Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uAs5DUzu4Gv2S0hP9X1dOfnchdU.roa
File: uAs5DUzu4Gv2S0hP9X1dOfnchdU.roa (raw, json)
Hash identifier: DTaaQZ2XF3ZRCSTpFShWXwPdZQnCzBRB2VATcaIfTA8=
Subject key identifier: B8:0B:39:0D:4C:EE:E0:6B:F6:4B:48:4F:F5:7D:5D:39:F9:DC:85:D5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192F82E113DEA8B423A3F2AE61FA5849203
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uAs5DUzu4Gv2S0hP9X1dOfnchdU.roa
Signing time: Mon 04 Nov 2024 17:17:01 +0000
ROA not before: Mon 04 Nov 2024 17:17:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 31.57.11.0/24 maxlen: 24
31.57.131.0/24 maxlen: 24
31.57.150.0/24 maxlen: 24
31.57.176.0/24 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.57.194.0/24 maxlen: 24
31.58.49.0/24 maxlen: 24
31.58.59.0/24 maxlen: 24
31.58.129.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.58.152.0/22 maxlen: 22
31.58.176.0/22 maxlen: 22
31.58.200.0/22 maxlen: 22
31.58.216.0/22 maxlen: 22
31.58.240.0/22 maxlen: 22
31.58.252.0/22 maxlen: 22
31.59.41.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.64.0/22 maxlen: 22
31.59.80.0/22 maxlen: 22
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.124.0/22 maxlen: 22
31.59.176.0/22 maxlen: 22
31.59.180.0/22 maxlen: 22
31.59.184.0/22 maxlen: 22
31.59.188.0/22 maxlen: 22
31.59.192.0/22 maxlen: 22
31.59.216.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 10:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f8:2e:11:3d:ea:8b:42:3a:3f:2a:e6:1f:a5:84:92:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 4 17:17:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b80b390d4ceee06bf64b484ff57d5d39f9dc85d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:df:46:6d:df:a7:17:d1:ae:dc:de:78:03:
5b:cd:1b:78:ae:f3:99:b3:cf:bf:76:83:f6:7f:84:
a8:ab:a4:41:55:87:c2:27:f5:f0:19:e8:7a:07:e5:
79:83:f2:a8:59:1a:81:e5:d1:33:15:de:91:92:0e:
c0:43:30:fd:ca:40:4a:cd:ef:89:34:82:be:9a:3e:
fa:fc:b4:7d:23:3d:ac:51:b7:f1:84:82:85:6b:72:
49:b3:76:b3:cb:49:e9:1a:cb:7d:66:c2:05:5d:1d:
68:d2:0d:35:26:5c:2a:cc:11:fc:cf:91:ee:17:16:
3e:d3:43:7b:de:dc:e9:dd:fa:60:9f:5a:ef:61:f8:
7a:64:6d:4f:72:65:ed:c0:9d:e1:6c:b0:47:29:b3:
b7:a8:2e:bc:d1:bb:2a:8d:37:60:61:b8:59:7c:9c:
e2:a3:83:ae:7f:38:1a:e5:0d:7a:c8:cb:c1:71:5b:
e0:21:58:af:33:8c:13:28:9e:fe:0c:be:08:2d:90:
d6:31:04:28:03:8f:84:93:92:76:5f:f1:80:79:ab:
7b:4b:4b:d4:f4:55:c1:5b:66:4f:77:f9:9d:68:18:
ef:ff:4f:59:c0:7f:23:3c:3f:5d:db:79:ec:85:87:
2b:76:e1:5f:c2:57:7e:65:12:ca:89:22:24:16:d9:
05:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:0B:39:0D:4C:EE:E0:6B:F6:4B:48:4F:F5:7D:5D:39:F9:DC:85:D5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uAs5DUzu4Gv2S0hP9X1dOfnchdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.11.0/24
31.57.131.0/24
31.57.150.0/24
31.57.176.0/24
31.57.178.0/23
31.57.181.0-31.57.183.255
31.57.194.0/24
31.58.49.0/24
31.58.59.0/24
31.58.129.0/24
31.58.142.0/24
31.58.146.0/24
31.58.152.0/22
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.240.0/22
31.58.252.0/22
31.59.41.0/24
31.59.56.0-31.59.58.255
31.59.64.0/22
31.59.80.0/22
31.59.96.0/22
31.59.112.0/22
31.59.124.0/22
31.59.176.0-31.59.195.255
31.59.216.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
45:37:91:92:bb:7b:d1:d1:67:6c:69:e1:a1:c1:1c:8e:e2:38:
e8:33:00:d8:ef:3e:89:c0:7b:f5:9c:75:34:66:45:04:61:c7:
59:02:e0:42:81:17:81:7c:a7:c1:e3:3b:9a:31:c4:7a:0e:8d:
e0:01:72:27:cd:aa:3b:f7:dd:47:5a:78:58:d4:48:3b:92:9a:
e2:ca:a9:40:d8:e1:16:99:8b:27:86:51:a7:96:b9:72:0b:9b:
48:7f:86:4e:0a:c8:74:56:bc:16:4d:53:93:80:e1:cd:22:f5:
2d:0a:12:91:ac:87:78:b8:0f:90:87:af:15:a7:e1:5c:51:fc:
01:86:3f:fd:ac:75:60:da:41:15:56:76:e3:22:42:74:9b:f5:
17:3e:24:92:bd:4c:dc:c8:03:c4:69:f9:df:04:54:6f:60:30:
1a:a3:05:79:24:8c:99:9f:95:3a:51:a3:f6:79:37:14:1f:bf:
34:7a:18:ea:69:d7:7f:34:a1:b3:f9:fa:14:a7:91:7e:f5:d8:
20:7c:5b:df:98:c8:fb:24:ca:49:fa:db:51:b3:13:0d:d4:fd:
b2:92:0e:b6:94:68:9b:39:ef:4a:db:d5:59:d8:49:21:56:c2:
dd:d1:b8:02:3a:c6:60:07:e9:4b:94:40:bd:d0:f9:62:0b:9a:
fe:82:53:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 15:57:11 2024 by rpki-client on console-ams.rpki-client.org