Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qgiWsOaNgEVOPmBn8XadCYtyFXE.roa
File: qgiWsOaNgEVOPmBn8XadCYtyFXE.roa (raw, json)
Hash identifier: xuSg+TkcQIq3XuKL67IshNJbmBFDdZvvvhoD8q0ZaZM=
Subject key identifier: AA:08:96:B0:E6:8D:80:45:4E:3E:60:67:F1:76:9D:09:8B:72:15:71
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01940BA040F451DB76FDB818710B85B20A8F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qgiWsOaNgEVOPmBn8XadCYtyFXE.roa
Signing time: Sat 28 Dec 2024 04:57:19 +0000
ROA not before: Sat 28 Dec 2024 04:57:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.57.92.0/22 maxlen: 24
31.57.96.0/22 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.196.0/22 maxlen: 24
31.58.204.0/22 maxlen: 24
31.58.212.0/22 maxlen: 24
31.58.220.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
31.59.120.0/22 maxlen: 24
217.60.0.0/18 maxlen: 24
217.60.1.0/24 maxlen: 24
217.60.5.0/24 maxlen: 24
217.60.11.0/24 maxlen: 24
217.60.13.0/24 maxlen: 24
217.60.24.0/24 maxlen: 24
217.60.25.0/24 maxlen: 24
217.60.26.0/24 maxlen: 24
217.60.27.0/24 maxlen: 24
217.60.236.0/24 maxlen: 24
217.60.248.0/24 maxlen: 24
217.60.253.0/24 maxlen: 24
217.60.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:0b:a0:40:f4:51:db:76:fd:b8:18:71:0b:85:b2:0a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 28 04:57:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa0896b0e68d80454e3e6067f1769d098b721571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8d:50:75:90:8c:f8:78:38:27:12:d8:98:db:
b1:a8:9f:3e:dd:9a:9f:ff:94:59:a7:6b:13:65:b1:
56:bc:57:c4:d8:ee:bf:ff:25:ee:cb:42:2e:6d:92:
61:c0:59:ed:d8:0b:3f:3a:af:bb:51:8b:4a:0d:d6:
76:94:3a:dd:a2:c6:97:ce:2d:18:3b:33:af:48:b4:
b4:e8:ca:11:64:c6:ea:b1:56:4b:8f:f4:09:02:48:
52:5e:6e:14:39:30:63:36:2d:a5:31:7b:e3:d3:02:
d0:65:57:ba:9c:96:83:39:33:77:37:97:6a:b3:5f:
09:87:9d:bd:9b:3d:7f:93:e5:ff:e2:b8:e9:5f:c5:
29:06:a4:44:b4:a8:e3:af:2e:26:72:93:3e:83:1f:
d3:a9:03:fd:e7:eb:6d:40:9d:bd:7e:11:cb:08:56:
d6:4f:b6:40:9b:ba:4e:b1:5e:21:dc:cd:b2:86:c7:
de:50:7c:af:d8:90:1d:15:c7:03:0d:42:1b:5c:2c:
c3:1b:e6:bc:b5:e7:f5:b8:33:50:e6:87:a1:b3:ef:
fe:2f:89:c2:f8:13:f9:69:2f:e8:c2:42:0b:5f:f9:
05:bc:da:64:a2:3b:4c:31:22:10:ce:3e:10:9e:b0:
77:8b:94:10:40:35:82:91:22:7f:80:f0:2c:95:07:
f6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:08:96:B0:E6:8D:80:45:4E:3E:60:67:F1:76:9D:09:8B:72:15:71
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qgiWsOaNgEVOPmBn8XadCYtyFXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.24.0/21
31.57.48.0/20
31.57.92.0-31.57.99.255
31.57.120.0/21
31.58.34.0/23
31.58.196.0/22
31.58.204.0/22
31.58.212.0/22
31.58.220.0-31.58.227.255
31.59.120.0/22
217.60.0.0/18
217.60.236.0/24
217.60.248.0/24
217.60.253.0-217.60.254.255
Signature Algorithm: sha256WithRSAEncryption
4f:7b:e3:12:68:43:8a:6c:a5:57:7e:cf:ae:d0:70:8e:a1:7f:
f7:b0:04:e1:cc:71:c8:f7:14:43:b2:23:dd:3d:64:0f:bc:e1:
4b:5f:b8:93:58:8e:3f:7d:6d:a0:ee:91:72:8a:36:ff:e6:de:
66:6f:40:68:fc:90:c2:76:1d:2e:30:4a:92:2a:36:17:88:1c:
24:2a:eb:6c:fa:8b:43:c6:de:a8:0e:47:87:a4:bb:2e:6e:c3:
4a:ae:d8:99:4c:b9:f0:34:23:7b:00:40:9f:dd:ff:77:06:9e:
a3:71:a6:24:6f:d5:6d:b8:fe:75:28:d0:e9:97:49:58:bd:8a:
65:ee:d5:88:d3:87:fe:8c:92:c1:44:22:18:f2:d9:6f:a9:b5:
09:98:38:04:8e:91:6b:3a:8a:fe:68:43:7f:ed:48:2f:6e:a7:
e4:fc:bf:98:0f:48:0d:ed:5f:71:dd:6b:4d:9d:1d:11:ea:72:
3a:fd:52:da:79:93:e8:e4:08:74:c9:10:dc:30:8b:0f:01:d4:
0c:d7:df:ab:24:59:5b:a1:a8:4b:4a:0a:a7:10:ae:6a:6c:32:
49:3e:06:99:73:e8:03:95:17:00:87:02:f8:1c:85:ce:d6:d9:
31:e2:e0:55:e0:46:50:04:3d:ad:75:dc:9f:8f:6a:01:fe:d6:
d3:8b:3e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:16 2025 by rpki-client