Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xI9UIZR66OHNVPkSSEqjytfxHyw.roa
File: xI9UIZR66OHNVPkSSEqjytfxHyw.roa (raw, json)
Hash identifier: 6RgfmJY8IBAWOrlGX69ac5SCFn4unnzbgij0TWSw4ac=
Subject key identifier: C4:8F:54:21:94:7A:E8:E1:CD:54:F9:12:48:4A:A3:CA:D7:F1:1F:2C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019285E5A345F7B8DC8B644EACA24D23BB1E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xI9UIZR66OHNVPkSSEqjytfxHyw.roa
Signing time: Sun 13 Oct 2024 12:41:12 +0000
ROA not before: Sun 13 Oct 2024 12:41:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.39.0/24 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.137.0/24 maxlen: 24
31.56.138.0/24 maxlen: 24
31.56.139.0/24 maxlen: 24
31.56.140.0/24 maxlen: 24
31.56.145.0/24 maxlen: 24
31.56.147.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 12:42:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:85:e5:a3:45:f7:b8:dc:8b:64:4e:ac:a2:4d:23:bb:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 13 12:41:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c48f5421947ae8e1cd54f912484aa3cad7f11f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1e:d2:41:48:93:72:58:88:5e:86:ef:96:61:
3f:b6:10:64:7f:31:3c:ac:16:6e:30:e4:58:a4:cc:
fd:1f:a5:06:c6:e2:df:5c:9b:9c:a3:1c:ac:d6:44:
a8:f1:05:8b:a1:cc:10:7a:6a:71:f9:1e:35:b3:1c:
a8:5a:ca:9e:21:86:f8:62:07:a3:e4:3d:21:59:b9:
d0:5e:ae:a8:4e:97:5f:e2:79:23:31:3d:04:74:9f:
91:f4:28:b5:2e:0f:dc:37:b4:86:4b:82:b8:c1:19:
16:ea:42:a9:27:50:42:c9:95:aa:59:80:9a:93:66:
ce:c6:e4:50:aa:69:be:61:89:b2:84:1a:c9:9b:7b:
7c:be:00:73:e7:16:de:26:d8:97:83:60:68:6c:96:
33:f6:3c:42:6b:2c:05:ce:c0:66:bf:6a:71:ba:a3:
59:27:00:58:df:f6:6a:08:01:cd:f5:3c:09:61:64:
9d:b0:c0:72:87:c9:d6:d3:96:fa:de:86:93:90:55:
53:68:06:13:d8:05:94:29:87:e5:e0:6d:53:de:b8:
4f:76:ec:0c:3a:f0:a0:58:78:7b:0c:17:3d:2f:9b:
c1:cc:c3:0f:0d:c1:4d:97:d7:d6:68:99:28:ca:ff:
ef:d5:94:ff:10:3d:3a:41:70:69:c6:8a:1c:1b:33:
37:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8F:54:21:94:7A:E8:E1:CD:54:F9:12:48:4A:A3:CA:D7:F1:1F:2C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xI9UIZR66OHNVPkSSEqjytfxHyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.39.0/24
31.56.66.0/24
31.56.86.0/24
31.56.89.0/24
31.56.112.0/21
31.56.137.0-31.56.140.255
31.56.145.0/24
31.56.147.0/24
31.57.0.0-31.57.9.255
31.57.132.0/23
31.57.176.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:87:06:01:51:cf:cf:1d:2a:95:38:4c:7d:e9:9a:aa:22:2d:
d2:1b:6e:1e:6f:94:65:e1:11:15:aa:d1:00:b3:48:2d:4d:f9:
19:f2:a9:9f:cf:ee:b5:21:1f:02:30:5d:c4:11:75:16:d3:b7:
87:b7:42:26:82:d6:b2:6a:e9:2e:3f:91:1e:aa:a0:cd:bd:ee:
cf:6e:f6:f4:14:a5:17:6c:fb:41:66:79:56:a4:5f:31:d7:bb:
86:3a:a3:76:26:f0:43:8e:ab:44:1d:f0:28:cc:24:47:6d:69:
b7:9c:2a:06:09:da:ad:0c:60:64:89:1b:54:8d:31:a4:bf:a0:
fd:ef:22:c2:44:59:a3:13:67:8f:f9:35:a7:2a:95:27:95:7e:
bc:03:a6:fc:6b:84:c4:fd:86:bb:c3:e6:f7:c9:fc:d7:3f:cd:
e4:21:6e:9b:29:25:4e:e2:dd:c6:88:89:75:1a:b4:a4:03:ea:
67:b9:a5:58:b2:ef:73:8e:d5:9a:7f:0f:6f:b4:4c:60:f2:23:
1d:17:a2:d7:89:5d:be:0e:c4:9e:0c:4d:a3:29:4e:9c:c8:9b:
61:96:7f:7c:dd:71:68:75:04:cb:fd:b2:4c:9e:45:15:93:cc:
73:74:f3:82:d6:83:0e:26:89:f4:6a:84:e2:55:67:db:92:42:
47:05:2f:4b
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAZKF5aNF97jci2ROrKJNI7seMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDEzMTI0MTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDhmNTQyMTk0N2FlOGUxY2Q1NGY5MTI0ODRhYTNjYWQ3ZjExZjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzB7SQUiTcliIXobvlmE/thBkfzE8
rBZuMORYpMz9H6UGxuLfXJucoxys1kSo8QWLocwQempx+R41sxyoWsqeIYb4Ygej
5D0hWbnQXq6oTpdf4nkjMT0EdJ+R9Ci1Lg/cN7SGS4K4wRkW6kKpJ1BCyZWqWYCa
k2bOxuRQqmm+YYmyhBrJm3t8vgBz5xbeJtiXg2BobJYz9jxCaywFzsBmv2pxuqNZ
JwBY3/ZqCAHN9TwJYWSdsMByh8nW05b63oaTkFVTaAYT2AWUKYfl4G1T3rhPduwM
OvCgWHh7DBc9L5vBzMMPDcFNl9fWaJkoyv/v1ZT/ED06QXBpxoocGzM3/wIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFMSPVCGUeujhzVT5EkhKo8rX8R8sMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEveEk5VUlaUjY2T0hOVlBrU1NFcWp5dGZ4SHl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBdBAIAATBXAwQBHzgEAwQA
HzgnAwQAHzhCAwQAHzhWAwQAHzhZAwQDHzhwMAwDBAAfOIkDBAAfOIwDBAAfOJED
BAAfOJMwCwMDAB85AwQBHzkIAwQBHzmEAwQDHzmwMA0GCSqGSIb3DQEBCwUAA4IB
AQBPhwYBUc/PHSqVOEx96ZqqIi3SG24eb5Rl4REVqtEAs0gtTfkZ8qmfz+61IR8C
MF3EEXUW07eHt0ImgtayaukuP5EeqqDNve7Pbvb0FKUXbPtBZnlWpF8x17uGOqN2
JvBDjqtEHfAozCRHbWm3nCoGCdqtDGBkiRtUjTGkv6D97yLCRFmjE2eP+TWnKpUn
lX68A6b8a4TE/Ya7w+b3yfzXP83kIW6bKSVO4t3GiIl1GrSkA+pnuaVYsu9zjtWa
fw9vtExg8iMdF6LXiV2+DsSeDE2jKU6cyJthln983XFodQTL/bJMnkUVk8xzdPOC
1oMOJon0aoTiVWfbkkJHBS9L
-----END CERTIFICATE-----
Generated at Mon Oct 14 15:20:31 2024 by rpki-client on console-fra.rpki-client.org