5:00:f5:f5:5c:b5:ba:c1:f1:52:ec:
1e:41:1b:6c:a4:a2:e9:c6:57:e8:18:bf:ca:c6:a7:
b8:7f:e0:ef:42:b1:40:ae:31:1b:a0:40:ce:9c:26:
bf:e0:21:8d:18:45:68:a1:c3:a5:9b:a4:85:ca:fa:
a1:5b:ec:49:a8:70:26:c9:c3:2a:38:70:f5:69:a3:
20:de:d0:a3:63:e6:13:fd:ed:29:53:7a:8b:c7:d8:
44:ee:db:c9:b4:01:61:81:98:03:77:2e:bc:08:98:
53:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0B:8C:4E:7F:A4:67:07:4C:06:87:7B:78:B7:0E:4C:83:95:3C:D5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iAuMTn-kZwdMBod7eLcOTIOVPNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.153.0/24
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
39:9d:5a:28:ba:4a:ba:6e:0f:12:7e:ad:f8:b2:28:41:6e:91:
e4:90:40:53:7b:f8:3e:cb:31:d1:44:0b:83:ea:39:af:95:e3:
40:b2:0b:6f:9d:71:2f:8f:c9:3d:16:94:23:3c:64:16:f3:10:
5e:97:0f:94:eb:c6:e0:27:27:91:5d:ed:21:8b:eb:1c:4b:77:
0b:f7:12:6c:ac:09:ed:78:8d:4e:17:76:6c:2d:ad:c4:6a:59:
ea:26:1c:92:8a:3c:4f:b9:7a:2d:26:6e:a3:4b:4e:82:15:2d:
4d:ed:76:d3:31:bc:6c:c8:ef:f1:ba:e4:f0:d3:92:28:58:2a:
30:6d:0d:9a:1b:14:e9:55:84:c0:79:fd:e6:d7:d7:7d:bd:76:
07:b7:4c:fb:97:38:1e:e3:04:15:5f:d4:7e:69:6d:1d:9f:34:
cf:e5:28:d0:a5:85:65:14:3f:77:5f:c8:ec:66:89:01:eb:34:
de:3c:59:3d:f9:0b:37:c0:5b:f5:76:73:38:73:c5:48:51:54:
7b:15:47:ea:85:10:fb:b8:60:ac:df:14:2a:cd:31:82:35:d4:
eb:47:5a:7d:29:6b:f1:47:58:2d:22:3e:c7:18:05:b5:af:d5:
52:00:9b:01:94:a2:d3:12:3c:88:9e:4a:54:51:6a:52:e6:21:
80:af:21:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 20:38:12 2024 by rpki-client on console-ams.rpki-client.org