Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xYB32egObzWdIryR8SAqNC9U6sE.roa
File: xYB32egObzWdIryR8SAqNC9U6sE.roa (raw, json)
Hash identifier: Jxak40eh2avZFvZmyjonarGACBr6Bq3nKwoVv9Byujs=
Subject key identifier: C5:80:77:D9:E8:0E:6F:35:9D:22:BC:91:F1:20:2A:34:2F:54:EA:C1
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01938366C4BF8D794AC01F42D5F78CEF09DE
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xYB32egObzWdIryR8SAqNC9U6sE.roa
Signing time: Sun 01 Dec 2024 18:06:10 +0000
ROA not before: Sun 01 Dec 2024 18:06:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205463
IP address blocks: 31.58.247.0/24 maxlen: 24
31.58.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Dec 2024 11:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:83:66:c4:bf:8d:79:4a:c0:1f:42:d5:f7:8c:ef:09:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 1 18:06:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c58077d9e80e6f359d22bc91f1202a342f54eac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b9:08:82:59:f7:40:23:d6:33:a4:6a:ca:18:
28:b3:b0:62:2e:bf:b4:1b:47:ba:0d:da:d2:ff:19:
e5:c8:53:22:ca:09:1f:b9:f6:63:9b:27:73:39:61:
b6:5b:0b:24:69:26:d2:76:3d:c4:24:01:8a:65:af:
68:66:8b:72:fa:07:ab:18:ed:d0:41:58:f6:02:2b:
20:fe:ed:fb:4c:4b:89:71:40:b1:91:64:6d:05:5c:
87:94:25:83:27:69:24:d8:c5:b7:29:d4:b7:ac:d7:
e4:8d:04:6c:d1:6b:6e:33:70:8a:dc:e7:22:05:9e:
7c:56:ec:11:9f:d7:a2:71:e1:f1:c3:9a:48:be:81:
de:a9:e2:1b:66:c9:f1:a7:1c:93:c1:54:6b:d5:23:
b7:5f:9b:c5:ee:9f:ee:b4:c6:fd:6b:b8:f1:8e:ed:
d5:83:69:fe:29:72:a6:a9:da:45:74:ee:57:3b:d9:
b4:fe:76:70:60:f5:5f:fb:99:14:86:58:c5:c9:70:
2f:e1:52:fc:7b:18:60:8d:b4:51:4d:6d:e7:a1:be:
1e:aa:43:ea:87:c5:a3:1f:46:e2:0b:5b:72:3f:6e:
26:fa:e5:c2:fd:00:19:e6:55:89:f0:5c:d1:8f:e4:
e2:d4:61:ec:3f:2e:6f:69:e8:96:b7:5d:33:eb:3a:
39:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:80:77:D9:E8:0E:6F:35:9D:22:BC:91:F1:20:2A:34:2F:54:EA:C1
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xYB32egObzWdIryR8SAqNC9U6sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.247.0/24
31.58.249.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:27:19:c4:a0:dc:da:1f:9a:28:4c:a7:4c:20:f5:ce:44:c2:
ab:ef:ec:89:02:7f:1c:28:99:05:31:51:a8:6d:51:35:3c:79:
5c:e0:a2:ac:7e:81:a2:22:93:37:95:6f:b8:a7:7d:69:ab:dc:
74:91:ee:c0:ab:93:65:90:67:77:ee:fb:80:28:0b:af:92:0a:
80:53:ba:73:67:28:a5:e3:5a:53:37:88:27:2f:dc:9f:3e:80:
ca:35:d3:62:7a:10:d1:c3:e0:e2:2a:cd:fd:40:6d:05:98:1b:
4e:11:3f:9d:cd:21:4c:2b:59:8f:b9:8c:c5:4a:a9:20:5b:34:
29:8a:f4:92:2c:cd:9e:97:ed:2b:1e:75:03:5e:ef:49:22:57:
38:9e:53:01:76:ed:1c:8a:61:6e:b7:32:b5:5c:1e:b1:21:70:
50:ac:2e:f8:2e:5a:35:60:38:6c:17:75:9b:74:9e:64:d4:d2:
58:91:e3:7d:04:76:9f:2a:12:03:bd:1b:17:5e:0a:e3:0b:d7:
c4:61:95:c0:e4:17:f9:d1:e5:18:e7:c6:dd:71:11:b7:12:c6:
f1:1a:29:c8:56:24:65:7e:da:1e:38:df:9f:ee:ec:54:5e:c1:
19:9e:85:c1:94:bf:7d:7d:e3:ca:27:27:1e:32:dd:26:db:f1:
e6:fd:77:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:42 2025 by rpki-client