Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lSMiv-iiCSXvtChAE51jpKsfZ9k.roa
File: lSMiv-iiCSXvtChAE51jpKsfZ9k.roa (raw, json)
Hash identifier: CdosYXqXpPvBDH9T3jxk29yVFBtc/IneG9QHO+8j5EU=
Subject key identifier: 95:23:22:BF:E8:A2:09:25:EF:B4:28:40:13:9D:63:A4:AB:1F:67:D9
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019155FA1AD52281B1DFBFFFC32873A79B3B
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lSMiv-iiCSXvtChAE51jpKsfZ9k.roa
Signing time: Thu 15 Aug 2024 12:18:59 +0000
ROA not before: Thu 15 Aug 2024 12:18:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60117
IP address blocks: 31.56.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 10:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:fa:1a:d5:22:81:b1:df:bf:ff:c3:28:73:a7:9b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 15 12:18:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=952322bfe8a20925efb42840139d63a4ab1f67d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:27:4b:cc:60:e4:2f:09:7e:b3:78:b9:ff:47:
14:2c:f6:7a:74:7b:c8:00:52:ac:34:3d:1d:49:60:
ae:41:cd:34:41:e8:70:e1:04:78:12:e1:66:a9:95:
91:31:a6:71:4b:c1:3e:70:c5:e4:19:25:c5:c4:44:
31:52:c8:b1:36:19:ab:d7:1e:04:7a:a2:3a:5b:2c:
d2:43:9d:ba:64:ed:6d:fd:13:ad:ab:89:c1:22:13:
47:85:1b:09:05:72:80:ce:ee:a9:78:20:99:5f:34:
e3:e1:d9:ec:db:e6:c4:68:83:c8:91:eb:dd:22:de:
1f:01:1a:c2:30:5e:ba:f5:a6:e4:be:37:bc:20:cf:
84:b6:93:df:79:a1:48:cb:27:ae:69:2d:56:23:ac:
6a:da:fc:17:94:c1:8d:52:fd:42:2b:5d:d7:d7:86:
3d:aa:92:8b:82:fe:f5:7a:51:46:d3:af:9d:57:e9:
9e:79:fb:eb:cf:00:bf:50:fc:76:f3:04:02:60:7c:
f8:e4:32:01:e2:ae:ac:ea:bb:64:4d:0e:7c:d2:39:
8d:92:49:13:14:ee:ab:10:4f:cd:0d:0f:ac:b7:5a:
6b:09:ad:d6:db:1c:e6:68:25:96:73:d7:c9:77:da:
dc:cb:bf:46:a5:a1:da:1a:65:7e:90:7f:d5:c3:22:
0c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:23:22:BF:E8:A2:09:25:EF:B4:28:40:13:9D:63:A4:AB:1F:67:D9
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/lSMiv-iiCSXvtChAE51jpKsfZ9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.76.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:aa:8b:12:cc:e4:46:0f:4c:a9:f0:62:52:2b:00:60:61:bf:
2c:f3:a8:22:f7:72:3e:c8:99:74:3f:8a:9d:4d:2d:d7:e1:2a:
21:46:3b:bd:97:11:fa:13:fc:fc:60:c2:ce:ae:cd:f5:d7:fb:
b2:c5:bc:43:6a:14:36:3d:e6:25:40:37:59:f1:55:58:3b:8f:
0a:c8:7d:18:e8:62:a5:ab:ad:b7:a1:10:08:13:34:f5:46:3b:
19:72:2a:8a:2f:35:a2:9d:c2:dc:74:11:80:62:f5:91:b4:8a:
dd:96:ee:38:e1:80:87:1f:6c:7d:44:1e:4c:27:7c:69:c2:9b:
8b:74:01:dd:41:bd:00:1d:2c:d6:e6:b3:ba:ce:b6:a9:a4:80:
38:71:7b:63:a5:83:0f:4f:5d:d7:7e:e8:5b:76:0c:36:fe:80:
59:eb:9c:e0:b6:b6:08:55:ee:94:25:1d:87:28:1c:2c:d6:23:
ed:c4:16:f9:e7:f9:1c:10:ad:70:cb:8c:88:ae:04:b3:96:b2:
dd:20:b2:7c:db:ff:a8:6c:30:aa:37:e7:3e:1c:64:fc:04:07:
62:85:b4:40:35:98:92:29:1c:18:12:2b:63:a0:76:f1:7b:47:
3a:1b:10:61:a1:4c:7a:4b:2b:a5:0e:49:93:a5:3f:74:25:0a:
e4:1e:fc:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFV+hrVIoGx37//wyhzp5s7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQwODE1MTIxODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTIzMjJiZmU4YTIwOTI1ZWZiNDI4NDAxMzlkNjNhNGFiMWY2N2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuidLzGDkLwl+s3i5/0cULPZ6dHvI
AFKsND0dSWCuQc00Qehw4QR4EuFmqZWRMaZxS8E+cMXkGSXFxEQxUsixNhmr1x4E
eqI6WyzSQ526ZO1t/ROtq4nBIhNHhRsJBXKAzu6peCCZXzTj4dns2+bEaIPIkevd
It4fARrCMF669abkvje8IM+EtpPfeaFIyyeuaS1WI6xq2vwXlMGNUv1CK13X14Y9
qpKLgv71elFG06+dV+meefvrzwC/UPx28wQCYHz45DIB4q6s6rtkTQ580jmNkkkT
FO6rEE/NDQ+st1prCa3W2xzmaCWWc9fJd9rcy79GpaHaGmV+kH/VwyIMbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJUjIr/oogkl77QoQBOdY6SrH2fZMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvbFNNaXYtaWlDU1h2dENoQUU1MWpwS3NmWjlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzhMMA0G
CSqGSIb3DQEBCwUAA4IBAQC/qosSzORGD0yp8GJSKwBgYb8s86gi93I+yJl0P4qd
TS3X4SohRju9lxH6E/z8YMLOrs311/uyxbxDahQ2PeYlQDdZ8VVYO48KyH0Y6GKl
q623oRAIEzT1RjsZciqKLzWincLcdBGAYvWRtIrdlu444YCHH2x9RB5MJ3xpwpuL
dAHdQb0AHSzW5rO6zrappIA4cXtjpYMPT13Xfuhbdgw2/oBZ65zgtrYIVe6UJR2H
KBws1iPtxBb55/kcEK1wy4yIrgSzlrLdILJ82/+obDCqN+c+HGT8BAdihbRANZiS
KRwYEitjoHbxe0c6GxBhoUx6SyulDkmTpT90JQrkHvy0
-----END CERTIFICATE-----
Generated at Thu Sep 5 13:05:01 2024 by rpki-client on console-fra.rpki-client.org