Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/vbd3UF7UCGJV_IuUhwMNywKnrqI.roa
File: vbd3UF7UCGJV_IuUhwMNywKnrqI.roa (raw, json)
Hash identifier: KcT6/wMHFy/WhV0z3m8WONsdT451aN/0mhNKymL6/FU=
Subject key identifier: BD:B7:77:50:5E:D4:08:62:55:FC:8B:94:87:03:0D:CB:02:A7:AE:A2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193393626B20CBFF9FF9061189F391C8A22
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/vbd3UF7UCGJV_IuUhwMNywKnrqI.roa
Signing time: Sun 17 Nov 2024 08:21:10 +0000
ROA not before: Sun 17 Nov 2024 08:21:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.48.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Nov 2024 15:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:39:36:26:b2:0c:bf:f9:ff:90:61:18:9f:39:1c:8a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 17 08:21:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bdb777505ed4086255fc8b9487030dcb02a7aea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:21:fd:ae:01:d3:d8:7f:9b:0f:49:9e:a5:61:
04:4d:bb:f7:05:2d:1f:7c:0f:de:5f:67:18:70:4d:
6d:50:9a:6c:b5:22:a3:45:74:9d:4d:e1:07:21:43:
5f:24:d0:5f:8e:91:ec:8e:58:1a:f0:15:dd:a8:ca:
50:4c:52:45:48:8c:76:70:43:26:c7:1d:ba:c4:81:
33:71:c3:d2:3a:e1:60:9e:e8:87:b5:0f:e1:7a:e0:
dc:be:c4:89:5b:f3:a8:46:4f:c9:34:55:33:38:6f:
7c:3a:48:ad:72:09:84:51:d7:0b:75:4e:df:03:88:
71:7f:93:c3:a8:a9:84:8b:7f:1c:76:5c:eb:e9:df:
61:3e:58:c7:75:f6:89:f3:22:9b:af:ad:fb:ba:c1:
e7:47:71:90:19:6e:00:44:de:b7:a1:db:bd:d5:c9:
7c:37:ca:10:1a:e0:ab:95:12:c7:61:29:ba:ae:88:
f4:bd:02:ec:d8:5d:bb:17:e4:cb:f4:89:de:47:d0:
1a:cc:8f:42:65:d0:f7:40:55:02:5e:c3:60:5f:56:
1a:8e:ec:ba:7a:67:0c:65:f7:f7:d8:f9:7d:81:44:
9a:dc:6f:7c:fb:df:79:01:8b:bb:ce:bc:7f:26:18:
9c:32:6e:da:4c:4d:fb:00:22:4c:4a:44:d2:eb:d7:
ac:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B7:77:50:5E:D4:08:62:55:FC:8B:94:87:03:0D:CB:02:A7:AE:A2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/vbd3UF7UCGJV_IuUhwMNywKnrqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.48.0/24
31.56.57.0/24
31.56.85.0/24
31.56.89.0/24
31.56.120.0/22
31.56.127.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0/21
31.57.192.0/22
31.57.232.0/22
31.58.58.0/24
Signature Algorithm: sha256WithRSAEncryption
78:e4:e7:2b:7a:a5:d5:20:fe:14:2e:69:9d:0e:c4:37:36:5e:
26:eb:2c:22:0a:17:5d:1c:6a:4b:7a:8e:d6:bf:9e:a4:cd:07:
6a:4b:b7:50:f8:3f:2b:ec:57:a0:5d:29:09:a4:05:35:14:86:
32:dd:da:e0:b9:f2:ed:5d:72:3d:c0:68:c7:6a:d5:92:2c:fd:
06:44:94:0f:7b:00:97:68:1c:2e:63:4d:1d:0c:db:6b:21:33:
bb:6b:6e:58:f4:9e:03:51:3d:51:e8:bc:77:4c:ed:8b:4b:3b:
6f:8c:72:60:0d:e9:25:1a:0d:fd:42:d1:96:65:ae:47:2b:fe:
fb:80:21:9e:9d:2f:44:9b:d7:60:a5:02:69:3c:29:98:42:1b:
d8:a7:c0:f4:b2:22:80:51:f7:df:1a:f5:7f:1c:ac:d9:93:20:
8d:7a:40:df:b7:bc:19:83:02:58:b0:08:fd:42:d5:10:2c:af:
b0:ce:83:6a:f3:4b:2c:41:e8:88:7e:b2:4f:f1:25:4c:ca:2d:
71:ee:21:80:79:36:39:70:a1:9c:8a:91:4b:97:5e:81:a0:9a:
61:b1:86:bf:a5:f8:ae:7d:c9:e5:18:44:f5:49:a0:55:e1:05:
5d:31:7d:d4:bc:b0:fe:54:94:7b:8d:e9:5e:e6:e3:02:f8:da:
94:54:6c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 17:26:27 2024 by rpki-client on console-ams.rpki-client.org