Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wJO7hs7wlHffOe2dZDEAVpF0Df0.roa
File: wJO7hs7wlHffOe2dZDEAVpF0Df0.roa (raw, json)
Hash identifier: LP3V0z8fHWF/zVTWo65L8wOHNDGHz6Js9LtpnWIWBPk=
Subject key identifier: C0:93:BB:86:CE:F0:94:77:DF:39:ED:9D:64:31:00:56:91:74:0D:FD
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01925C683F8CFFDF12AAEDE3CC04DBAB3CD0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wJO7hs7wlHffOe2dZDEAVpF0Df0.roa
Signing time: Sat 05 Oct 2024 11:19:48 +0000
ROA not before: Sat 05 Oct 2024 11:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.56.154.0/24 maxlen: 24
31.56.158.0/24 maxlen: 24
31.56.159.0/24 maxlen: 24
31.56.168.0/24 maxlen: 24
31.56.169.0/24 maxlen: 24
31.56.170.0/24 maxlen: 24
31.56.171.0/24 maxlen: 24
31.56.174.0/24 maxlen: 24
31.56.175.0/24 maxlen: 24
31.57.16.0/22 maxlen: 24
31.57.20.0/22 maxlen: 24
31.57.24.0/22 maxlen: 24
31.57.28.0/22 maxlen: 24
31.57.48.0/22 maxlen: 24
31.57.52.0/22 maxlen: 24
31.57.56.0/22 maxlen: 24
31.57.60.0/22 maxlen: 24
31.58.255.0/24 maxlen: 24
217.60.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 17:59:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5c:68:3f:8c:ff:df:12:aa:ed:e3:cc:04:db:ab:3c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 5 11:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c093bb86cef09477df39ed9d6431005691740dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:b4:99:8a:67:3e:0b:05:ce:63:62:8a:95:
3a:cf:27:d0:4f:6c:78:87:a0:ff:b8:09:28:df:56:
45:6f:79:30:e5:99:64:6e:2f:95:d5:5d:48:2e:43:
53:f2:0c:12:73:09:c0:12:f1:5c:c9:52:38:4e:12:
20:ec:f4:41:42:aa:61:f2:72:9f:35:63:34:de:4a:
8e:1d:9d:f9:97:08:d2:07:bc:da:3c:6d:da:6c:aa:
96:88:e2:83:50:06:85:77:f0:11:24:96:24:f4:7b:
2f:6c:e5:67:8b:a3:81:94:83:a5:c5:a4:94:fc:f1:
a4:4c:cf:db:40:bd:9b:00:ab:ad:7a:c8:c2:fa:c5:
49:98:b2:48:39:56:51:96:65:4d:2b:61:1c:be:ed:
b7:ab:6f:6f:e3:d7:1d:5a:ec:84:5c:82:f4:92:81:
a3:1b:c2:da:9a:e4:b3:ab:3d:ed:81:79:9a:6c:bd:
24:15:1e:95:46:1c:66:39:b6:6a:11:a2:76:bf:d3:
01:2b:c5:03:93:9b:f0:64:22:5a:d7:1e:5f:da:cd:
2d:30:20:6e:fc:72:1b:f1:25:6b:d3:03:2b:d0:a9:
2b:6e:69:e6:71:85:ff:ea:8d:c2:b5:c2:99:31:95:
f9:f3:00:cd:41:74:e1:5f:57:68:c1:79:dd:53:af:
b7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:93:BB:86:CE:F0:94:77:DF:39:ED:9D:64:31:00:56:91:74:0D:FD
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wJO7hs7wlHffOe2dZDEAVpF0Df0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.154.0/24
31.56.158.0/23
31.56.168.0/22
31.56.174.0/23
31.57.16.0/20
31.57.48.0/20
31.58.255.0/24
217.60.0.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:ac:d8:58:6a:48:b8:9f:95:a8:c8:26:dc:f5:56:d6:50:d1:
b5:64:e8:1b:24:4e:e4:58:69:09:96:87:d1:e5:ce:1a:e1:dd:
89:40:ea:9e:9d:6f:b2:2b:ac:43:b2:17:f9:dd:e8:7f:40:7e:
82:2c:e4:d4:ca:5c:61:57:74:67:51:c1:1a:29:dd:13:3b:c9:
95:19:4a:98:0e:46:04:3e:1e:fd:9c:bd:60:cd:45:0f:8c:21:
2e:7c:1f:40:f0:b2:e6:ed:d6:43:47:a3:82:07:b1:8c:e0:fe:
ad:58:28:d5:68:88:be:45:20:67:40:5e:0b:df:88:05:bb:89:
4c:75:bc:bb:d8:3b:02:18:84:78:cf:24:1c:de:c9:a8:11:0f:
06:ac:ae:ea:d0:72:f1:8b:37:5b:59:08:3e:71:b1:a6:8f:04:
be:c4:24:3a:63:21:56:90:39:2f:e0:ce:f7:42:b6:fb:2b:48:
08:ad:20:d5:08:3c:73:ee:8e:20:fd:42:46:73:95:c1:b1:f8:
aa:d7:3c:c9:73:c9:07:56:a3:11:1f:67:39:15:a5:2f:a7:1b:
f0:32:ee:ab:5b:83:da:e4:61:ce:34:d7:e0:82:1e:46:5d:88:
99:94:e6:39:5d:a9:25:8e:43:68:8d:b8:e7:6b:37:bd:f7:38:
cd:d2:bf:bc
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 11 20:05:57 2024 by rpki-client on console-fra.rpki-client.org