Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qP10vLPo4PI9dcT9sbL-kXbyEAc.roa
File: qP10vLPo4PI9dcT9sbL-kXbyEAc.roa (raw, json)
Hash identifier: Tkkq33j/xozFYXCKZQuCGJH4pmlExQzYee6jZ9cHrd4=
Subject key identifier: A8:FD:74:BC:B3:E8:E0:F2:3D:75:C4:FD:B1:B2:FE:91:76:F2:10:07
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01937302E8990548D712CAFC3F7329F99577
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qP10vLPo4PI9dcT9sbL-kXbyEAc.roa
Signing time: Thu 28 Nov 2024 13:43:10 +0000
ROA not before: Thu 28 Nov 2024 13:43:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.3.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.48.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.56.146.0/24 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.184.0/23 maxlen: 24
31.57.186.0/23 maxlen: 24
31.57.188.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.129.0/24 maxlen: 24
31.59.68.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 19:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:02:e8:99:05:48:d7:12:ca:fc:3f:73:29:f9:95:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 28 13:43:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8fd74bcb3e8e0f23d75c4fdb1b2fe9176f21007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:84:50:07:32:d1:f5:e2:f5:4e:a3:91:af:a2:
63:47:bb:08:9c:cb:ff:75:c3:07:44:2f:63:9e:f2:
99:bd:94:7f:44:3a:e3:c8:ff:58:35:95:1f:d4:59:
f3:01:57:e7:a2:cf:c4:b4:ed:76:68:3b:7b:c8:27:
7c:07:ac:fe:7c:2f:dd:29:82:4c:08:d0:34:12:8c:
cb:28:5d:8d:1e:35:c6:4c:32:7c:99:76:9d:64:f2:
7b:a0:76:06:7a:2c:2b:f3:9d:7e:93:08:90:6d:7c:
83:09:13:8b:9d:bc:30:65:1f:ff:d9:a4:0b:6a:61:
42:13:34:c1:80:dc:3a:7f:09:44:c7:1a:f3:b4:98:
65:83:1a:8a:9f:03:3e:28:56:89:9a:05:eb:b7:6c:
f3:41:d6:dc:28:45:0d:e8:01:b4:86:a8:b4:a5:7a:
d9:7a:63:0e:da:35:eb:22:bc:bf:78:e5:70:78:a0:
d0:f8:ba:a7:ca:a0:3a:39:a4:1d:87:0e:d6:ef:60:
16:fd:89:27:31:21:5b:08:59:27:e3:77:e6:7b:bd:
58:f0:05:e1:f5:4b:e8:f8:5f:5c:4b:63:39:ff:de:
78:f5:d4:39:e3:98:f8:64:ef:d6:0a:55:cb:82:9b:
ad:3a:47:fa:b6:dd:b3:5c:01:11:f6:fa:f6:0b:f9:
c8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FD:74:BC:B3:E8:E0:F2:3D:75:C4:FD:B1:B2:FE:91:76:F2:10:07
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qP10vLPo4PI9dcT9sbL-kXbyEAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.3.0-31.56.5.255
31.56.24.0/24
31.56.42.0/23
31.56.48.0/24
31.56.57.0/24
31.56.89.0/24
31.56.104.0/21
31.56.120.0/22
31.56.127.0/24
31.56.146.0/24
31.57.65.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0-31.57.188.255
31.57.192.0/22
31.57.232.0/22
31.58.129.0/24
31.59.68.0/24
31.59.96.0/22
31.59.112.0/22
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:93:2b:bf:b5:21:a5:17:16:1a:44:39:73:81:be:32:27:d4:
cf:d5:15:08:61:b7:c3:91:cd:ba:8a:b6:f3:19:2e:5e:78:83:
7b:00:58:f7:f0:65:0e:3a:10:5a:8c:fb:52:ed:56:f7:b6:4e:
f1:01:ee:14:7e:9a:57:fc:d3:0e:1f:d9:9f:7a:49:0c:ba:1e:
93:9e:14:b3:f5:e2:99:e4:46:2e:74:78:69:d4:36:86:53:b8:
f3:8b:62:d3:d9:40:31:24:4b:76:df:4d:52:03:26:3a:cb:6f:
e8:6a:51:c4:4c:1b:3b:8a:36:14:f4:a2:97:0d:36:07:14:3d:
8f:bf:be:ef:cc:aa:cf:ad:e7:d2:a3:f4:19:76:de:c5:ba:12:
8d:b1:fc:2a:c2:4b:3c:53:ba:da:0e:d6:33:41:88:d9:ae:b9:
13:f8:6d:e9:bd:92:b9:6d:89:32:ea:cc:f1:9b:11:0d:2a:2c:
b3:f9:5b:84:5a:78:e5:11:06:ce:0f:07:8b:d0:46:52:b3:46:
26:3e:eb:39:60:79:7b:2e:90:00:6e:d9:d1:e8:14:e7:2a:ba:
cd:a4:f6:67:9c:c8:5b:33:50:25:fe:22:0e:a7:04:88:23:25:
9a:59:ac:92:8c:4d:30:56:1c:3c:b9:8a:45:23:67:2f:62:8b:
15:63:2f:84
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAZNzAuiZBUjXEsr8P3Mp+ZV3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMTI4MTM0MzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGZkNzRiY2IzZThlMGYyM2Q3NWM0ZmRiMWIyZmU5MTc2ZjIxMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAloRQBzLR9eL1TqORr6JjR7sInMv/
dcMHRC9jnvKZvZR/RDrjyP9YNZUf1FnzAVfnos/EtO12aDt7yCd8B6z+fC/dKYJM
CNA0EozLKF2NHjXGTDJ8mXadZPJ7oHYGeiwr851+kwiQbXyDCROLnbwwZR//2aQL
amFCEzTBgNw6fwlExxrztJhlgxqKnwM+KFaJmgXrt2zzQdbcKEUN6AG0hqi0pXrZ
emMO2jXrIry/eOVweKDQ+LqnyqA6OaQdhw7W72AW/YknMSFbCFkn43fme71Y8AXh
9Uvo+F9cS2M5/9549dQ545j4ZO/WClXLgputOkf6tt2zXAER9vr2C/nIDwIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFKj9dLyz6ODyPXXE/bGy/pF28hAHMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvcVAxMHZMUG80UEk5ZGNUOXNiTC1rWGJ5RUFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4wDAME
AB84AwMEAR84BAMEAB84GAMEAR84KgMEAB84MAMEAB84OQMEAB84WQMEAx84aAME
Ah84eAMEAB84fwMEAB84kgMEAB85QQMEAR85hAMEAR85kjAMAwQEHzmwAwQAHzm8
AwQCHznAAwQCHznoAwQAHzqBAwQAHztEAwQCHztgAwQCHztwAwQCHzu4MA0GCSqG
SIb3DQEBCwUAA4IBAQBqkyu/tSGlFxYaRDlzgb4yJ9TP1RUIYbfDkc26irbzGS5e
eIN7AFj38GUOOhBajPtS7Vb3tk7xAe4UfppX/NMOH9mfekkMuh6TnhSz9eKZ5EYu
dHhp1DaGU7jzi2LT2UAxJEt2301SAyY6y2/oalHETBs7ijYU9KKXDTYHFD2Pv77v
zKrPrefSo/QZdt7FuhKNsfwqwks8U7raDtYzQYjZrrkT+G3pvZK5bYky6szxmxEN
Kiyz+VuEWnjlEQbODweL0EZSs0YmPus5YHl7LpAAbtnR6BTnKrrNpPZnnMhbM1Al
/iIOpwSIIyWaWaySjE0wVhw8uYpFI2cvYosVYy+E
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:38 2025 by rpki-client