Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jxpINAhYsGcRfHxQmrsARLyACiU.roa
File: jxpINAhYsGcRfHxQmrsARLyACiU.roa (raw, json)
Hash identifier: vHNZnDwTGp/hx37EOc2HdPCKAPM8gyy9OV0ccbvstq4=
Subject key identifier: 8F:1A:48:34:08:58:B0:67:11:7C:7C:50:9A:BB:00:44:BC:80:0A:25
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193CE516D6A34EA9C6377F69E64B62F5C4F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jxpINAhYsGcRfHxQmrsARLyACiU.roa
Signing time: Mon 16 Dec 2024 07:14:23 +0000
ROA not before: Mon 16 Dec 2024 07:14:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.56.112.0/21 maxlen: 24
31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.194.0/24 maxlen: 24
31.57.224.0/22 maxlen: 23
31.57.252.0/22 maxlen: 23
31.58.59.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.58.176.0/22 maxlen: 22
31.58.200.0/22 maxlen: 22
31.58.216.0/22 maxlen: 22
31.58.240.0/22 maxlen: 22
31.58.252.0/22 maxlen: 22
31.59.14.0/24 maxlen: 24
31.59.30.0/24 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.97.0/24 maxlen: 24
31.59.124.0/22 maxlen: 22
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Dec 2024 14:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ce:51:6d:6a:34:ea:9c:63:77:f6:9e:64:b6:2f:5c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 16 07:14:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f1a48340858b067117c7c509abb0044bc800a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:51:db:f9:1e:1e:63:ce:47:c0:61:be:f6:
f7:cc:71:e3:93:36:c0:ac:d7:f3:6f:ff:24:0b:50:
6f:a4:84:17:e1:30:ed:85:58:a4:69:ff:00:33:df:
a4:97:a1:d0:b9:b1:39:b4:91:4b:11:7b:f8:5a:96:
96:e0:59:5d:53:a5:76:14:fc:e0:7c:cf:8e:a4:b1:
f5:c9:8a:ad:cc:14:44:0a:4f:bd:64:18:ea:98:d3:
ae:7f:74:52:dd:a4:0d:af:4d:08:54:6d:a1:1c:1c:
87:b5:e8:10:cd:c6:eb:0d:f9:04:c4:b5:25:a4:65:
70:e2:b1:85:6f:0b:6a:77:7a:4b:dc:b1:49:50:3d:
61:97:fa:40:b5:d0:2d:9e:b6:41:8a:38:c3:39:a0:
57:bb:ea:68:e9:ab:d0:3c:04:bb:cf:94:84:6b:27:
97:5c:0e:07:7c:59:e3:75:d1:74:2e:11:65:4c:ed:
49:6b:b0:d6:c8:3b:04:a0:09:f8:5d:0d:9e:98:74:
82:01:18:75:25:eb:71:da:2f:52:4c:c5:d3:1f:ae:
51:16:73:dc:61:c8:c6:2b:e5:87:19:6a:d8:dc:4f:
21:6f:c4:1b:c1:4f:a3:f5:34:f8:3a:8d:81:85:7e:
8a:81:a9:4e:ec:f5:85:eb:53:bc:42:50:6d:44:3c:
fb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1A:48:34:08:58:B0:67:11:7C:7C:50:9A:BB:00:44:BC:80:0A:25
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/jxpINAhYsGcRfHxQmrsARLyACiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.112.0/21
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.194.0/24
31.57.224.0/22
31.57.252.0/22
31.58.59.0/24
31.58.142.0/24
31.58.146.0/24
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.240.0/22
31.58.252.0/22
31.59.14.0/24
31.59.30.0/24
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.64.0/22
31.59.80.0/22
31.59.97.0/24
31.59.124.0/22
31.59.176.0/21
31.59.188.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
09:89:1b:b8:7c:79:d0:82:38:20:6b:0d:53:31:f6:5b:ba:8d:
38:4d:60:b6:0a:7d:e3:b0:52:3d:f1:c8:18:b7:da:ec:6c:97:
ec:61:bd:df:38:10:df:a6:32:e7:9c:75:ec:4c:d2:3f:8a:96:
21:04:99:33:bd:68:b4:1c:34:bb:23:40:d2:34:51:d1:b9:31:
b9:61:b1:b0:72:a5:d8:f0:19:be:d5:92:9a:47:51:dd:17:16:
2e:c8:e0:7d:46:e5:4c:72:34:96:d2:95:e3:ac:60:ac:df:33:
c9:6f:ee:ea:91:33:6e:d6:85:cf:28:01:c3:0a:ef:9e:f3:15:
06:eb:78:7b:f3:de:d7:1b:b3:2b:1d:73:d5:a2:2a:0f:b4:19:
e4:2a:db:bd:54:97:8c:bf:16:f1:a8:dc:c3:62:71:3c:55:8c:
02:c4:75:e6:28:de:1a:b0:c2:15:b6:da:de:8e:e2:c5:d4:df:
84:9f:d1:85:ef:85:a6:50:e7:80:3d:83:36:cf:d8:16:a5:87:
41:76:9e:99:e0:db:8e:5d:9f:3f:2d:5b:b6:65:45:24:c4:cf:
b8:d5:6c:17:c5:be:ea:91:45:7d:dc:cd:bd:5e:2b:6a:24:41:
61:e2:a9:ae:2a:09:a3:5c:25:29:18:da:9e:9f:81:7b:5c:92:
54:a8:ac:94
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgISAZPOUW1qNOqcY3f2nmS2L1xPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMjE2MDcxNDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjFhNDgzNDA4NThiMDY3MTE3YzdjNTA5YWJiMDA0NGJjODAwYTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH1R2/keHmPOR8Bhvvb3zHHjkzbA
rNfzb/8kC1BvpIQX4TDthVikaf8AM9+kl6HQubE5tJFLEXv4WpaW4FldU6V2FPzg
fM+OpLH1yYqtzBRECk+9ZBjqmNOuf3RS3aQNr00IVG2hHByHtegQzcbrDfkExLUl
pGVw4rGFbwtqd3pL3LFJUD1hl/pAtdAtnrZBijjDOaBXu+po6avQPAS7z5SEayeX
XA4HfFnjddF0LhFlTO1Ja7DWyDsEoAn4XQ2emHSCARh1Jetx2i9STMXTH65RFnPc
YcjGK+WHGWrY3E8hb8QbwU+j9TT4Oo2BhX6KgalO7PWF61O8QlBtRDz76QIDAQAB
o4ICzDCCAsgwHQYDVR0OBBYEFI8aSDQIWLBnEXx8UJq7AES8gAolMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvanhwSU5BaFlzR2NSZkh4UW1yc0FSTHlBQ2lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHhBggrBgEFBQcBBwEB/wSB0TCBzjCBywQCAAEwgcQDBAMf
OHADBAAfOQsDBAAfOYMDBAAfOZYDBAAfObADBAAfOcIDBAIfOeADBAIfOfwDBAAf
OjsDBAAfOo4DBAAfOpIDBAIfOrADBAIfOsgDBAIfOtgDBAIfOvADBAIfOvwDBAAf
Ow4DBAAfOx4DBAAfOykwDAMEAx87OAMEAB87OgMEAh87QAMEAh87UAMEAB87YQME
Ah87fAMEAx87sDAMAwQCHzu8AwQCHzvAAwQCHzvYAwQBHzvkAwQAHzvnAwQBHzv0
MA0GCSqGSIb3DQEBCwUAA4IBAQAJiRu4fHnQgjggaw1TMfZbuo04TWC2Cn3jsFI9
8cgYt9rsbJfsYb3fOBDfpjLnnHXsTNI/ipYhBJkzvWi0HDS7I0DSNFHRuTG5YbGw
cqXY8Bm+1ZKaR1HdFxYuyOB9RuVMcjSW0pXjrGCs3zPJb+7qkTNu1oXPKAHDCu+e
8xUG63h7897XG7MrHXPVoioPtBnkKtu9VJeMvxbxqNzDYnE8VYwCxHXmKN4asMIV
ttrejuLF1N+En9GF74WmUOeAPYM2z9gWpYdBdp6Z4NuOXZ8/LVu2ZUUkxM+41WwX
xb7qkUV93M29XitqJEFh4qmuKgmjXCUpGNqen4F7XJJUqKyU
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:40 2025 by rpki-client