Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/sN63-iOurJMBe73AFp9hgmqT1Qg.roa
File: sN63-iOurJMBe73AFp9hgmqT1Qg.roa (raw, json)
Hash identifier: ZhQJ8599ifagLu5p8CrfCHJ3nz+9vh+cLTq+GWlvzvg=
Subject key identifier: B0:DE:B7:FA:23:AE:AC:93:01:7B:BD:C0:16:9F:61:82:6A:93:D5:08
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192AA87757281A15F84245B5ABEFC57DE51
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/sN63-iOurJMBe73AFp9hgmqT1Qg.roa
Signing time: Sun 20 Oct 2024 15:24:17 +0000
ROA not before: Sun 20 Oct 2024 15:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.151.0/24 maxlen: 24
31.57.152.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 06:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:aa:87:75:72:81:a1:5f:84:24:5b:5a:be:fc:57:de:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 20 15:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0deb7fa23aeac93017bbdc0169f61826a93d508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9c:fe:90:cd:61:7c:d2:8a:54:06:ad:ad:74:
7a:c3:60:20:d5:b4:81:1d:e1:07:c8:c6:d4:10:d7:
c1:31:e5:86:a5:ba:48:e1:8b:70:05:34:81:f3:ec:
96:3d:e6:95:e9:c8:6c:b8:3b:3b:df:fc:83:c7:8c:
12:ae:28:74:99:e3:e1:dd:2f:19:ad:ce:06:6b:17:
55:04:f0:7e:ef:f1:53:06:e9:53:3d:17:4f:28:70:
48:38:eb:b1:37:02:57:45:b3:cf:6e:5b:cc:a2:f8:
85:19:f1:ac:e3:6d:8a:5a:a1:87:fc:ad:d1:40:e5:
a2:41:80:1b:dd:d5:21:af:31:ee:5f:c0:01:31:50:
29:f2:cf:60:2b:c3:a5:2d:a7:e2:8e:9b:ef:68:5b:
af:49:43:d7:4f:4e:8c:79:72:21:67:7e:a0:7f:71:
b7:18:ba:67:ba:96:16:1a:ab:cd:76:e8:89:ac:fc:
bd:2e:f4:3b:0c:98:03:c0:77:76:32:da:4d:d7:46:
70:00:4f:70:15:eb:31:a1:e4:5e:4f:ce:98:4f:00:
14:6f:cb:23:15:f0:54:e1:35:a0:57:dc:92:6b:3b:
5d:25:2b:06:a0:f4:b6:a2:a1:0a:e5:81:06:3f:16:
a1:64:61:de:d6:86:5f:36:24:85:8b:ee:f2:f2:c8:
18:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DE:B7:FA:23:AE:AC:93:01:7B:BD:C0:16:9F:61:82:6A:93:D5:08
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/sN63-iOurJMBe73AFp9hgmqT1Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.151.0-31.57.152.255
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:7b:d2:e0:18:c9:30:1c:70:86:91:ca:51:a1:12:b3:33:48:
cc:7b:18:c8:04:a0:df:69:d2:aa:f1:c8:28:c4:f5:1c:df:55:
86:c7:74:56:42:82:1d:56:e1:3b:92:43:0a:fd:35:4e:80:87:
dc:fb:f5:07:3f:77:d6:95:ca:42:11:1d:4f:f6:54:33:bb:13:
54:6f:70:8e:ab:0d:28:65:b7:6f:be:fc:1d:56:85:12:6b:87:
b8:8b:f2:ad:1d:07:ff:54:11:23:72:29:08:bf:db:87:b2:6f:
b0:6d:6a:cd:43:10:d2:47:bf:68:27:78:5f:2c:f2:03:70:c0:
f9:33:7a:a1:83:64:13:73:d7:e0:cc:0d:2e:8a:e4:5e:c5:e2:
16:b3:79:05:df:7d:79:0e:42:25:37:7e:e9:7a:17:37:d9:fc:
e6:14:ed:d0:82:81:65:3b:d9:99:be:b3:4f:74:14:dc:40:23:
a7:bc:e0:31:b3:34:38:51:4d:4b:2a:1b:80:22:cd:19:3f:f4:
e1:03:97:fb:3c:c2:84:d3:a3:f1:35:ef:bd:89:a9:50:61:ce:
dc:7c:6e:52:a0:73:b7:e2:cc:7c:6f:61:73:d4:2b:90:3c:86:
b9:64:35:7c:e2:7f:d3:61:50:e1:da:e0:c5:3c:52:78:9d:0c:
5e:96:19:b0
-----BEGIN CERTIFICATE-----
MIIFUDCCBDigAwIBAgISAZKqh3VygaFfhCRbWr78V95RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDIwMTUyNDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGRlYjdmYTIzYWVhYzkzMDE3YmJkYzAxNjlmNjE4MjZhOTNkNTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppz+kM1hfNKKVAatrXR6w2Ag1bSB
HeEHyMbUENfBMeWGpbpI4YtwBTSB8+yWPeaV6chsuDs73/yDx4wSrih0mePh3S8Z
rc4GaxdVBPB+7/FTBulTPRdPKHBIOOuxNwJXRbPPblvMoviFGfGs422KWqGH/K3R
QOWiQYAb3dUhrzHuX8ABMVAp8s9gK8OlLafijpvvaFuvSUPXT06MeXIhZ36gf3G3
GLpnupYWGqvNduiJrPy9LvQ7DJgDwHd2MtpN10ZwAE9wFesxoeReT86YTwAUb8sj
FfBU4TWgV9ySaztdJSsGoPS2oqEK5YEGPxahZGHe1oZfNiSFi+7y8sgYFQIDAQAB
o4ICXDCCAlgwHQYDVR0OBBYEFLDet/ojrqyTAXu9wBafYYJqk9UIMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvc042My1pT3VySk1CZTczQUZwOWhnbXFUMVFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHIGCCsGAQUFBwEHAQH/BGMwYTBfBAIAATBZAwQBHzgEAwQA
HzgnAwQBHzgqAwQAHzhCAwQAHzhVAwQAHzhZMAwDBAQfOHADBAIfOHgwCwMDAB85
AwQBHzkIAwQBHzmEMAwDBAAfOZcDBAAfOZgDBAMfObAwDQYJKoZIhvcNAQELBQAD
ggEBAC170uAYyTAccIaRylGhErMzSMx7GMgEoN9p0qrxyCjE9RzfVYbHdFZCgh1W
4TuSQwr9NU6Ah9z79Qc/d9aVykIRHU/2VDO7E1RvcI6rDShlt2++/B1WhRJrh7iL
8q0dB/9UESNyKQi/24eyb7Btas1DENJHv2gneF8s8gNwwPkzeqGDZBNz1+DMDS6K
5F7F4hazeQXffXkOQiU3ful6FzfZ/OYU7dCCgWU72Zm+s090FNxAI6e84DGzNDhR
TUsqG4AizRk/9OEDl/s8woTTo/E1772JqVBhztx8blKgc7fizHxvYXPUK5A8hrlk
NXzif9NhUOHa4MU8UnidDF6WGbA=
-----END CERTIFICATE-----
Generated at Mon Oct 21 08:35:26 2024 by rpki-client on console-ams.rpki-client.org