Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/s_aIchVjZjX5acgX4K418-htK8g.roa
File: s_aIchVjZjX5acgX4K418-htK8g.roa (raw, json)
Hash identifier: S81Y7kWamhtWGOejyix5qLQHcdsql4bWG7DYWnJXMMo=
Subject key identifier: B3:F6:88:72:15:63:66:35:F9:69:C8:17:E0:AE:35:F3:E8:6D:2B:C8
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194461E9F7260669C639301F42D8BC013DA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/s_aIchVjZjX5acgX4K418-htK8g.roa
Signing time: Wed 08 Jan 2025 13:33:19 +0000
ROA not before: Wed 08 Jan 2025 13:33:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.208.0/24 maxlen: 24
31.57.209.0/24 maxlen: 24
31.57.210.0/24 maxlen: 24
31.57.211.0/24 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.227.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.56.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
31.58.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 08:18:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:46:1e:9f:72:60:66:9c:63:93:01:f4:2d:8b:c0:13:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 8 13:33:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b3f6887215636635f969c817e0ae35f3e86d2bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cd:e8:d0:15:ef:cd:1b:8a:6f:16:14:cf:ac:
68:55:65:70:f4:76:4f:cb:6d:e1:b3:46:84:d5:39:
91:5f:0a:bc:1d:27:c1:76:d6:82:80:9c:8d:43:9f:
70:15:ae:e7:ff:1d:b0:48:32:d9:a2:3d:77:2b:1f:
67:02:27:5b:0a:d7:b3:98:7a:07:67:26:25:08:c0:
24:62:5c:64:0c:ff:01:aa:31:b7:cc:a4:5b:71:22:
74:bd:a0:ae:3b:a3:54:a0:fb:02:3d:ac:44:ef:7a:
77:9f:95:cc:2e:c0:21:37:c3:62:f1:fb:63:8c:b4:
94:4c:a4:61:68:e2:2a:8c:f9:fb:5e:03:f4:32:73:
98:7e:7d:9a:f0:bd:31:6b:d9:0c:8a:f8:ad:b0:1c:
18:60:cb:a7:5b:ed:09:6f:57:a4:cc:0c:87:f0:3f:
79:6c:28:4d:dd:dd:57:6d:fc:f6:6a:7b:18:39:d5:
af:39:21:1d:e1:a6:21:03:b4:66:0a:75:4f:3a:99:
d2:cf:81:90:31:d6:f8:85:33:d5:67:71:8a:be:34:
66:66:10:f3:98:46:af:68:6a:ca:cd:ac:1a:0d:d4:
90:d2:ec:8d:27:9c:65:f7:c7:c4:85:15:fe:c9:af:
84:06:0e:bf:95:94:04:ae:b9:19:7a:a3:94:72:0d:
e1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F6:88:72:15:63:66:35:F9:69:C8:17:E0:AE:35:F3:E8:6D:2B:C8
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/s_aIchVjZjX5acgX4K418-htK8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.75.0/24
31.56.86.0/24
31.56.107.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.208.0-31.57.214.255
31.57.216.0/24
31.57.227.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
31.58.50.0/23
31.58.56.0/23
31.58.64.0/23
31.58.153.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:1c:18:79:b8:ab:ca:73:4d:76:d8:42:ee:39:f3:1c:62:e2:
d4:7c:87:64:e1:22:8e:45:c4:4c:88:80:c9:9e:37:9c:94:62:
10:df:0b:ce:e0:b5:6a:a9:e3:2d:23:06:5c:2b:d5:ac:c2:a1:
a3:d4:93:7b:79:68:33:96:80:6e:9f:e2:99:c3:9f:b8:b1:7c:
ee:d3:8d:d4:10:f6:ab:b8:98:d7:46:26:90:76:a8:3d:26:d4:
97:96:72:64:04:b5:0d:c8:1d:88:84:fc:70:dd:f7:68:55:c5:
13:13:cc:64:cd:90:ae:81:7e:fc:e0:0e:c8:41:1b:d3:32:7f:
55:25:a1:b0:23:31:86:bc:e9:0e:1c:11:2e:53:19:3e:f3:65:
d2:f0:ba:59:05:18:40:73:f8:de:72:b5:22:ab:f8:02:7b:4d:
64:62:cc:71:2b:6e:95:45:ca:d9:6c:60:91:1d:63:67:4e:87:
da:42:4e:9f:52:0e:5b:02:18:44:24:1c:a4:95:46:ca:19:86:
c9:a3:4b:a3:03:5b:9b:78:6e:55:11:12:33:bf:51:73:aa:6f:
c8:22:80:16:44:1a:4f:a8:d8:92:d2:b6:7f:e1:fe:5e:7d:49:
83:f0:12:ac:68:07:9c:46:99:65:fe:95:c0:f7:3d:09:08:4e:
f8:a6:32:89
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:12 2025 by rpki-client