Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-4eRyjCDyTavTPEYzT8i2K6Reo8.roa
File: 1-4eRyjCDyTavTPEYzT8i2K6Reo8.roa (raw, json)
Hash identifier: NX53WrCZEFRN3A/6oey8E232qvkMLNoRWZuRewQW06A=
Subject key identifier: FB:87:91:CA:30:83:C9:36:AF:4C:F1:18:CD:3F:22:D8:AE:91:7A:8F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019519FCF4F2826CB9118F31FB24CD4F37C1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-4eRyjCDyTavTPEYzT8i2K6Reo8.roa
Signing time: Tue 18 Feb 2025 16:56:02 +0000
ROA not before: Tue 18 Feb 2025 16:56:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.56.156.0/24 maxlen: 24
31.57.140.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.208.0/24 maxlen: 24
31.57.209.0/24 maxlen: 24
31.57.210.0/24 maxlen: 24
31.57.211.0/24 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.227.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Feb 2025 07:54:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:fc:f4:f2:82:6c:b9:11:8f:31:fb:24:cd:4f:37:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 18 16:56:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb8791ca3083c936af4cf118cd3f22d8ae917a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6d:3c:6d:4b:b0:7f:ee:c8:c3:12:fe:e9:f3:
f3:2e:fb:a0:d4:5a:fd:49:06:c8:b4:87:c1:63:d8:
c2:1d:6d:94:cf:c5:81:1e:68:80:53:9a:78:5a:95:
59:f7:1b:7f:f1:ac:fa:4e:da:b8:87:02:e4:f4:d4:
c4:19:70:35:b6:dc:be:c1:86:b1:33:e7:97:80:20:
a3:df:9b:9c:9a:1d:ba:95:35:73:ec:c2:04:88:16:
0f:6c:1f:ee:54:aa:e1:3e:48:90:58:a6:06:23:90:
45:4d:f2:53:9a:ad:02:93:a8:9a:8c:e2:58:1d:39:
ad:da:3f:3c:08:10:22:bd:e6:26:c1:cc:b5:e5:c8:
21:90:7f:3f:b4:9e:01:d6:20:2b:dd:18:8d:1e:09:
9a:86:55:86:b0:a7:dc:28:2d:90:3e:54:b3:c4:c4:
c7:3e:53:f3:7e:99:df:ab:74:3e:87:e3:10:d6:13:
70:9f:4e:74:4f:ed:e8:8b:39:39:26:1f:68:34:cf:
70:07:5c:ed:6d:38:0e:60:38:db:ef:e5:94:b0:6e:
6e:52:21:f4:59:e6:cc:9f:5c:0e:e7:9c:06:d7:9b:
aa:7e:cd:93:73:7e:b9:94:2e:90:2e:01:73:bb:1a:
7b:6a:6e:3a:12:3e:39:42:9a:29:d7:3b:1f:4a:ca:
20:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:87:91:CA:30:83:C9:36:AF:4C:F1:18:CD:3F:22:D8:AE:91:7A:8F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1-4eRyjCDyTavTPEYzT8i2K6Reo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.86.0/24
31.56.107.0/24
31.56.156.0/24
31.57.140.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.208.0-31.57.214.255
31.57.216.0/24
31.57.227.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:38:2c:1b:73:f9:61:28:f7:50:3b:53:9d:04:80:3d:79:17:
f0:fb:dc:e6:68:59:c0:2d:9f:02:a6:b2:9e:91:60:31:a6:cc:
3a:5f:f8:89:e1:2b:d2:64:fa:02:75:a4:f9:87:68:b6:82:fd:
62:d5:aa:2d:04:20:9f:fb:15:ed:60:7d:73:7b:98:61:0d:98:
51:9b:3c:2a:0f:b4:2a:53:01:28:81:c1:17:0d:33:b7:dc:c8:
39:dc:aa:89:fc:e4:97:2d:37:3e:2e:2d:93:0b:d2:ec:e3:80:
3a:13:60:af:36:1f:b8:96:07:75:ae:c1:c2:f6:c9:73:b2:49:
75:c6:65:54:b7:9a:16:34:59:7a:0a:3b:cd:86:7f:3a:21:b3:
14:e6:27:32:c7:75:1d:25:77:72:25:a6:0f:1c:34:13:e1:c0:
f6:e9:fd:4e:4e:74:92:79:de:92:28:0c:59:b1:2e:82:a5:dc:
50:87:9a:23:24:36:72:47:dc:1b:29:7c:d2:77:11:50:2d:bf:
e4:1e:09:ab:c6:23:36:d4:a6:56:77:13:16:c8:56:7d:4c:d3:
a8:8e:44:c7:90:2d:3d:1c:95:1d:3a:8d:a6:c1:6b:ef:97:0b:
d6:c8:8c:18:b0:8a:19:79:ac:9e:f6:b4:33:34:84:83:a4:96:
98:2a:ae:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:55:32 2025 by rpki-client