Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qttqj1iuC9HHu_5vbNrILeM4bdU.roa
File: qttqj1iuC9HHu_5vbNrILeM4bdU.roa (raw, json)
Hash identifier: dQ8rgrL1CYGOe+dQVWYf6LCbxM4/wnQm/ETr0fdrZQ8=
Subject key identifier: AA:DB:6A:8F:58:AE:0B:D1:C7:BB:FE:6F:6C:DA:C8:2D:E3:38:6D:D5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192E69696E5A1CF9AFA9AC5A54337527362
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qttqj1iuC9HHu_5vbNrILeM4bdU.roa
Signing time: Fri 01 Nov 2024 07:18:01 +0000
ROA not before: Fri 01 Nov 2024 07:18:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.240.0/22 maxlen: 24
31.57.244.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 12:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e6:96:96:e5:a1:cf:9a:fa:9a:c5:a5:43:37:52:73:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 1 07:18:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aadb6a8f58ae0bd1c7bbfe6f6cdac82de3386dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:d9:03:cc:a0:a8:1d:80:1c:e1:e9:e1:32:
a2:a7:41:22:39:4b:a5:77:8c:ba:c9:ee:f0:e5:f6:
df:77:88:6c:e9:18:f6:84:c6:c5:22:ab:b3:49:48:
0d:52:36:ba:0a:a2:3e:31:4f:1f:b8:34:a1:56:b3:
c1:f7:0c:f6:6e:b2:30:72:4d:89:f6:44:f6:e5:08:
e0:49:81:49:31:83:cc:15:55:17:c5:e1:84:e0:18:
47:27:fe:f4:bb:37:25:77:f0:c7:08:30:79:9a:cd:
94:67:a5:95:e9:21:c7:35:c5:1c:cd:1e:fa:f5:9c:
29:08:87:1a:1a:2b:d3:63:3b:3b:c2:4e:f4:71:54:
7d:19:89:da:3d:7f:c2:36:28:6f:7b:6b:fe:ff:95:
2f:a1:74:71:41:05:6e:b0:51:65:dc:d1:9b:25:23:
61:65:ae:ea:bc:96:d1:17:45:bb:b8:76:1c:e4:62:
b1:db:52:a3:6c:65:71:61:fe:3d:23:b2:ad:f0:76:
cd:b9:c9:0e:ba:e0:fd:0f:52:e1:8e:b0:31:80:5f:
af:81:55:f0:83:1c:95:c5:0b:94:18:7f:f0:f1:18:
0b:94:3e:53:0c:90:c9:a9:b4:25:68:c7:74:be:19:
47:90:c2:87:60:45:3c:11:a2:25:b9:36:5d:ce:3c:
5f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DB:6A:8F:58:AE:0B:D1:C7:BB:FE:6F:6C:DA:C8:2D:E3:38:6D:D5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qttqj1iuC9HHu_5vbNrILeM4bdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.56.127.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
31.57.192.0/22
31.57.224.0/22
31.57.232.0/22
31.57.240.0/21
31.57.252.0/22
Signature Algorithm: sha256WithRSAEncryption
76:8b:f0:d5:cd:38:a8:30:3c:ee:c5:03:19:e3:01:a3:aa:5a:
80:ac:e4:e9:21:9c:2f:5b:1b:ad:93:e5:a6:6b:a4:e0:5d:8b:
17:7a:61:8f:27:4a:39:90:7c:af:08:b8:d2:7c:78:3b:22:5e:
bc:13:53:bd:45:84:06:b8:14:a6:27:95:56:78:d8:71:b7:e2:
67:8b:49:f2:32:0b:6b:df:92:ea:fd:8b:8f:c5:51:2f:e3:c0:
77:8c:92:2e:66:52:91:5a:dd:a2:29:a8:26:26:12:22:26:05:
17:74:36:05:a7:0d:8b:59:28:71:2a:79:db:44:fc:21:5f:9b:
1b:f2:25:c0:93:8d:78:b4:5f:e5:09:a6:fe:25:3f:b5:27:21:
ce:c0:49:16:5c:bd:80:a9:01:37:1e:5b:9d:9b:65:66:dd:ff:
72:bd:6b:b3:da:a3:63:22:97:d1:1f:06:2c:d8:55:49:db:46:
62:da:4e:29:f5:6d:a6:8b:22:1a:24:f3:15:65:1a:0e:58:3f:
5b:18:f6:49:2a:77:f4:b5:c2:8d:82:e3:f7:f2:d3:7d:4b:da:
78:e3:30:e6:2c:3f:67:57:f7:0a:ed:18:19:0e:81:51:a8:81:
1c:41:ad:f4:1b:5b:d1:f6:0a:ac:7f:1b:dc:39:d7:b1:e0:57:
4a:3c:16:d5
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgISAZLmlpbloc+a+prFpUM3UnNiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMTAxMDcxODAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWRiNmE4ZjU4YWUwYmQxYzdiYmZlNmY2Y2RhYzgyZGUzMzg2ZGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVDZA8ygqB2AHOHp4TKip0EiOUul
d4y6ye7w5fbfd4hs6Rj2hMbFIquzSUgNUja6CqI+MU8fuDShVrPB9wz2brIwck2J
9kT25QjgSYFJMYPMFVUXxeGE4BhHJ/70uzcld/DHCDB5ms2UZ6WV6SHHNcUczR76
9ZwpCIcaGivTYzs7wk70cVR9GYnaPX/CNihve2v+/5UvoXRxQQVusFFl3NGbJSNh
Za7qvJbRF0W7uHYc5GKx21KjbGVxYf49I7Kt8HbNuckOuuD9D1LhjrAxgF+vgVXw
gxyVxQuUGH/w8RgLlD5TDJDJqbQlaMd0vhlHkMKHYEU8EaIluTZdzjxfzQIDAQAB
o4ICeTCCAnUwHQYDVR0OBBYEFKrbao9YrgvRx7v+b2zayC3jOG3VMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvcXR0cWoxaXVDOUhIdV81dmJOcklMZU00YmRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGOBggrBgEFBQcBBwEB/wR/MH0wewQCAAEwdQMEAR84BAME
AB84GAMEAB84JwMEAR84KgMEAB84QgMEAB84VQMEAB84WTAMAwQEHzhwAwQCHzh4
AwQAHzh/MAsDAwAfOQMEAR85CAMEAR85hAMEAx85sAMEAh85wAMEAh854AMEAh85
6AMEAx858AMEAh85/DANBgkqhkiG9w0BAQsFAAOCAQEAdovw1c04qDA87sUDGeMB
o6pagKzk6SGcL1sbrZPlpmuk4F2LF3phjydKOZB8rwi40nx4OyJevBNTvUWEBrgU
pieVVnjYcbfiZ4tJ8jILa9+S6v2Lj8VRL+PAd4ySLmZSkVrdoimoJiYSIiYFF3Q2
BacNi1kocSp520T8IV+bG/IlwJONeLRf5Qmm/iU/tSchzsBJFly9gKkBNx5bnZtl
Zt3/cr1rs9qjYyKX0R8GLNhVSdtGYtpOKfVtposiGiTzFWUaDlg/Wxj2SSp39LXC
jYLj9/LTfUvaeOMw5iw/Z1f3Cu0YGQ6BUaiBHEGt9Btb0fYKrH8b3DnXseBXSjwW
1Q==
-----END CERTIFICATE-----
Generated at Fri Nov 1 14:34:50 2024 by rpki-client on console-fra.rpki-client.org