Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BExbHuSKckTom7y8PRnMvsTGgng.roa
File: BExbHuSKckTom7y8PRnMvsTGgng.roa (raw, json)
Hash identifier: e/0VB2YvlbJlEhNye3kJMPfuIiqElANyYGyWiAqb2T8=
Subject key identifier: 04:4C:5B:1E:E4:8A:72:44:E8:9B:BC:BC:3D:19:CC:BE:C4:C6:82:78
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019524C285D4DB9304BFBB6E0D8A4D93F76C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BExbHuSKckTom7y8PRnMvsTGgng.roa
Signing time: Thu 20 Feb 2025 19:08:02 +0000
ROA not before: Thu 20 Feb 2025 19:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 31.56.16.0/22 maxlen: 24
31.56.60.0/24 maxlen: 24
31.57.16.0/21 maxlen: 24
31.57.135.0/24 maxlen: 24
31.58.176.0/22 maxlen: 24
31.58.200.0/22 maxlen: 24
31.58.216.0/22 maxlen: 24
31.58.235.0/24 maxlen: 24
31.58.240.0/22 maxlen: 24
31.58.244.0/24 maxlen: 24
31.58.247.0/24 maxlen: 24
31.58.251.0/24 maxlen: 24
31.58.252.0/22 maxlen: 24
31.59.64.0/22 maxlen: 24
31.59.80.0/22 maxlen: 24
31.59.124.0/22 maxlen: 24
31.59.176.0/21 maxlen: 24
31.59.188.0/22 maxlen: 24
31.59.192.0/22 maxlen: 24
31.59.216.0/22 maxlen: 24
217.60.64.0/18 maxlen: 24
217.60.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Mar 2025 20:44:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:24:c2:85:d4:db:93:04:bf:bb:6e:0d:8a:4d:93:f7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 20 19:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=044c5b1ee48a7244e89bbcbc3d19ccbec4c68278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:99:a8:9b:6d:cb:6b:14:8a:73:89:65:d8:c3:
20:54:54:a2:12:f8:65:10:d5:f9:06:40:ae:9a:33:
82:a1:13:b7:b7:96:08:91:1c:31:f2:ec:32:60:10:
09:b5:20:8f:76:ee:f1:77:7d:25:09:5b:e7:bd:6c:
a5:45:7e:db:a9:17:f7:c3:5f:3f:59:5b:c4:8e:8c:
97:b3:42:2e:5d:b0:95:87:2b:aa:c8:f5:33:ab:1b:
87:6e:fc:96:8d:22:eb:af:14:21:32:6a:17:78:f9:
c6:9d:38:f2:e9:fc:72:6b:7d:3a:f6:62:03:09:38:
1e:24:9a:cd:2a:ed:fc:9d:b3:86:27:0a:1f:8d:50:
74:7c:eb:6c:38:df:b8:3a:9c:f6:ee:cf:e5:43:dd:
41:f9:57:c5:ef:ba:33:ac:1e:97:30:29:eb:b2:80:
b1:c3:a8:82:82:b9:88:57:9c:54:79:e6:8c:dc:b8:
30:07:ca:99:ee:8c:c7:ac:38:48:31:46:0e:8d:48:
f2:73:ec:3e:6e:7b:58:95:ab:9e:7d:b3:41:aa:88:
29:3d:48:f5:4c:74:5b:3d:d5:a4:f0:46:8e:63:55:
7b:0d:c5:aa:3d:30:11:39:6b:19:73:16:9d:a3:0c:
dd:f9:84:97:5e:84:31:3c:41:f0:55:b3:f3:82:98:
c0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4C:5B:1E:E4:8A:72:44:E8:9B:BC:BC:3D:19:CC:BE:C4:C6:82:78
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BExbHuSKckTom7y8PRnMvsTGgng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.16.0/22
31.56.60.0/24
31.57.16.0/21
31.57.135.0/24
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.235.0/24
31.58.240.0-31.58.244.255
31.58.247.0/24
31.58.251.0-31.58.255.255
31.59.64.0/22
31.59.80.0/22
31.59.124.0/22
31.59.176.0/21
31.59.188.0-31.59.195.255
31.59.216.0/22
217.60.64.0/18
217.60.187.0/24
Signature Algorithm: sha256WithRSAEncryption
71:53:05:4b:10:d7:88:d3:96:f9:5c:7a:59:fa:01:55:de:f9:
25:11:9c:c5:10:ca:54:9f:de:fb:33:5b:48:90:af:06:07:27:
5b:0c:1c:06:96:c8:b0:ca:e9:27:64:45:66:07:ef:23:54:57:
dc:31:45:2f:e4:ca:90:ae:04:af:b9:8a:78:a4:f5:3f:fb:b5:
1e:5e:e9:6b:8f:ce:10:01:13:f7:32:bb:c1:52:8e:e4:f2:f6:
64:cd:8d:9b:59:88:8c:cc:50:fb:88:7f:96:f0:0a:a5:f1:b8:
9c:16:bc:d4:a6:84:94:26:dd:5b:4c:2e:1a:b5:16:76:ad:e2:
77:60:54:3b:2c:5c:bc:48:b1:07:72:da:59:16:19:2c:1f:c2:
44:7b:42:47:8d:8a:72:ee:d8:eb:4e:08:e9:e1:99:4d:e7:3f:
07:52:6f:26:33:d7:3d:ad:87:d1:c3:a7:f2:76:61:79:bc:8c:
d2:7e:66:0e:04:0f:48:ce:09:34:2e:c1:8c:28:cd:21:e6:75:
11:d6:31:7f:e4:df:09:07:0f:38:4d:1d:d0:d4:b4:73:e7:cc:
76:86:db:ca:eb:e6:fd:5a:70:00:25:7b:bb:03:b0:a9:30:10:
4b:f9:1d:33:51:2d:40:80:71:67:f9:cb:f3:bc:69:9b:ba:1b:
22:50:93:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:51:28 2025 by rpki-client