Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uqpGQDVB0hp6N29NgkkCkJcElog.roa
File: uqpGQDVB0hp6N29NgkkCkJcElog.roa (raw, json)
Hash identifier: +NJ2erKwtkgdHbeVKtuhJgXl+rwjvHqmrEdSTrPT4CQ=
Subject key identifier: BA:AA:46:40:35:41:D2:1A:7A:37:6F:4D:82:49:02:90:97:04:96:88
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192FD7BE629155BBCD373A504E03F1A5056
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uqpGQDVB0hp6N29NgkkCkJcElog.roa
Signing time: Tue 05 Nov 2024 18:00:08 +0000
ROA not before: Tue 05 Nov 2024 18:00:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.240.0/22 maxlen: 24
31.57.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 18:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fd:7b:e6:29:15:5b:bc:d3:73:a5:04:e0:3f:1a:50:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 5 18:00:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baaa46403541d21a7a376f4d8249029097049688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:f6:70:d3:ef:5d:cb:e7:f8:06:8b:ba:94:
6c:72:b5:60:92:c6:b9:e8:dc:06:41:4e:66:b5:4c:
25:43:6d:b5:fe:cd:52:8f:6d:e4:1c:55:c4:14:e6:
21:46:26:6d:89:38:9b:1f:7b:d4:9c:e2:23:2e:4d:
af:09:39:fe:15:7e:fa:80:d8:d2:91:97:47:3f:ba:
50:fc:70:a1:dd:89:e6:21:da:9c:c0:a2:84:fb:e5:
f6:80:33:fa:ed:dc:23:af:38:f2:05:05:2e:08:05:
c0:6a:75:1f:65:fb:03:4f:81:42:8a:ab:19:07:84:
25:3a:32:57:fa:34:62:d7:e1:b9:b5:73:0a:3e:b2:
df:47:25:fc:71:e3:c0:29:e7:82:1a:34:9a:f2:ec:
f6:eb:f4:d6:0f:0b:77:2b:06:2f:3d:c7:1c:a3:98:
25:8c:3e:61:dc:a3:ed:34:c3:ad:0a:63:dc:73:5d:
e4:e5:73:4b:3d:77:51:b2:85:e2:31:da:4f:74:67:
39:c9:73:a8:0c:e7:a6:96:16:c4:f5:4e:af:db:51:
e0:c1:bd:dd:d1:ee:26:6b:13:bb:51:72:17:e6:1a:
db:1a:5f:d6:1c:0d:c0:01:6f:cd:aa:50:23:78:74:
44:a4:b6:f6:18:61:7c:0f:b9:f9:2c:23:55:df:61:
49:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AA:46:40:35:41:D2:1A:7A:37:6F:4D:82:49:02:90:97:04:96:88
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/uqpGQDVB0hp6N29NgkkCkJcElog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.120.0/22
31.56.127.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
31.57.192.0/22
31.57.232.0/22
31.57.240.0/21
Signature Algorithm: sha256WithRSAEncryption
af:65:e2:73:01:71:77:fa:fc:e5:39:b4:3c:e5:9e:10:18:02:
58:16:d5:91:92:45:17:c1:4e:7c:ab:82:35:73:69:b2:2c:a4:
15:7a:df:d5:23:68:d5:67:8a:3d:03:18:ec:ea:5f:30:3a:f5:
a8:51:5b:21:64:6f:cd:99:47:a0:25:60:61:70:f0:3b:99:26:
a5:d3:b5:02:a7:b5:2a:80:86:46:6f:b2:c9:79:57:0d:bd:9c:
2a:d9:1e:bc:69:a7:1f:b5:2e:1d:c5:b9:8c:3c:d3:ce:bf:06:
83:de:a4:57:0d:a4:52:b6:b1:c5:81:fd:7f:a2:92:30:99:e2:
cc:57:7a:da:1a:c4:17:a9:7d:e1:ce:24:fa:34:c3:4d:3e:64:
11:b5:0f:76:68:37:64:ff:1d:07:64:97:69:a0:98:db:e2:93:
4b:38:c3:86:db:22:98:fe:f5:c9:be:ca:0d:2e:81:33:ea:b1:
1f:a7:6b:80:dc:75:47:d3:30:59:b3:2a:74:e2:cd:b3:a5:8d:
8e:bd:ac:4f:c3:f0:54:b0:de:3a:93:1e:c3:f3:9e:e0:1c:86:
1b:52:a0:5a:8b:79:c7:a1:56:be:3e:46:f3:3d:98:3c:76:80:
10:23:03:4c:5a:b7:6c:44:13:57:01:39:ca:e5:c8:07:4e:98:
9c:d4:15:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org