Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jsMimRDHslyNV5x0WLxujhEFVt8.roa
File: jsMimRDHslyNV5x0WLxujhEFVt8.roa (raw, json)
Hash identifier: PUyXwS0RTPtI9wsSl5+YQVgDqoKUB85m/MXYhdLp0As=
Subject key identifier: 8E:C3:22:99:10:C7:B2:5C:8D:57:9C:74:58:BC:6E:8E:11:05:56:DF
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01944172F1A20907B7AAB198F5EA2F6523AE
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jsMimRDHslyNV5x0WLxujhEFVt8.roa
Signing time: Tue 07 Jan 2025 15:47:19 +0000
ROA not before: Tue 07 Jan 2025 15:47:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214025
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.88.0/24 maxlen: 24
31.56.120.0/24 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.122.0/24 maxlen: 24
31.56.123.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.133.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.215.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.255.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Jan 2025 06:42:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:41:72:f1:a2:09:07:b7:aa:b1:98:f5:ea:2f:65:23:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 7 15:47:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ec3229910c7b25c8d579c7458bc6e8e110556df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:38:64:23:03:d5:8b:65:45:ff:61:d3:fe:
c5:b0:4d:3b:07:b0:d5:a9:1e:1b:2a:18:79:bc:45:
21:47:05:42:e9:cf:86:52:5c:b1:4d:1e:b3:92:23:
69:59:6c:f4:50:ac:c9:71:d9:59:d2:be:b0:bf:41:
11:e1:b3:83:9f:4c:25:5d:78:2a:91:86:e4:10:d4:
83:fb:8a:c8:c4:0c:0f:55:a8:54:bf:b5:4a:46:bb:
26:2e:7f:4b:0e:ca:cf:76:b4:91:6a:90:94:20:cb:
a4:ee:62:16:f0:01:19:6a:78:81:72:bf:a7:65:67:
a7:fa:81:e1:82:18:a5:ea:0b:55:36:ae:d9:07:43:
da:b4:aa:7d:b9:32:ab:c6:a9:bf:78:0e:ab:76:be:
5e:bf:ca:a1:3d:58:0d:d4:14:b2:ca:45:4c:9a:03:
8e:17:c0:35:53:0a:d6:d6:8b:79:4d:93:d0:57:3b:
0d:ca:5f:b5:b8:fc:e2:1b:fe:cf:60:74:a3:86:73:
3d:fc:95:b0:cf:b1:2c:48:1b:86:9e:56:b5:4a:cc:
54:cd:4d:35:db:28:2b:c4:74:0c:68:a8:c6:ec:df:
78:80:58:34:c7:84:c2:3c:15:64:2c:42:fe:8a:70:
93:b1:8b:c2:84:4c:74:ff:ab:6e:23:18:53:ea:87:
f7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C3:22:99:10:C7:B2:5C:8D:57:9C:74:58:BC:6E:8E:11:05:56:DF
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jsMimRDHslyNV5x0WLxujhEFVt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.88.0/24
31.56.120.0/22
31.56.200.0/24
31.56.202.0/24
31.57.104.0/21
31.57.132.0/23
31.57.181.0/24
31.57.215.0/24
31.57.219.0/24
31.57.221.0/24
31.57.255.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
14:ac:98:d7:97:9e:46:04:54:24:20:bd:e2:b9:6e:46:b3:b0:
3e:04:ec:7d:fb:0c:b7:5f:3e:9d:94:9d:a9:e7:fd:82:7c:36:
d3:b7:2c:94:de:a4:df:ae:ef:56:70:cd:1c:78:ac:e4:c3:db:
69:d8:bc:3f:56:e4:55:6b:46:ee:d4:cb:68:cb:ea:97:b2:35:
1a:cd:a5:8c:cb:fc:4b:67:e8:53:1c:f9:4c:33:0f:0d:dd:c8:
9e:95:b4:d4:2c:a7:bd:b6:7f:b3:e3:4e:b8:9e:6f:e9:12:6a:
b9:97:98:38:89:e5:aa:31:5e:ba:96:b3:60:39:d7:ed:a6:2b:
68:89:76:d7:4b:96:ef:ed:d2:17:fa:8d:2d:62:f5:78:e6:d1:
89:25:17:ee:0d:73:91:18:82:0e:e9:3f:3c:c5:a7:be:8b:e3:
a9:93:24:6e:90:e8:23:27:c5:7a:db:56:2f:fa:61:8e:f1:ed:
77:cf:76:ba:9b:d9:8a:77:59:dc:1f:78:9b:62:2d:5f:1c:97:
9a:96:c6:34:43:90:01:94:32:cb:38:3c:9c:b8:5e:b3:18:33:
e6:6e:16:5b:d7:2d:37:2a:4c:bf:75:58:b5:d4:6e:fc:8e:1e:
8c:7b:4d:49:46:9f:8d:d8:b2:86:1f:60:69:a4:93:82:ef:ac:
d2:f6:7f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:50:56 2025 by rpki-client