Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kxbhxxLF_6TkK9I1j7t612iWnNw.roa
File: kxbhxxLF_6TkK9I1j7t612iWnNw.roa (raw, json)
Hash identifier: HdJqzHKhNyOckWlJAItMFhpYGjPyvPyQ0F39pQy296Y=
Subject key identifier: 93:16:E1:C7:12:C5:FF:A4:E4:2B:D2:35:8F:BB:7A:D7:68:96:9C:DC
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191D857A7AE6AAAC997BFC54B79F4651E1E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kxbhxxLF_6TkK9I1j7t612iWnNw.roa
Signing time: Mon 09 Sep 2024 19:51:48 +0000
ROA not before: Mon 09 Sep 2024 19:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 17:38:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d8:57:a7:ae:6a:aa:c9:97:bf:c5:4b:79:f4:65:1e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 9 19:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9316e1c712c5ffa4e42bd2358fbb7ad768969cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:e4:8a:9f:c3:d6:4f:33:4f:64:62:61:39:
3d:84:5c:26:d2:01:f2:14:32:b9:41:a2:e3:e7:76:
3c:d3:84:c7:ea:ef:b4:fe:0f:50:5c:3a:93:14:19:
d6:83:af:93:48:ad:3a:25:19:3c:45:e1:3e:7c:e9:
0c:75:cd:50:12:49:5f:1f:7a:f7:ac:de:77:50:af:
83:0e:e2:02:3a:6a:75:67:34:6f:bf:13:34:43:96:
fb:d7:87:2b:49:a0:ab:2e:0c:38:10:e6:af:56:4f:
d8:7d:d8:ea:1c:29:19:55:9f:89:43:fc:da:01:be:
cd:81:b5:4e:ac:c4:03:4b:e2:f7:9d:8e:37:a4:a7:
66:38:fe:af:c9:1c:df:72:c2:6a:ce:90:29:60:fd:
c3:ff:a7:34:e6:f8:7d:38:5b:1d:eb:21:9b:e1:0c:
39:c9:3c:38:11:68:5c:52:e3:9a:89:b5:6f:0f:c9:
15:3b:9a:11:20:b7:01:ac:11:a2:48:26:2b:bc:3d:
53:3e:02:51:e8:95:0d:fb:84:2c:7c:53:84:12:f9:
85:57:56:2b:04:8e:32:bd:ba:9e:c8:ce:11:cb:c5:
67:cd:ee:e6:ec:98:9f:1a:65:55:b5:55:40:6c:36:
25:95:6d:38:27:9b:37:4f:aa:7b:8f:df:cc:6d:d9:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:16:E1:C7:12:C5:FF:A4:E4:2B:D2:35:8F:BB:7A:D7:68:96:9C:DC
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kxbhxxLF_6TkK9I1j7t612iWnNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:13:30:72:bc:ed:41:ea:af:9e:53:73:21:92:e1:0b:40:41:
73:4e:a9:83:42:f0:12:d1:49:2c:41:32:dd:2c:26:f6:9e:09:
b2:59:92:c9:e7:82:2b:7f:89:48:69:54:b0:18:7c:3f:a3:08:
45:e1:f0:f4:b8:cf:06:ea:a9:8c:44:db:93:de:8b:b9:6f:27:
cd:90:c8:41:5e:c9:a1:3a:72:d1:af:5a:4d:ac:40:b0:8d:43:
a8:07:1c:e4:c2:3d:80:43:06:98:5b:78:8d:82:95:05:3a:fd:
98:8a:33:97:b1:95:7f:11:0b:5f:d3:e4:eb:ac:19:25:01:2f:
51:64:c2:ef:95:93:73:b7:66:cd:85:41:34:b4:03:e9:46:45:
c4:c3:ba:18:65:e3:1b:67:10:a5:6f:fa:75:56:c6:60:1d:de:
cc:24:00:4d:2b:b7:32:5e:d5:b4:7d:cf:2e:d7:0f:62:2f:04:
19:a1:35:22:b6:35:20:8d:b7:f9:e2:87:c7:bb:a0:69:64:59:
1c:eb:eb:b5:20:45:0e:ca:e8:49:6b:31:65:62:94:1f:13:1a:
51:14:e5:16:46:88:7a:4d:3f:3f:32:91:98:d4:de:7a:2c:80:
67:ca:30:5d:15:d0:4b:63:5c:97:d0:75:6f:ed:74:6f:e2:dd:
80:06:f3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 20:13:08 2024 by rpki-client on console-ams.rpki-client.org