Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/igyzCiCU7qjTk7KhK6pulXHLszU.roa
File: igyzCiCU7qjTk7KhK6pulXHLszU.roa (raw, json)
Hash identifier: prykKcHL73Bnp18anKJqpXPHFeTAe4wqQSz9SfTWzOE=
Subject key identifier: 8A:0C:B3:0A:20:94:EE:A8:D3:93:B2:A1:2B:AA:6E:95:71:CB:B3:35
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01937E3DA883D8D3C6A642010C187ADDCA0A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/igyzCiCU7qjTk7KhK6pulXHLszU.roa
Signing time: Sat 30 Nov 2024 18:03:10 +0000
ROA not before: Sat 30 Nov 2024 18:03:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.56.112.0/21 maxlen: 24
31.56.114.0/23 maxlen: 23
31.56.118.0/23 maxlen: 23
31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.57.194.0/24 maxlen: 24
31.57.224.0/22 maxlen: 23
31.57.252.0/22 maxlen: 23
31.58.59.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.58.167.0/24 maxlen: 24
31.58.176.0/22 maxlen: 22
31.58.200.0/22 maxlen: 22
31.58.216.0/22 maxlen: 22
31.58.240.0/22 maxlen: 22
31.58.252.0/22 maxlen: 22
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.124.0/22 maxlen: 22
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Dec 2024 21:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7e:3d:a8:83:d8:d3:c6:a6:42:01:0c:18:7a:dd:ca:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 30 18:03:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a0cb30a2094eea8d393b2a12baa6e9571cbb335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:98:6b:b5:6a:d8:fd:e9:c9:30:01:18:bc:
a9:81:1d:35:6d:21:c4:ae:b0:18:88:45:76:26:c7:
ca:3f:b7:60:cd:c0:50:a6:b1:be:13:07:11:51:ca:
d8:d9:29:61:03:75:09:8d:59:7c:41:81:2d:b6:5c:
50:78:05:04:79:3f:3b:93:3e:5e:17:4f:53:a0:05:
64:5f:db:7d:41:da:cb:ec:d6:c0:0a:8a:59:a0:74:
38:27:f0:7a:dc:e5:05:4d:99:d0:92:68:25:93:9a:
47:39:32:54:20:1c:2c:6e:06:fe:ae:ea:a4:48:5e:
b2:e1:be:b2:e8:6b:65:99:4e:05:72:55:ee:80:6b:
82:e9:ee:2a:a0:02:42:c7:80:59:20:37:07:30:13:
8e:09:aa:da:fb:9a:96:60:0b:d7:5a:c1:11:6f:1e:
7b:7c:21:fe:19:51:17:37:8e:7a:95:9a:b4:1e:5a:
35:11:bf:11:41:eb:ae:a6:0b:ee:fc:92:48:45:21:
4d:4c:a5:d8:d8:8a:21:65:25:fb:59:3e:6b:e3:7c:
21:e4:2d:06:17:ea:41:ec:da:6e:71:18:73:d8:83:
b8:74:ce:ad:1c:0c:23:f5:0e:58:c2:b6:dd:29:b7:
1e:5a:f9:17:74:02:2b:5a:ab:71:03:29:cb:42:c6:
f9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0C:B3:0A:20:94:EE:A8:D3:93:B2:A1:2B:AA:6E:95:71:CB:B3:35
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/igyzCiCU7qjTk7KhK6pulXHLszU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.112.0/21
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.178.0/23
31.57.181.0-31.57.183.255
31.57.194.0/24
31.57.224.0/22
31.57.252.0/22
31.58.59.0/24
31.58.142.0/24
31.58.146.0/24
31.58.167.0/24
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.240.0/22
31.58.252.0/22
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.64.0/22
31.59.80.0/22
31.59.124.0/22
31.59.176.0/21
31.59.188.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
33:dd:0f:f8:4f:bd:26:e9:2c:b8:7e:4d:fb:01:01:cc:3f:bf:
5b:c1:f4:08:76:88:84:3a:86:dd:95:fd:ce:df:26:9e:95:85:
3b:b7:b5:3e:01:6c:f8:21:a8:5b:eb:17:42:1d:3f:15:9c:aa:
6c:de:2b:15:37:d0:3f:c5:6d:6d:f0:05:c6:71:a3:dc:b3:11:
5e:be:14:d8:b4:15:f2:0a:77:a6:a6:5f:03:77:65:b5:1e:94:
39:27:77:32:0d:4f:de:2b:6b:4a:81:be:df:35:dd:fc:b5:b7:
12:c7:7d:d4:25:92:d4:67:ac:29:e2:6f:df:8c:0f:6d:a2:bb:
a9:ff:cc:17:62:4a:1a:ab:77:95:39:ca:c7:e8:de:7a:c6:57:
5d:65:12:5a:33:f9:4c:52:53:ce:d3:1d:e1:68:38:7e:38:60:
58:1c:8d:48:3b:b4:d3:3b:d8:6c:59:a3:a3:64:d6:28:ae:c3:
64:9d:d4:b8:55:b7:bd:c5:bc:14:c6:a3:a2:01:12:b7:15:ab:
47:1d:1f:39:e3:ba:33:fd:09:d9:04:97:fd:ff:6e:64:25:73:
4a:7c:c1:d5:7e:1c:a2:4d:95:a8:8c:b4:4f:d8:af:fa:e9:c4:
ba:b5:ea:b8:0a:87:fe:00:52:f1:57:3b:81:e8:f0:a7:88:bd:
f0:80:31:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:08 2025 by rpki-client