Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQkDTJinArEHXLNnQX0cebvAJqk.roa
File: qQkDTJinArEHXLNnQX0cebvAJqk.roa (raw, json)
Hash identifier: xS+DLi/0WkIpZr5uYsyg/LBlfnmG/JvfWqoLAhEx2Xo=
Subject key identifier: A9:09:03:4C:98:A7:02:B1:07:5C:B3:67:41:7D:1C:79:BB:C0:26:A9
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193392ED3A107C2474D4802A4888537A3E1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQkDTJinArEHXLNnQX0cebvAJqk.roa
Signing time: Sun 17 Nov 2024 08:13:10 +0000
ROA not before: Sun 17 Nov 2024 08:13:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 31.56.8.0/21 maxlen: 24
31.56.142.0/23 maxlen: 24
31.56.148.0/22 maxlen: 24
31.58.208.0/24 maxlen: 24
31.58.209.0/24 maxlen: 24
31.58.210.0/24 maxlen: 24
31.58.211.0/24 maxlen: 24
31.59.136.0/21 maxlen: 24
31.59.144.0/21 maxlen: 24
31.59.152.0/21 maxlen: 24
31.59.160.0/21 maxlen: 24
31.59.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Nov 2024 16:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:39:2e:d3:a1:07:c2:47:4d:48:02:a4:88:85:37:a3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 17 08:13:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a909034c98a702b1075cb367417d1c79bbc026a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:18:84:02:cf:d6:54:84:af:11:45:d5:f7:
33:6d:2b:f8:01:50:0a:e6:f4:2a:fd:59:54:c7:05:
ce:f7:cb:ef:19:88:76:81:32:74:6e:d0:8b:b4:88:
a3:43:75:fc:52:41:e4:d7:41:76:67:ce:6b:c2:bc:
7b:e2:19:ce:95:54:54:32:36:f6:84:61:d8:68:dc:
c5:37:51:16:da:3e:02:1a:b1:a7:33:a3:7c:48:0a:
49:bd:c1:48:50:90:d7:32:d4:66:69:9f:7b:77:76:
fd:56:15:f8:6d:6f:c3:e1:3d:af:05:98:f8:c7:f5:
a1:1e:0d:ce:98:70:35:2b:4c:e9:50:41:89:ae:8e:
aa:21:cf:22:08:a9:4d:02:bb:53:a8:31:c6:7c:9f:
fb:1d:8a:03:e9:11:21:25:a0:ab:39:e4:ed:97:86:
b5:f9:23:6e:a6:ae:87:28:b2:b3:38:09:41:55:95:
15:b6:f3:95:64:bc:45:b1:3d:1c:ce:be:8a:ee:94:
e2:3a:1c:ea:41:f9:a3:6a:83:d1:8a:a0:9a:9a:b3:
c3:9b:f7:d3:1d:68:4c:17:86:6e:63:83:29:50:9a:
ca:08:5e:32:10:8a:44:53:a9:35:1e:fc:fa:b8:b5:
26:24:9d:5b:da:6f:52:7f:98:2c:50:6e:b4:a1:70:
d8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:09:03:4C:98:A7:02:B1:07:5C:B3:67:41:7D:1C:79:BB:C0:26:A9
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQkDTJinArEHXLNnQX0cebvAJqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.8.0/21
31.56.142.0/23
31.56.148.0/22
31.58.208.0/22
31.59.136.0-31.59.175.255
Signature Algorithm: sha256WithRSAEncryption
b7:2c:85:73:c3:93:69:4f:70:f7:51:19:4b:3e:b3:48:9d:66:
f7:3b:d9:79:d5:3d:3c:18:3a:64:b1:4c:fc:cf:c2:9d:b6:b8:
92:2b:cb:87:0d:86:e0:3d:60:3b:f0:cf:50:97:6e:91:9e:60:
c7:99:87:7d:8f:8c:81:af:20:ba:1c:cf:8f:1d:b9:47:d8:90:
a0:89:df:a0:3e:a2:5f:42:0f:14:33:a4:6a:8b:e7:27:e3:66:
95:4f:eb:c6:55:b2:4b:f1:37:22:b9:85:de:21:7d:39:59:a5:
c3:32:43:d5:3e:cb:0c:fc:c5:df:53:5c:96:06:f4:4d:cb:6f:
30:9d:08:ab:ca:16:4b:0c:c4:14:22:18:5a:95:df:5e:e3:72:
2d:c4:50:7e:3a:32:99:ec:8f:d9:f0:3c:78:89:75:5b:e1:42:
43:1a:61:fd:60:49:3f:ad:2e:c5:46:65:b9:af:4b:93:75:48:
43:06:4f:b8:b2:1e:cd:80:3e:69:31:2b:fe:54:c1:7e:d2:34:
55:a0:5a:07:9a:8d:cf:a3:85:74:b0:2f:0f:0e:a2:98:80:86:
70:95:b1:2e:63:8e:36:7d:f9:2c:35:52:ad:77:71:03:87:9b:
05:b5:33:39:d6:29:f9:e2:a6:68:7e:dc:cb:67:0a:41:65:06:
0b:0f:37:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:05:15 2025 by rpki-client