Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yoo7JxvT4-T9UYqedEbuPzDvwHM.roa
File: yoo7JxvT4-T9UYqedEbuPzDvwHM.roa (raw, json)
Hash identifier: SI0Rm3x7j1HULXFmwlNePaDEtiN+Te+NvBLwwbiWQT8=
Subject key identifier: CA:8A:3B:27:1B:D3:E3:E4:FD:51:8A:9E:74:46:EE:3F:30:EF:C0:73
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01948284C5A8FFA6D336D2D5A7D96B4D37E6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yoo7JxvT4-T9UYqedEbuPzDvwHM.roa
Signing time: Mon 20 Jan 2025 07:02:06 +0000
ROA not before: Mon 20 Jan 2025 07:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 31.56.52.0/22 maxlen: 22
31.57.196.0/24 maxlen: 24
31.57.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 08:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:82:84:c5:a8:ff:a6:d3:36:d2:d5:a7:d9:6b:4d:37:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 20 07:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca8a3b271bd3e3e4fd518a9e7446ee3f30efc073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e4:37:ed:7d:33:1d:d3:3a:4a:e2:fc:c4:6c:
ce:5e:ce:fc:ae:8c:92:99:79:83:6e:9a:83:4d:e7:
4d:cc:8b:c0:68:01:5d:a1:c8:fd:3e:5b:fa:71:63:
40:4b:ef:03:93:74:df:05:1d:7a:8f:0e:80:84:13:
2f:e6:ed:86:ff:cf:83:a4:36:89:b0:92:4d:0a:ab:
6a:42:f9:d7:82:62:f5:31:a0:5c:4d:31:91:35:e6:
11:e6:62:ee:44:9a:54:f6:f0:5b:b1:e9:6a:5e:60:
f1:a7:b1:fc:6a:bd:56:68:76:94:be:04:20:d9:76:
af:52:7f:17:df:ea:1c:da:9d:4f:58:d1:67:d8:5e:
59:f4:f8:0b:03:f7:63:fe:4e:fa:c2:9f:b5:a3:1b:
c1:dd:ae:8e:0b:3d:d3:b6:62:55:de:68:ee:54:93:
cc:d8:a7:de:de:7d:57:98:c2:02:5f:b4:5a:d8:b4:
a3:9b:c4:a9:b7:e9:5b:f0:a5:ef:e2:a3:2c:2d:18:
0c:10:d6:f8:8e:8a:c3:58:35:45:22:a4:34:49:6e:
03:7c:99:5b:1e:ff:89:4b:da:99:88:38:d4:72:11:
e4:15:a8:26:77:1e:02:15:65:a0:7a:38:89:6a:41:
36:1b:e8:af:9d:1a:40:56:fe:86:0c:2b:f8:3d:4c:
65:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8A:3B:27:1B:D3:E3:E4:FD:51:8A:9E:74:46:EE:3F:30:EF:C0:73
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yoo7JxvT4-T9UYqedEbuPzDvwHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.52.0/22
31.57.196.0/24
31.57.199.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:7b:d1:20:f6:6a:f0:57:ab:a3:1b:9b:38:36:82:73:79:50:
97:00:6d:23:50:6d:6f:22:f5:9f:19:d4:7e:f3:d7:09:8f:c4:
6d:1b:0e:fd:9b:dd:81:82:70:11:78:45:dc:df:e4:8d:cd:0f:
25:cd:e2:a3:5a:55:7a:60:c9:4b:ae:c3:08:3f:4e:24:b1:cc:
cd:d4:4c:dc:85:a0:53:a3:ff:f2:a3:a9:91:98:d5:c4:85:5f:
53:1b:a2:c8:50:d8:28:6f:4e:37:53:cc:41:3e:c0:13:6b:ee:
df:c6:0c:41:6e:67:3e:87:f4:00:11:90:b4:34:40:cd:f3:7e:
a2:da:bb:c8:13:0d:20:8b:b4:84:52:50:14:a9:6a:5f:96:78:
43:93:8c:6c:5f:78:c8:88:2c:73:ad:24:bc:4e:45:98:dd:40:
d9:ef:5c:45:1d:25:f9:99:80:e3:58:2f:2d:8a:e7:83:5c:21:
e0:7b:ed:4a:97:cc:62:50:69:b2:51:f6:4c:ba:46:29:06:4e:
77:9e:dd:91:07:67:99:d8:1b:9b:a8:d3:41:ba:91:c9:f2:fa:
ae:6a:2c:5f:6a:5b:e6:b8:c5:a0:5f:ba:97:87:11:ed:18:60:
15:68:25:f2:84:6d:0f:cf:dd:19:a7:91:02:9c:41:c7:e6:97:
5d:a5:18:95
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZSChMWo/6bTNtLVp9lrTTfmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMTIwMDcwMjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYThhM2IyNzFiZDNlM2U0ZmQ1MThhOWU3NDQ2ZWUzZjMwZWZjMDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOQ37X0zHdM6SuL8xGzOXs78royS
mXmDbpqDTedNzIvAaAFdocj9Plv6cWNAS+8Dk3TfBR16jw6AhBMv5u2G/8+DpDaJ
sJJNCqtqQvnXgmL1MaBcTTGRNeYR5mLuRJpU9vBbselqXmDxp7H8ar1WaHaUvgQg
2XavUn8X3+oc2p1PWNFn2F5Z9PgLA/dj/k76wp+1oxvB3a6OCz3TtmJV3mjuVJPM
2Kfe3n1XmMICX7Ra2LSjm8Spt+lb8KXv4qMsLRgMENb4jorDWDVFIqQ0SW4DfJlb
Hv+JS9qZiDjUchHkFagmdx4CFWWgejiJakE2G+ivnRpAVv6GDCv4PUxl0wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMqKOycb0+Pk/VGKnnRG7j8w78BzMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEveW9vN0p4dlQ0LVQ5VVlxZWRFYnVQekR2d0hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCHzg0AwQA
HznEAwQAHznHMA0GCSqGSIb3DQEBCwUAA4IBAQC2e9Eg9mrwV6ujG5s4NoJzeVCX
AG0jUG1vIvWfGdR+89cJj8RtGw79m92BgnAReEXc3+SNzQ8lzeKjWlV6YMlLrsMI
P04ksczN1EzchaBTo//yo6mRmNXEhV9TG6LIUNgob043U8xBPsATa+7fxgxBbmc+
h/QAEZC0NEDN836i2rvIEw0gi7SEUlAUqWpflnhDk4xsX3jIiCxzrSS8TkWY3UDZ
71xFHSX5mYDjWC8tiueDXCHge+1Kl8xiUGmyUfZMukYpBk53nt2RB2eZ2BubqNNB
upHJ8vquaixfalvmuMWgX7qXhxHtGGAVaCXyhG0Pz90Zp5ECnEHH5pddpRiV
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:45:39 2025 by rpki-client