Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IPem1qqYJYxBQ_r1vZjKYzV0Igo.roa
File: IPem1qqYJYxBQ_r1vZjKYzV0Igo.roa (raw, json)
Hash identifier: hkiY42iuS4lKfOoSxTjIdrju6nOHZGfUj+cxE/bvL4I=
Subject key identifier: 20:F7:A6:D6:AA:98:25:8C:41:43:FA:F5:BD:98:CA:63:35:74:22:0A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193642D4B2B128AA8CDD6210246076B03F5
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IPem1qqYJYxBQ_r1vZjKYzV0Igo.roa
Signing time: Mon 25 Nov 2024 16:35:10 +0000
ROA not before: Mon 25 Nov 2024 16:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 31.58.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Nov 2024 07:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:64:2d:4b:2b:12:8a:a8:cd:d6:21:02:46:07:6b:03:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 25 16:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20f7a6d6aa98258c4143faf5bd98ca633574220a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5b:ae:3f:7a:01:2a:47:34:46:d7:e7:08:0d:
cf:c4:b5:a4:09:0e:fd:34:69:0a:4f:63:c3:c6:35:
ed:90:f0:0e:eb:55:ad:9c:eb:61:00:44:0b:4e:d7:
42:f9:bc:fb:ad:4e:ec:a8:79:ea:07:58:f8:a7:b1:
69:0b:b1:11:ca:85:45:e1:dd:ff:80:1c:d7:6c:96:
d3:33:ef:b1:11:11:2d:14:9d:23:47:c0:cc:50:41:
4e:83:3c:60:47:d0:04:7b:4c:bf:d6:80:af:78:ff:
a8:a6:19:7e:24:d7:39:10:54:9d:7d:8a:1e:d5:c5:
3f:04:b3:bf:8c:6a:39:1a:33:ed:20:35:87:6a:50:
38:3e:4b:08:d7:5f:6c:99:c7:76:ba:f6:b7:8c:f6:
c1:22:ce:cd:38:d3:bb:5e:25:ef:f9:41:0f:c3:f0:
2a:cd:de:59:bb:50:8e:bc:39:57:1e:7a:64:64:6f:
fd:f0:ff:8f:4c:64:90:fd:5e:8b:bb:a7:c3:fc:5e:
5f:cd:40:c7:de:d2:a3:9d:9d:40:7e:65:9f:5a:30:
0b:af:94:35:67:14:94:3f:b7:a2:ed:96:4b:4c:23:
45:4e:f6:32:8c:93:94:0d:ee:d7:a4:a2:2d:40:b8:
96:51:22:e6:bc:c2:f5:cd:ce:5e:18:7d:b5:50:b3:
81:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F7:A6:D6:AA:98:25:8C:41:43:FA:F5:BD:98:CA:63:35:74:22:0A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/IPem1qqYJYxBQ_r1vZjKYzV0Igo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:88:f0:e0:d6:73:b8:c8:79:d5:f0:8f:0b:5b:f8:b9:63:90:
67:93:c3:cd:8c:a7:6f:e4:b4:3a:2f:9a:71:3e:e8:40:3a:95:
d4:b7:26:c0:0f:d6:a1:80:ba:7a:b2:ff:a9:7a:89:c7:a6:d7:
61:44:d6:77:0f:17:66:84:e7:02:0f:e0:a0:22:42:13:66:bc:
b7:87:df:c2:f7:3b:6a:54:b2:8c:56:57:ac:82:dd:09:dd:e3:
32:81:94:ed:bb:68:4b:87:d8:01:98:be:9b:b8:4a:c0:a1:21:
1a:79:8e:d5:03:3a:84:46:2d:45:ec:e4:36:1e:56:17:be:72:
0a:1d:2c:8e:5f:54:d0:09:c2:78:fe:76:71:d6:06:61:d8:34:
e1:2d:b1:07:f3:eb:45:9a:85:3d:25:e7:c9:0d:df:de:61:90:
e1:9e:bd:16:ce:63:f8:c0:8d:57:a3:21:62:5a:dd:d2:66:93:
4c:58:bf:e8:55:91:12:ac:d3:77:30:7a:64:72:9e:b9:54:f8:
12:a8:da:54:bc:db:fe:99:f3:c1:90:59:f8:54:2e:cd:57:aa:
70:cb:1d:a0:f8:3b:38:ef:4d:af:f6:21:c3:82:0d:74:31:da:
3e:75:2b:dd:b3:86:5a:f6:af:95:7f:76:7e:ca:8d:fd:96:6e:
8a:f8:5d:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNkLUsrEoqozdYhAkYHawP1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMTI1MTYzNTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGY3YTZkNmFhOTgyNThjNDE0M2ZhZjViZDk4Y2E2MzM1NzQyMjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5luuP3oBKkc0RtfnCA3PxLWkCQ79
NGkKT2PDxjXtkPAO61WtnOthAEQLTtdC+bz7rU7sqHnqB1j4p7FpC7ERyoVF4d3/
gBzXbJbTM++xEREtFJ0jR8DMUEFOgzxgR9AEe0y/1oCveP+ophl+JNc5EFSdfYoe
1cU/BLO/jGo5GjPtIDWHalA4PksI119smcd2uva3jPbBIs7NONO7XiXv+UEPw/Aq
zd5Zu1COvDlXHnpkZG/98P+PTGSQ/V6Lu6fD/F5fzUDH3tKjnZ1AfmWfWjALr5Q1
ZxSUP7ei7ZZLTCNFTvYyjJOUDe7XpKItQLiWUSLmvML1zc5eGH21ULOBUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCD3ptaqmCWMQUP69b2YymM1dCIKMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvSVBlbTFxcVlKWXhCUV9yMXZaaktZelYwSWdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzr0MA0G
CSqGSIb3DQEBCwUAA4IBAQC3iPDg1nO4yHnV8I8LW/i5Y5Bnk8PNjKdv5LQ6L5px
PuhAOpXUtybAD9ahgLp6sv+peonHptdhRNZ3DxdmhOcCD+CgIkITZry3h9/C9ztq
VLKMVlesgt0J3eMygZTtu2hLh9gBmL6buErAoSEaeY7VAzqERi1F7OQ2HlYXvnIK
HSyOX1TQCcJ4/nZx1gZh2DThLbEH8+tFmoU9JefJDd/eYZDhnr0WzmP4wI1XoyFi
Wt3SZpNMWL/oVZESrNN3MHpkcp65VPgSqNpUvNv+mfPBkFn4VC7NV6pwyx2g+Ds4
702v9iHDgg10Mdo+dSvds4Za9q+Vf3Z+yo39lm6K+F1r
-----END CERTIFICATE-----
Generated at Mon Apr 28 02:12:48 2025 by rpki-client