Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7GeSMW0dX0f9Fl36UzMBmOGX1UQ.roa
File: 7GeSMW0dX0f9Fl36UzMBmOGX1UQ.roa (raw, json)
Hash identifier: NrdzT2URFqlegqwYR4CEZpcE+6RBFsaiKMxtDoNnYvw=
Subject key identifier: EC:67:92:31:6D:1D:5F:47:FD:16:5D:FA:53:33:01:98:E1:97:D5:44
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01944175DC53A1E25A71DB513C885634D988
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7GeSMW0dX0f9Fl36UzMBmOGX1UQ.roa
Signing time: Tue 07 Jan 2025 15:50:30 +0000
ROA not before: Tue 07 Jan 2025 15:50:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.59.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.112.0/24 maxlen: 24
31.56.113.0/24 maxlen: 24
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.126.0/24 maxlen: 24
31.56.157.0/24 maxlen: 24
31.56.200.0/22 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.198.0/24 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.252.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.136.0/24 maxlen: 24
31.58.142.0/24 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.59.41.0/24 maxlen: 24
31.59.42.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.58.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.97.0/24 maxlen: 24
31.59.112.0/22 maxlen: 22
31.59.112.0/24 maxlen: 24
31.59.113.0/24 maxlen: 24
31.59.130.0/24 maxlen: 24
31.59.184.0/22 maxlen: 24
31.59.228.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.244.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 07:10:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:41:75:dc:53:a1:e2:5a:71:db:51:3c:88:56:34:d9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 7 15:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec6792316d1d5f47fd165dfa53330198e197d544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:be:2c:b4:43:c7:01:ad:79:54:35:2a:80:eb:
be:82:7e:33:89:58:a4:cc:72:06:b5:8a:ce:01:93:
bf:d4:ed:39:c5:3d:ab:e2:e4:4a:03:ac:54:9d:9c:
aa:32:b7:7d:69:99:e4:5a:5e:d2:37:0e:2c:a2:82:
4d:7c:d5:03:69:73:36:e6:a8:d5:99:12:51:2a:10:
3a:fa:2f:f8:14:a6:46:27:c6:cb:1e:36:ce:b2:76:
30:3a:76:22:3a:4c:cc:eb:07:41:8c:c9:82:ce:4c:
ce:c8:4f:d8:1c:0f:b0:f5:3c:e0:48:14:bf:3a:5a:
4f:70:73:f1:ec:e5:a4:c0:d2:d7:83:89:02:7e:f0:
96:82:8a:23:53:31:c4:5c:7f:a4:b0:72:67:3d:a8:
3e:04:5e:13:49:40:19:ff:18:92:bb:81:90:16:a3:
57:b8:42:c7:b4:9d:81:7a:5d:3f:56:ab:bc:42:ae:
0b:99:1d:7c:4a:34:85:74:3f:e6:e4:61:de:fd:4a:
0a:45:74:4f:93:7f:c9:3f:44:9d:ae:60:54:c0:47:
55:c9:1e:0b:33:f6:f5:98:06:5f:44:c8:04:61:20:
50:f4:ce:cc:62:07:f5:6c:04:d5:c2:23:7d:96:75:
1c:b8:a7:27:61:26:e9:05:12:ff:f4:1b:b0:72:85:
9a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:67:92:31:6D:1D:5F:47:FD:16:5D:FA:53:33:01:98:E1:97:D5:44
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7GeSMW0dX0f9Fl36UzMBmOGX1UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.59.0/24
31.56.67.0/24
31.56.74.0/23
31.56.89.0/24
31.56.104.0-31.56.115.255
31.56.118.0-31.56.123.255
31.56.126.0/24
31.56.157.0/24
31.56.200.0/22
31.57.132.0/23
31.57.146.0/23
31.57.176.0/21
31.57.191.0-31.57.195.255
31.57.198.0/24
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.232.0/22
31.57.252.0/22
31.58.34.0/23
31.58.136.0/24
31.58.142.0/24
31.58.152.0/22
31.58.157.0/24
31.58.163.0/24
31.58.230.0/23
31.59.41.0-31.59.43.255
31.59.56.0-31.59.58.255
31.59.96.0/22
31.59.112.0/22
31.59.130.0/24
31.59.184.0/22
31.59.228.0/23
31.59.231.0/24
31.59.244.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:48:e5:e9:3d:8e:f1:8a:01:35:24:68:67:f6:b4:42:53:ee:
dd:53:72:03:b0:14:0c:40:ee:46:7e:04:c4:4b:93:b6:41:c3:
a5:9f:7e:c6:d1:90:b5:45:67:4f:85:3f:76:ea:04:8e:05:dd:
11:f8:aa:89:57:89:1c:4f:07:ef:e3:89:80:ce:d3:a5:05:c6:
ad:09:f2:90:9d:f5:ef:bd:46:2f:8e:d2:46:00:99:91:ce:40:
c9:91:48:ca:73:38:52:c7:7f:e8:8b:33:d3:a4:2c:90:d2:c9:
85:f8:56:04:f1:bd:8e:fd:22:8c:a6:55:76:9c:d1:63:fc:92:
d0:a2:ae:e4:e4:e6:8b:5e:4b:a9:ee:f4:d6:d2:01:3d:4a:c5:
c2:6d:30:c8:3e:21:71:00:91:0b:43:94:e7:bf:20:fe:cc:dd:
af:00:b2:98:e1:43:84:cd:c0:ad:01:dc:64:b9:af:00:f0:8a:
0b:8a:16:2d:9e:60:6d:b5:78:13:90:95:2e:45:42:59:d6:87:
fb:db:c0:4c:70:a8:65:14:9c:6e:e4:a0:e6:56:9b:1e:d0:51:
d6:02:81:41:5e:a8:db:20:c9:31:44:05:7c:f0:38:3c:62:46:
17:ca:eb:56:a6:12:9c:ab:2c:71:d8:e7:1e:5b:f7:38:42:4d:
be:60:88:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:55:54 2025 by rpki-client