Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KlHOtyoANg7XSL3Bdf186ARimVM.roa
File: KlHOtyoANg7XSL3Bdf186ARimVM.roa (raw, json)
Hash identifier: 5S0DvQOXc+tzhwroTN7Mb+XCvyfd9C0XrkgUUcj1Ivk=
Subject key identifier: 2A:51:CE:B7:2A:00:36:0E:D7:48:BD:C1:75:FD:7C:E8:04:62:99:53
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0196241364001CDDA497C1AE992F3E648102
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KlHOtyoANg7XSL3Bdf186ARimVM.roa
Signing time: Fri 11 Apr 2025 08:59:32 +0000
ROA not before: Fri 11 Apr 2025 08:59:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.23.0/24 maxlen: 24
31.56.24.0/24 maxlen: 24
31.56.32.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.90.0/23 maxlen: 23
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.200.0/22 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.103.0/24 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.113.0/24 maxlen: 24
31.57.114.0/24 maxlen: 24
31.57.120.0/22 maxlen: 24
31.57.124.0/22 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.136.0/21 maxlen: 24
31.57.143.0/24 maxlen: 24
31.57.146.0/23 maxlen: 24
31.57.168.0/22 maxlen: 24
31.57.168.0/23 maxlen: 23
31.57.176.0/21 maxlen: 24
31.57.184.0/22 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.196.0/24 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.208.0/20 maxlen: 24
31.57.208.0/22 maxlen: 22
31.57.215.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.57.217.0/24 maxlen: 24
31.57.219.0/24 maxlen: 24
31.57.221.0/24 maxlen: 24
31.57.224.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.57.238.0/24 maxlen: 24
31.57.252.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.40.0/24 maxlen: 24
31.58.50.0/23 maxlen: 24
31.58.68.0/22 maxlen: 24
31.58.76.0/24 maxlen: 24
31.58.77.0/24 maxlen: 24
31.58.84.0/22 maxlen: 24
31.58.92.0/22 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.153.0/24 maxlen: 24
31.58.172.0/22 maxlen: 24
31.58.220.0/22 maxlen: 22
31.58.224.0/22 maxlen: 24
31.59.71.0/24 maxlen: 24
31.59.76.0/22 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.120.0/22 maxlen: 24
31.59.136.0/21 maxlen: 24
31.59.144.0/21 maxlen: 24
31.59.152.0/21 maxlen: 24
31.59.160.0/21 maxlen: 24
31.59.168.0/21 maxlen: 24
31.59.224.0/22 maxlen: 22
31.59.232.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 12 Apr 2025 07:53:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:13:64:00:1c:dd:a4:97:c1:ae:99:2f:3e:64:81:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 11 08:59:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2a51ceb72a00360ed748bdc175fd7ce804629953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3c:30:d4:98:48:70:40:64:a0:ca:20:d1:bf:
23:33:19:da:41:ab:72:68:10:4a:eb:14:95:43:71:
ed:a0:34:77:81:a9:cb:26:ca:98:98:a6:ff:95:cd:
03:f6:0e:c7:e1:76:6c:15:f6:34:bf:7f:6d:4b:35:
28:c3:85:01:73:fe:10:6e:64:24:b0:4a:00:a1:38:
80:be:51:87:89:d1:9f:4c:ac:9e:96:b6:0a:06:cc:
5f:24:f5:fd:63:fd:2c:c3:88:e1:fe:28:15:56:0c:
1a:20:98:68:47:4b:3b:3a:34:ac:fa:af:aa:1b:23:
62:fd:c5:03:47:f1:81:e3:50:c7:ac:75:c4:ab:c6:
e2:7c:f0:56:7d:c8:13:92:b2:b9:cb:88:cb:1b:69:
79:ae:21:2c:a4:52:82:e0:2d:0d:cf:a3:6e:da:07:
6c:64:54:9b:75:40:a2:ff:c0:e2:64:a3:9d:10:a1:
6a:b1:9a:37:f2:7c:e3:bd:05:9c:90:25:7f:d5:3f:
dc:72:f7:dc:9b:aa:c1:ba:7f:d2:c1:32:b7:e4:8d:
3f:63:f8:44:eb:0d:31:e7:e6:79:10:a8:5b:14:34:
58:d2:65:0e:73:55:20:2c:79:26:db:c5:07:16:32:
2f:a6:b3:f8:3b:22:92:ad:91:97:f3:32:70:94:66:
5a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:51:CE:B7:2A:00:36:0E:D7:48:BD:C1:75:FD:7C:E8:04:62:99:53
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KlHOtyoANg7XSL3Bdf186ARimVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.23.0-31.56.24.255
31.56.32.0/24
31.56.57.0/24
31.56.67.0/24
31.56.71.0/24
31.56.90.0/23
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.200.0/22
31.57.103.0-31.57.111.255
31.57.113.0-31.57.114.255
31.57.120.0/21
31.57.132.0/23
31.57.136.0/21
31.57.146.0/23
31.57.168.0/22
31.57.176.0-31.57.187.255
31.57.192.0-31.57.196.255
31.57.200.0/23
31.57.208.0-31.57.227.255
31.57.232.0/22
31.57.238.0/24
31.57.252.0/22
31.58.34.0/23
31.58.40.0/24
31.58.50.0/23
31.58.68.0/22
31.58.76.0/23
31.58.84.0/22
31.58.92.0/22
31.58.152.0/22
31.58.172.0/22
31.58.220.0-31.58.227.255
31.59.71.0/24
31.59.76.0/22
31.59.96.0/22
31.59.112.0/22
31.59.120.0/22
31.59.136.0-31.59.175.255
31.59.224.0/22
31.59.232.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:b2:c6:ef:38:30:e9:8f:29:b7:b7:45:d2:ac:b1:bc:4c:ae:
9c:5d:2b:89:3a:bd:ff:b7:c5:ab:32:0d:ff:74:37:e6:7b:0f:
c9:83:c8:68:2e:e3:23:64:99:c4:df:0a:5d:ed:4a:dc:d5:a1:
32:61:3d:ce:98:74:ca:8c:17:fc:61:fb:bf:d6:d2:bf:2a:0c:
d5:3a:8f:bb:b1:b3:b6:5d:46:54:82:fb:b2:81:3d:b5:1a:ad:
04:38:a2:c3:41:c6:30:17:17:ca:d1:c5:50:8b:09:6b:56:a7:
4e:73:14:d3:23:53:b8:d9:c4:68:4c:99:89:b8:da:f2:9b:4c:
92:d7:a7:c7:da:ea:66:3c:ff:a3:d8:78:f4:6b:e6:7b:c8:e5:
7e:0c:1f:59:35:57:fe:b1:be:d8:06:a6:1d:a1:e4:3a:86:06:
0a:3e:dc:3e:87:d4:6c:94:80:68:94:70:ab:92:e5:53:ab:5f:
64:e5:60:ef:ca:e9:28:46:8d:b8:93:21:77:a8:e5:6e:27:b4:
49:d2:f9:e7:fa:f9:ed:a7:4e:ae:7f:81:e8:65:3f:4d:96:8e:
fb:65:af:b6:a4:b8:f1:ee:35:51:32:04:a3:d8:d5:ac:4b:32:
8c:ff:98:40:d2:f4:46:35:20:55:0e:33:c3:ca:b3:09:dc:26:
0b:1c:aa:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:30:29 2025 by rpki-client