Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9wHZe4O09LqBrKYfnXztqpycV6g.roa
File: 9wHZe4O09LqBrKYfnXztqpycV6g.roa (raw, json)
Hash identifier: RyGHVh/l/L+LX6zQeDbInd/nkOAitO0dlomGJpOWyrI=
Subject key identifier: F7:01:D9:7B:83:B4:F4:BA:81:AC:A6:1F:9D:7C:ED:AA:9C:9C:57:A8
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01955D30E520751086A4D91F0C764DFE40B6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9wHZe4O09LqBrKYfnXztqpycV6g.roa
Signing time: Mon 03 Mar 2025 18:07:20 +0000
ROA not before: Mon 03 Mar 2025 18:07:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.156.0/24 maxlen: 24
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.92.0/22 maxlen: 22
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.220.0/22 maxlen: 22
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Mar 2025 19:38:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5d:30:e5:20:75:10:86:a4:d9:1f:0c:76:4d:fe:40:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 3 18:07:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f701d97b83b4f4ba81aca61f9d7cedaa9c9c57a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:84:70:f1:6a:37:fd:b9:9f:bc:a1:41:bf:
cf:ae:fd:2a:6f:7d:cf:d1:0e:e0:c1:83:71:45:ab:
d3:a0:ec:4c:95:3f:6c:28:f7:f2:d7:8e:fb:4c:07:
df:3a:a2:dd:ce:c0:7b:68:de:34:42:b7:a5:b1:7d:
cd:82:55:21:c5:00:e2:80:ff:c6:69:c1:7e:8d:37:
7d:d8:3f:9e:fc:58:3a:9a:a9:47:d2:2f:30:bc:86:
3c:62:23:fd:21:1d:7a:15:55:1c:26:3e:e6:c5:ff:
e2:1f:c3:44:b7:7e:16:1d:44:d3:eb:ee:7f:7e:52:
32:b1:4c:7f:32:32:89:23:79:b4:98:e1:fc:af:5c:
57:02:51:68:b3:4e:1c:60:23:33:66:24:a3:d8:65:
5c:04:6a:eb:a0:1a:a8:2d:39:ed:34:d5:a0:37:5c:
7b:e8:90:51:c8:0b:c0:28:93:f3:49:1f:3f:47:e5:
34:4c:b9:85:2b:dc:b3:67:fe:45:d9:48:36:79:4e:
73:6a:e9:66:d4:a0:25:d8:05:e5:54:be:c2:1c:f0:
93:a7:80:13:af:85:0f:ad:4f:4a:26:b4:82:d8:00:
02:fa:11:c2:83:18:76:8c:05:17:08:17:32:b3:74:
06:18:3d:7a:48:82:46:69:e6:df:29:da:ad:e9:77:
96:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:01:D9:7B:83:B4:F4:BA:81:AC:A6:1F:9D:7C:ED:AA:9C:9C:57:A8
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9wHZe4O09LqBrKYfnXztqpycV6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.156.0/24
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.92.0/22
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.220.0-31.58.224.255
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
Signature Algorithm: sha256WithRSAEncryption
b5:f0:f3:81:e4:8f:53:54:68:82:2f:44:41:5f:80:8b:15:9a:
73:97:66:66:9e:20:68:89:d4:93:f5:96:58:fc:97:7f:b2:aa:
31:01:3e:ac:fb:cc:f5:a5:00:62:05:39:f5:8b:ab:d6:69:bf:
2b:a9:82:1e:8a:05:8f:29:df:89:f6:a1:ea:35:22:2f:3a:c6:
b0:bc:c3:d1:04:87:1b:81:9d:48:f0:43:86:c1:82:b5:c0:fb:
30:78:e3:fd:a5:71:59:c1:67:d7:8a:13:76:81:0a:db:66:aa:
e9:a8:fa:87:c1:27:3c:d5:2d:20:bf:3a:55:45:ff:a9:ba:65:
37:95:3f:0c:26:b6:7e:37:b9:60:0d:4a:d5:ee:36:76:32:62:
1e:d5:bc:45:ca:f4:1f:6d:92:d0:4d:99:48:4c:bd:04:68:4c:
19:d8:e7:08:55:90:62:ac:e5:0d:83:4b:f3:02:64:69:9b:5a:
c5:8b:7b:81:bc:88:63:82:2e:82:5f:b3:ff:c0:87:b5:42:fe:
da:fe:5c:5b:07:90:38:fa:62:0a:e1:e8:4a:d9:16:43:fd:8a:
2b:e0:61:da:74:95:3f:20:b0:4f:db:5f:c9:4d:d6:0f:e1:7f:
65:9d:1d:74:0b:ed:4a:dd:16:ca:5e:7d:d5:18:96:84:67:b0:
09:9b:0d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 19:49:11 2025 by rpki-client