Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yprLceda1urGIAkL9QgmbuFnnu4.roa
File: yprLceda1urGIAkL9QgmbuFnnu4.roa (raw, json)
Hash identifier: frBNj6mFGnMz6bY4ydOiEfmxeG36l6Hzt5fcChBfx0U=
Subject key identifier: CA:9A:CB:71:E7:5A:D6:EA:C6:20:09:0B:F5:08:26:6E:E1:67:9E:EE
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192ED8D1E9CF43C57DB378A3EA89837B3A8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yprLceda1urGIAkL9QgmbuFnnu4.roa
Signing time: Sat 02 Nov 2024 15:45:01 +0000
ROA not before: Sat 02 Nov 2024 15:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.39.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.66.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.112.0/21 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.0.0/24 maxlen: 24
31.57.1.0/24 maxlen: 24
31.57.2.0/24 maxlen: 24
31.57.3.0/24 maxlen: 24
31.57.4.0/24 maxlen: 24
31.57.5.0/24 maxlen: 24
31.57.6.0/24 maxlen: 24
31.57.7.0/24 maxlen: 24
31.57.8.0/24 maxlen: 24
31.57.9.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.134.0/24 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.240.0/22 maxlen: 24
31.57.244.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 10:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ed:8d:1e:9c:f4:3c:57:db:37:8a:3e:a8:98:37:b3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 2 15:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca9acb71e75ad6eac620090bf508266ee1679eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:25:c7:2e:64:cf:58:18:b8:1c:43:fd:73:61:
d1:9c:8c:38:98:82:c5:72:ea:e3:79:f6:b6:f2:03:
2b:07:7d:47:9d:23:01:11:ec:3f:de:43:ed:60:a3:
a9:cf:a6:f3:9a:42:21:7e:c0:94:82:ef:ae:45:f5:
da:09:43:54:9f:be:70:a3:82:68:3b:24:dd:9c:48:
46:1b:b3:be:c1:6a:14:c2:9a:77:7f:35:18:df:98:
d4:d4:19:53:6d:87:02:d8:99:5f:1b:ac:f4:e2:bf:
90:54:c6:53:0b:4c:35:1f:47:99:8a:8b:37:68:83:
87:55:69:90:fb:3d:cc:df:94:6b:01:b0:8a:2d:cd:
b8:63:7c:ee:15:1e:d5:7a:bf:98:dc:ca:4c:60:6d:
83:fd:95:e4:3d:62:bd:f7:83:ec:3a:31:4a:01:97:
64:5c:08:6a:01:f4:81:a9:6a:dc:ef:09:f3:01:ab:
5d:f3:d5:2f:88:70:63:57:63:49:ed:dd:25:27:a1:
06:8c:05:7c:d4:5a:d2:ec:82:fb:e9:c5:36:86:e8:
fe:0b:48:d0:66:58:1c:d5:17:32:18:0c:06:14:b8:
c3:f5:e3:3b:23:83:b3:ad:0a:1d:6c:b5:ad:a3:f1:
88:e3:4c:a5:5f:35:8e:57:79:ff:2a:ff:9a:bc:1c:
92:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9A:CB:71:E7:5A:D6:EA:C6:20:09:0B:F5:08:26:6E:E1:67:9E:EE
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yprLceda1urGIAkL9QgmbuFnnu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.39.0/24
31.56.42.0/23
31.56.66.0/24
31.56.85.0/24
31.56.89.0/24
31.56.112.0-31.56.123.255
31.56.127.0/24
31.57.0.0-31.57.9.255
31.57.132.0-31.57.134.255
31.57.176.0/21
31.57.192.0/22
31.57.224.0/22
31.57.232.0/22
31.57.240.0/21
31.57.252.0/22
Signature Algorithm: sha256WithRSAEncryption
08:9b:95:ce:66:9d:db:da:22:ca:7a:91:e5:a4:cb:77:f0:45:
a2:ad:e3:af:95:c3:2d:b9:ae:29:6f:4c:cf:8d:ee:27:c3:50:
41:c0:a7:ad:2b:9c:54:68:0a:ec:7a:9d:38:18:f9:ac:6d:ce:
d3:29:9a:3a:69:08:3a:55:ba:70:55:9a:52:2d:78:d1:ee:99:
88:c1:5f:d6:a0:d1:00:88:1e:d4:81:ec:00:c7:30:0b:75:44:
cb:44:7b:ba:61:a0:73:ab:fa:03:30:bf:05:66:54:1e:13:45:
9e:1d:c7:2c:c1:1f:f9:af:91:8e:ef:18:cc:b7:6b:87:69:c7:
ca:d0:41:08:1d:cb:cf:93:78:cc:01:81:61:2c:fc:5a:ed:e1:
bf:dd:67:89:ff:28:f1:5a:05:e5:3c:d8:74:55:56:97:64:87:
eb:44:50:78:e6:40:6e:81:50:6c:16:a7:a0:dd:97:0d:42:e2:
a3:e4:1c:78:16:d2:1d:75:06:ec:1d:67:b0:53:29:ff:85:0f:
05:01:50:26:3e:3c:fa:66:56:5a:24:31:73:6c:93:16:18:94:
08:83:a3:84:36:d9:a4:73:a9:66:85:1f:10:1b:9b:c2:f0:54:
ea:5b:97:79:cc:ac:53:fd:f6:e0:69:ff:66:0e:57:3e:c2:74:
4f:67:5b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 13:26:32 2024 by rpki-client on console-fra.rpki-client.org