Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EAG4f49ttMSnojjgYdthc14_ALo.roa
File: EAG4f49ttMSnojjgYdthc14_ALo.roa (raw, json)
Hash identifier: ubbiXzjKRuJmSBDDRBWDJh+VdknA+xSupOgxb8TGiRg=
Subject key identifier: 10:01:B8:7F:8F:6D:B4:C4:A7:A2:38:E0:61:DB:61:73:5E:3F:00:BA
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193D0AAEC148033844B87D7849C24C8DB8A
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EAG4f49ttMSnojjgYdthc14_ALo.roa
Signing time: Mon 16 Dec 2024 18:11:22 +0000
ROA not before: Mon 16 Dec 2024 18:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.75.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.56.112.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.56.0/23 maxlen: 24
31.58.64.0/23 maxlen: 24
31.58.136.0/24 maxlen: 24
31.58.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 13:44:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d0:aa:ec:14:80:33:84:4b:87:d7:84:9c:24:c8:db:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 16 18:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1001b87f8f6db4c4a7a238e061db61735e3f00ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:38:0e:f7:cf:17:3d:6b:3a:cd:cc:71:f3:a4:
28:78:8d:89:ef:8d:5e:22:7a:34:35:0d:f0:74:ab:
6e:54:03:38:00:5c:fc:e4:3b:53:b1:37:c9:90:11:
07:42:5f:97:5c:c4:0b:8a:5a:98:df:3c:95:ff:d4:
c5:68:38:4d:96:4d:98:08:b8:a7:95:b9:54:99:2f:
88:ec:67:25:7d:4b:2e:38:ad:6e:6d:01:4a:b9:2f:
e1:a5:c7:2d:3e:e5:e0:c8:76:0c:19:5d:c9:0c:29:
be:ec:38:c2:46:85:67:2f:91:b6:fc:33:64:9b:8f:
1d:6e:1f:84:f7:76:3d:47:07:fd:f1:75:28:83:84:
25:2e:ec:55:36:36:c1:29:64:c0:b2:c6:24:2d:cd:
28:7d:00:5f:46:46:03:ce:5b:39:e5:ac:b8:63:0d:
98:e6:aa:51:2c:33:5e:48:08:7f:c1:b1:44:c1:45:
fc:18:b7:0c:c1:0c:0d:d9:6b:df:cb:cf:cb:95:9c:
42:9d:ff:79:5f:8f:e7:3b:ec:ba:a4:4c:60:49:47:
c2:9b:0a:53:1d:ce:58:a4:ad:53:09:53:d2:22:03:
e5:b1:a7:75:2d:80:44:59:2a:67:bb:86:b4:15:b4:
28:ee:c6:0f:d1:6a:58:1b:5c:66:23:7a:44:f1:98:
38:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:01:B8:7F:8F:6D:B4:C4:A7:A2:38:E0:61:DB:61:73:5E:3F:00:BA
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EAG4f49ttMSnojjgYdthc14_ALo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.75.0/24
31.56.86.0/24
31.56.107.0/24
31.56.112.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
31.58.50.0/23
31.58.56.0/23
31.58.64.0/23
31.58.136.0/24
31.58.153.0/24
Signature Algorithm: sha256WithRSAEncryption
78:2f:2f:d6:3f:c6:5f:d8:17:94:49:fd:d5:c3:9f:3c:b4:ce:
ea:fe:ce:66:22:b6:85:af:30:1e:96:23:6c:0a:1d:6c:93:7c:
04:76:a4:aa:94:e9:9d:04:b4:db:1d:7e:f1:72:50:4a:9d:f5:
30:c6:d4:23:a7:25:c1:80:90:a8:4c:15:23:f8:d7:b0:64:86:
9c:f6:52:7f:3e:fa:33:f1:28:c4:b0:f3:04:b6:49:29:79:6c:
6f:f4:7c:4b:29:40:15:48:a5:a3:d8:f3:60:1b:6b:57:7b:b1:
46:36:98:cb:d7:b1:af:7f:47:d8:43:4f:92:33:00:61:bf:24:
1b:f6:16:87:e0:6a:4d:25:77:c7:38:22:d5:69:fc:3f:5b:80:
44:02:10:fe:a7:bd:92:e1:be:83:96:fd:d1:53:c6:57:17:59:
57:aa:b3:4b:ef:e4:11:73:2e:63:61:cd:c0:57:b0:fb:17:59:
59:a6:48:3a:f8:d5:de:0e:ce:8f:95:1f:53:90:1f:f5:96:65:
6b:d9:e0:cb:95:20:ab:6e:4d:bc:ba:fa:af:4e:78:af:b1:93:
6f:3b:ff:b3:28:9a:07:bd:63:df:09:a3:b9:4e:2d:09:b9:be:
44:5b:f1:77:5a:8f:72:f6:d6:43:a8:2f:49:88:29:f9:37:8e:
60:df:0a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:45:28 2025 by rpki-client