Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pPQWwHZrnypszR8Iaa1tAYTJAjo.roa
File: pPQWwHZrnypszR8Iaa1tAYTJAjo.roa (raw, json)
Hash identifier: odJfTZ6svtBXZKVGwsgq62eyUnn43lwYdPziz3utMts=
Subject key identifier: A4:F4:16:C0:76:6B:9F:2A:6C:CD:1F:08:69:AD:6D:01:84:C9:02:3A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019251273E7F333FA271AA5622A809740561
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pPQWwHZrnypszR8Iaa1tAYTJAjo.roa
Signing time: Thu 03 Oct 2024 06:52:59 +0000
ROA not before: Thu 03 Oct 2024 06:52:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.2.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.63.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 06:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:51:27:3e:7f:33:3f:a2:71:aa:56:22:a8:09:74:05:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 3 06:52:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4f416c0766b9f2a6ccd1f0869ad6d0184c9023a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0c:56:64:cc:6d:78:f7:a5:64:22:99:7d:2d:
e5:64:76:ba:f6:5d:54:3f:96:a0:41:8a:02:08:38:
e0:69:00:74:75:59:bd:b1:fc:90:cf:3f:50:c2:c0:
e1:1b:c8:72:8b:db:6f:53:9b:a0:80:7c:b0:a4:e4:
71:59:31:90:9e:76:c5:60:71:db:73:43:e2:a3:7f:
54:b8:bd:76:3f:fa:fa:2f:72:86:ec:9f:b1:2d:f7:
97:31:ff:5f:72:f9:01:f8:b5:75:65:1f:4c:7f:f4:
c4:8f:37:e3:04:49:26:55:af:75:07:e5:f8:1d:26:
4d:56:db:3f:cd:a9:f2:e7:ae:61:ca:86:7b:83:0e:
62:e5:be:74:2c:58:3c:44:da:91:f2:3d:a4:19:38:
22:13:e3:1c:a2:72:7d:c4:36:21:6d:23:d5:dc:96:
16:02:de:0e:c6:c6:63:1d:8b:68:a5:33:73:c2:8b:
00:1a:19:35:1f:04:81:6c:74:dd:e0:d1:fb:1b:7e:
53:f3:16:6d:f2:34:84:24:4f:7d:87:68:3e:bf:c3:
2f:29:22:4c:fb:29:dd:44:ca:0b:cf:f0:04:56:cf:
7a:49:dc:31:de:0b:34:ea:fc:31:48:1c:c9:80:92:
27:69:de:15:d4:4a:c9:8e:52:3c:75:ef:62:80:93:
fb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F4:16:C0:76:6B:9F:2A:6C:CD:1F:08:69:AD:6D:01:84:C9:02:3A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pPQWwHZrnypszR8Iaa1tAYTJAjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.2.0/24
31.56.4.0/23
31.56.39.0/24
31.56.59.0/24
31.56.63.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.89.0/24
31.56.112.0/21
31.56.126.0/24
31.56.137.0-31.56.139.255
31.56.147.0/24
31.57.0.0-31.57.9.255
Signature Algorithm: sha256WithRSAEncryption
a6:05:df:3e:6f:39:6f:ca:b3:77:97:fd:24:0d:9d:d9:2e:5d:
a7:55:92:63:b4:eb:13:f2:2d:d5:cc:1d:ae:f8:6d:72:fe:e3:
c7:a5:3e:15:e1:ee:f0:0b:91:c4:01:49:3f:5e:14:db:07:3c:
17:d2:5b:f0:9a:70:59:63:a6:b3:89:2b:0d:65:52:fb:40:1a:
3d:34:14:b3:b9:78:a9:ff:49:97:40:0a:a6:93:3d:f5:be:d4:
64:05:54:01:d3:db:62:42:26:fa:ad:92:a8:56:83:04:53:75:
fe:fc:01:eb:4b:49:4f:e7:5a:c2:8f:d1:7b:7e:51:5a:94:5e:
b3:14:08:4b:2d:91:c1:5c:d5:3c:40:d2:ed:34:50:b8:ea:57:
ad:a9:c1:83:f3:1d:bd:ab:4c:9d:a4:c3:4c:c7:0c:5d:51:32:
95:79:57:f0:94:b3:60:f4:8b:e0:f3:4e:6a:c9:d2:3a:50:7d:
c1:d5:68:2e:a2:d2:ac:29:01:0f:25:07:68:55:02:c3:31:b7:
dc:d2:f2:17:c9:d7:ac:d3:a8:96:55:b4:38:fe:aa:f7:20:fc:
f7:a4:af:3f:b2:1d:8d:b4:71:d4:a7:0e:79:f8:8b:d8:e4:c9:
84:15:0b:f1:40:91:bf:46:e5:5c:37:9e:8c:f8:be:0a:09:ef:
46:db:fa:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 10:23:21 2024 by rpki-client on console-ams.rpki-client.org