Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iagKawKD1t0N6Yusw9kemhfuRxI.roa
File: iagKawKD1t0N6Yusw9kemhfuRxI.roa (raw, json)
Hash identifier: bOH0I0EsdbijtHRCX8/RB66Qm3FuQMeJJao80fnPKyI=
Subject key identifier: 89:A8:0A:6B:02:83:D6:DD:0D:E9:8B:AC:C3:D9:1E:9A:17:EE:47:12
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191561CE514DBFEDC416B13C512EA3F8EEC
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iagKawKD1t0N6Yusw9kemhfuRxI.roa
Signing time: Thu 15 Aug 2024 12:56:59 +0000
ROA not before: Thu 15 Aug 2024 12:56:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 31.56.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 14:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:1c:e5:14:db:fe:dc:41:6b:13:c5:12:ea:3f:8e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 15 12:56:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89a80a6b0283d6dd0de98bacc3d91e9a17ee4712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ed:fb:68:fb:63:c3:1e:19:7d:ac:06:fa:c8:
73:ce:41:d4:1a:9f:3f:ad:a1:3a:dc:e9:36:56:7c:
99:9c:d2:fc:ee:aa:d5:df:84:7d:f7:9a:a8:6f:77:
9f:17:34:95:c7:93:c5:14:33:cb:5c:09:83:b1:b0:
ee:e8:7e:43:52:a9:b2:d8:5e:30:c0:68:b1:e3:49:
11:41:7c:c3:d1:13:4d:d0:75:2a:b7:5f:28:8e:b0:
9a:2b:1d:83:ae:d5:37:76:e7:69:3f:31:b6:23:b1:
82:e5:a5:cf:2d:5b:b7:d1:af:1d:67:4c:58:19:04:
4d:5e:c3:15:de:12:1f:a0:00:a1:65:ae:6d:8b:be:
80:f0:73:85:a4:ce:75:e2:e0:cf:41:5b:a7:bb:57:
ab:72:99:85:b5:28:db:e1:19:3b:a0:7a:de:04:65:
10:8e:6b:79:fb:fa:6e:0f:44:18:93:40:49:f9:44:
74:00:68:7e:a6:87:65:03:9e:f4:97:a4:7a:7a:f3:
08:85:5a:76:2b:5b:9e:bd:7b:df:80:69:45:52:c7:
8a:09:fd:4d:81:0a:46:6f:6d:5c:95:55:ea:17:41:
ad:0e:9c:72:90:41:e7:2c:34:ca:44:9b:45:7d:6e:
81:20:cc:c5:78:5f:69:80:57:c8:f2:1e:72:49:5d:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A8:0A:6B:02:83:D6:DD:0D:E9:8B:AC:C3:D9:1E:9A:17:EE:47:12
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/iagKawKD1t0N6Yusw9kemhfuRxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.39.0/24
Signature Algorithm: sha256WithRSAEncryption
62:24:c8:7a:79:61:43:f0:18:62:e9:f2:41:89:73:27:98:59:
cb:b8:ee:42:cb:a8:1b:f4:d5:9f:2c:90:5f:c9:00:01:fe:e1:
0f:94:5b:52:cf:69:e0:eb:2d:70:c0:ec:c2:5c:5e:4e:ad:3e:
aa:7a:54:6e:7f:4e:7e:32:a3:21:bf:fb:9f:99:c1:28:1b:c2:
37:9b:3f:29:e1:ad:a7:3f:8a:28:48:9b:26:32:09:94:aa:26:
c8:5d:19:83:2c:41:84:3a:51:0f:51:67:a1:da:0a:b9:fb:f4:
64:b0:50:84:e5:ee:24:b6:f4:67:0c:31:d2:42:86:9e:5a:2c:
a3:18:37:d3:d1:3d:28:14:cd:e2:d5:ca:6f:6a:88:f8:fa:f8:
78:b4:bd:87:ff:4c:18:ca:8d:9a:39:f4:45:fd:cf:bd:f7:b8:
49:14:ce:e4:24:02:07:f0:ed:95:78:f9:1a:18:98:30:5e:46:
1c:5b:6c:8a:75:e3:96:8d:75:e6:20:32:bc:1c:4c:4b:1f:c4:
73:38:43:85:60:90:e4:6b:23:3c:1e:14:4b:71:40:81:7a:ea:
d8:5e:29:3f:e9:49:cc:b8:c3:97:2a:95:25:6c:a9:b8:dd:31:
bd:04:fd:fa:e7:47:51:9a:ca:6d:ed:6b:57:2c:90:bf:ab:ac:
3a:8b:20:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFWHOUU2/7cQWsTxRLqP47sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwODE1MTI1NjU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWE4MGE2YjAyODNkNmRkMGRlOThiYWNjM2Q5MWU5YTE3ZWU0NzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1e37aPtjwx4ZfawG+shzzkHUGp8/
raE63Ok2VnyZnNL87qrV34R995qob3efFzSVx5PFFDPLXAmDsbDu6H5DUqmy2F4w
wGix40kRQXzD0RNN0HUqt18ojrCaKx2DrtU3dudpPzG2I7GC5aXPLVu30a8dZ0xY
GQRNXsMV3hIfoAChZa5ti76A8HOFpM514uDPQVunu1ercpmFtSjb4Rk7oHreBGUQ
jmt5+/puD0QYk0BJ+UR0AGh+podlA570l6R6evMIhVp2K1uevXvfgGlFUseKCf1N
gQpGb21clVXqF0GtDpxykEHnLDTKRJtFfW6BIMzFeF9pgFfI8h5ySV2iOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFImoCmsCg9bdDemLrMPZHpoX7kcSMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvaWFnS2F3S0QxdDBONll1c3c5a2VtaGZ1UnhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzgnMA0G
CSqGSIb3DQEBCwUAA4IBAQBiJMh6eWFD8Bhi6fJBiXMnmFnLuO5Cy6gb9NWfLJBf
yQAB/uEPlFtSz2ng6y1wwOzCXF5OrT6qelRuf05+MqMhv/ufmcEoG8I3mz8p4a2n
P4ooSJsmMgmUqibIXRmDLEGEOlEPUWeh2gq5+/RksFCE5e4ktvRnDDHSQoaeWiyj
GDfT0T0oFM3i1cpvaoj4+vh4tL2H/0wYyo2aOfRF/c+997hJFM7kJAIH8O2VePka
GJgwXkYcW2yKdeOWjXXmIDK8HExLH8RzOEOFYJDkayM8HhRLcUCBeurYXik/6UnM
uMOXKpUlbKm43TG9BP3650dRmspt7WtXLJC/q6w6iyCK
-----END CERTIFICATE-----
Generated at Tue Sep 3 16:46:29 2024 by rpki-client on console-fra.rpki-client.org