Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ls2nYY4cIyadbNxhxTGl8NSwOec.roa
File: ls2nYY4cIyadbNxhxTGl8NSwOec.roa (raw, json)
Hash identifier: TfZWd5BPOIb6dAS5F0cRCq18qtFqzKuJyjErsCcQkgk=
Subject key identifier: 96:CD:A7:61:8E:1C:23:26:9D:6C:DC:61:C5:31:A5:F0:D4:B0:39:E7
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01927BFF75410BC129C7644C0E1AAC03DCCF
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ls2nYY4cIyadbNxhxTGl8NSwOec.roa
Signing time: Fri 11 Oct 2024 14:33:12 +0000
ROA not before: Fri 11 Oct 2024 14:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 13 Oct 2024 12:41:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7b:ff:75:41:0b:c1:29:c7:64:4c:0e:1a:ac:03:dc:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 11 14:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96cda7618e1c23269d6cdc61c531a5f0d4b039e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:9f:f7:5e:a4:6c:93:f4:c3:e8:97:7e:e6:
4c:3d:29:40:cb:df:45:60:a7:27:c7:87:11:3d:bc:
36:38:f0:39:74:a0:54:e0:9a:9a:64:02:da:62:d8:
1b:45:8d:24:48:19:d1:50:63:d1:3a:10:d7:3a:d1:
fb:da:f1:62:38:be:07:fc:05:27:b7:38:47:2e:ff:
60:76:ab:40:03:96:cc:c6:36:67:fa:bd:b3:5e:ed:
1f:28:2f:97:41:a7:1b:f8:67:2d:3b:1b:2a:cc:e5:
00:7c:a8:b3:25:bb:14:63:fe:90:2b:b0:99:c7:c8:
f5:c1:a5:6a:3a:c4:c6:22:d9:0c:83:09:c0:b5:02:
ca:12:f6:6d:ce:de:c5:bf:d2:47:8a:80:6d:1c:31:
88:0e:40:ff:f4:b1:65:e5:22:2e:f5:51:66:30:37:
69:4e:4c:3c:61:86:ac:9b:68:bf:0d:a5:62:3b:a7:
cd:db:ac:0c:d1:d1:ed:8e:00:ad:4a:ee:55:3f:9f:
82:06:4c:c5:1f:c6:c3:e8:6f:83:1a:f2:4a:0e:28:
15:ca:85:53:e2:af:4e:10:ff:ae:f5:ea:b0:9d:f7:
82:9d:0f:a9:bf:e8:c0:49:0f:47:4a:10:ac:96:3a:
b1:7b:cb:8a:64:ea:ab:72:44:9e:4f:6a:3b:fd:b1:
67:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:CD:A7:61:8E:1C:23:26:9D:6C:DC:61:C5:31:A5:F0:D4:B0:39:E7
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ls2nYY4cIyadbNxhxTGl8NSwOec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.66.0/24
31.56.86.0/24
31.56.89.0/24
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:13:6b:21:7f:58:80:52:95:c8:09:5b:18:dd:be:6c:6b:64:
ea:1a:20:7f:6d:10:05:ed:9b:94:37:64:b6:75:05:54:fd:98:
37:75:1c:99:48:f2:37:6f:30:c3:17:e0:4b:eb:51:00:7d:91:
b4:5e:e9:19:7c:ec:60:7d:75:f6:20:f3:6d:99:09:65:03:e9:
af:ac:21:4c:43:81:1d:1d:39:a7:f0:93:cf:f5:52:66:45:92:
3d:bc:73:e4:07:4b:21:4b:c0:31:f1:ea:d7:62:8c:6a:84:4e:
e2:dd:8d:39:4d:28:89:46:7b:04:6b:81:de:37:1e:1b:60:9f:
f0:a4:0a:10:f3:9e:89:1d:00:e9:9e:fb:43:2b:91:a8:c5:26:
61:cb:9e:1e:dd:7e:4a:95:a1:60:54:75:8d:8b:b1:fe:53:71:
b0:c4:39:0d:01:34:7e:90:f4:8c:18:4f:88:5f:12:72:5f:f0:
d8:de:65:fc:e0:31:d6:64:91:73:fa:61:71:d0:67:e2:56:44:
f3:9c:c4:ef:e6:a0:55:7b:ad:36:a2:b7:88:34:7b:5c:6f:97:
d1:e3:1a:11:5c:00:13:72:bb:68:4b:f1:0f:26:d2:04:41:f8:
1b:92:4d:1b:30:f6:18:e0:04:3e:7c:3e:c6:b9:84:04:aa:59:
60:45:62:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 13 16:46:26 2024 by rpki-client on console-ams.rpki-client.org