Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6LF13x0O2mNghFrgXq1fEDy_LlU.roa
File: 6LF13x0O2mNghFrgXq1fEDy_LlU.roa (raw, json)
Hash identifier: 2w5yVgCmXJxsaSlXAOqFp7zEw61nOY1HtdgogOZspBM=
Subject key identifier: E8:B1:75:DF:1D:0E:DA:63:60:84:5A:E0:5E:AD:5F:10:3C:BF:2E:55
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195A07AFF3A70DAB40BC85AAF70EB33E93F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6LF13x0O2mNghFrgXq1fEDy_LlU.roa
Signing time: Sun 16 Mar 2025 19:42:50 +0000
ROA not before: Sun 16 Mar 2025 19:42:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.90.0/23 maxlen: 23
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.200.0/22 maxlen: 24
31.57.77.0/24 maxlen: 24
31.57.103.0/24 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.113.0/24 maxlen: 24
31.57.114.0/24 maxlen: 24
31.57.115.0/24 maxlen: 24
31.57.116.0/24 maxlen: 24
31.57.117.0/24 maxlen: 24
31.57.118.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.136.0/21 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.200.0/24 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
31.57.254.0/24 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.68.0/22 maxlen: 24
31.58.76.0/24 maxlen: 24
31.58.84.0/22 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.172.0/22 maxlen: 24
31.58.224.0/22 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.76.0/22 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.120.0/22 maxlen: 24
31.59.184.0/22 maxlen: 24
31.59.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Mar 2025 19:44:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a0:7a:ff:3a:70:da:b4:0b:c8:5a:af:70:eb:33:e9:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 16 19:42:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8b175df1d0eda6360845ae05ead5f103cbf2e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:93:86:3c:2f:cd:b6:68:85:c3:b0:17:74:
e2:d9:5a:45:bf:6a:94:4d:56:54:14:07:3c:c8:92:
e1:ec:cc:c4:60:56:fe:64:db:c8:a4:7c:aa:ee:54:
7d:e3:be:db:ef:9b:0f:2d:52:4d:3c:4f:fa:d7:97:
0e:fc:b7:b4:3d:9f:42:18:13:bb:18:5d:bb:2b:e9:
3d:81:4b:e7:8d:69:f8:b8:c4:8b:f6:ac:7e:08:4b:
91:d3:62:24:02:de:ab:45:4e:02:d7:11:f1:15:19:
54:58:91:55:6d:8f:50:bf:f4:6c:f0:68:ee:7d:de:
4b:24:22:d8:ce:d1:44:92:f2:14:70:e6:f7:3a:0d:
fb:ac:14:29:05:d6:7a:8a:4b:46:87:6d:ba:12:61:
64:b0:24:01:4e:cc:ba:bb:b5:15:a4:32:8b:0a:40:
5c:ea:0e:dd:21:69:ca:ff:dd:cc:1b:03:5c:89:2c:
0d:9f:04:2e:2d:01:2b:b5:05:24:6e:56:bf:ba:32:
ba:4d:21:32:f6:8e:2d:ae:03:4e:99:41:11:8a:59:
fc:b0:c0:cb:bf:98:68:44:43:3a:5c:93:c8:bd:84:
7a:de:40:d2:d4:50:51:10:ed:7a:81:43:1c:ac:c0:
c3:32:6a:4a:21:77:c0:84:8e:d7:26:b6:43:fa:c7:
78:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B1:75:DF:1D:0E:DA:63:60:84:5A:E0:5E:AD:5F:10:3C:BF:2E:55
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6LF13x0O2mNghFrgXq1fEDy_LlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.71.0/24
31.56.89.0-31.56.91.255
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.200.0/22
31.57.77.0/24
31.57.103.0-31.57.111.255
31.57.113.0-31.57.118.255
31.57.132.0/23
31.57.136.0/21
31.57.146.0/23
31.57.176.0/21
31.57.192.0/22
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.232.0/22
31.57.252.0/22
31.58.34.0/23
31.58.50.0/23
31.58.68.0/22
31.58.76.0/24
31.58.84.0/22
31.58.152.0/22
31.58.172.0/22
31.58.224.0/22
31.59.41.0/24
31.59.76.0/22
31.59.96.0/22
31.59.112.0/22
31.59.120.0/22
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:95:e0:32:25:7c:5f:e0:35:bc:37:1e:c7:95:72:6b:94:35:
bb:8a:42:3f:37:8f:45:e7:74:0c:f4:e9:d9:cc:23:c3:81:fd:
bd:d4:e7:a1:49:81:23:c8:e0:92:9b:9b:42:a4:9a:fa:c2:7f:
9e:02:7e:f4:b2:78:9f:7e:93:20:d6:74:55:59:bb:2c:7c:15:
83:09:7f:43:69:e9:e3:fc:72:25:db:33:e8:1e:8c:57:37:eb:
d6:99:ee:95:c0:e8:21:e1:a0:a3:72:ff:29:9d:a8:ec:97:97:
2b:d2:75:dc:25:46:e2:09:39:61:84:c1:75:81:0b:c7:a7:f8:
49:1b:8b:50:32:7a:aa:0d:b7:62:0b:c2:0e:63:79:2d:29:56:
e8:cb:65:1d:c5:ea:24:8b:c4:1f:ed:5d:8f:8e:3e:36:4b:5c:
3b:9f:4d:d4:4e:c4:65:ee:f6:bc:b8:db:2d:88:18:fc:b9:b8:
45:7e:9c:ce:30:a5:07:ea:49:65:24:ed:24:dc:4b:b5:2d:b8:
7b:39:29:b1:6b:b5:ae:8a:c0:fd:c7:ad:ab:dc:82:96:e6:3e:
0e:7d:52:27:ff:ec:68:fc:ed:9a:64:da:01:6c:d7:bb:8f:7b:
87:43:52:14:74:af:5a:4d:e2:69:31:d9:ad:45:5c:7c:24:64:
46:66:6e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:05:17 2025 by rpki-client