Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LBTJyN91epGwo5zoB0QOCYXw644.roa
File: LBTJyN91epGwo5zoB0QOCYXw644.roa (raw, json)
Hash identifier: Dw+ntzHCrKhsggnueeC5YlPvWeUN8nXZo5NOB5Rg4R0=
Subject key identifier: 2C:14:C9:C8:DF:75:7A:91:B0:A3:9C:E8:07:44:0E:09:85:F0:EB:8E
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01954B8C9A892AD6D4B3BEF1ACE464A07197
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LBTJyN91epGwo5zoB0QOCYXw644.roa
Signing time: Fri 28 Feb 2025 07:54:20 +0000
ROA not before: Fri 28 Feb 2025 07:54:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.86.0/24 maxlen: 24
31.56.107.0/24 maxlen: 24
31.56.156.0/24 maxlen: 24
31.57.140.0/24 maxlen: 24
31.57.162.0/23 maxlen: 23
31.57.164.0/23 maxlen: 23
31.57.180.0/24 maxlen: 24
31.57.208.0/24 maxlen: 24
31.57.209.0/24 maxlen: 24
31.57.210.0/24 maxlen: 24
31.57.211.0/24 maxlen: 24
31.57.212.0/24 maxlen: 24
31.57.213.0/24 maxlen: 24
31.57.214.0/24 maxlen: 24
31.57.216.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.42.0/24 maxlen: 24
31.58.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Mar 2025 08:19:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4b:8c:9a:89:2a:d6:d4:b3:be:f1:ac:e4:64:a0:71:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 28 07:54:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c14c9c8df757a91b0a39ce807440e0985f0eb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ba:2a:20:7d:ea:69:b6:48:b4:1f:24:31:3a:
c9:10:c9:c1:78:b5:d8:60:ed:83:49:18:9a:53:c3:
7a:f6:14:91:f3:c9:94:a2:ed:03:88:70:19:c5:7b:
62:69:b2:f4:97:88:b0:71:59:5d:35:49:e8:81:33:
9d:09:61:2f:3a:96:bd:40:d4:cc:27:4b:ae:ee:1b:
ea:d6:27:94:b0:a8:5b:64:ea:cf:41:57:b3:89:03:
d0:90:e1:45:73:34:63:7a:a9:8a:e8:59:f1:4a:64:
ba:6f:c1:d5:e3:31:4f:f5:31:70:16:77:66:f7:a2:
31:d6:8a:39:d4:38:f4:81:4f:47:74:83:16:1d:9e:
ff:6f:2c:f2:15:f6:7e:ed:04:1c:23:37:7c:3c:f1:
58:41:95:fa:ae:dd:b9:41:69:05:2d:a7:6e:78:05:
00:5d:e2:4d:10:8b:7a:95:82:15:8a:e1:9b:24:40:
5d:41:77:30:6c:c1:d1:62:ab:2c:13:d7:a0:c1:ab:
82:ea:6b:c8:19:4e:80:61:0b:4c:93:e3:2a:25:48:
62:90:f1:fa:2c:d6:2f:f0:72:79:8f:02:24:32:d9:
85:29:9c:d7:15:ed:73:19:32:bb:11:e2:41:01:61:
57:96:b3:f8:56:d6:b1:85:ae:16:2e:4d:a8:72:bb:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:14:C9:C8:DF:75:7A:91:B0:A3:9C:E8:07:44:0E:09:85:F0:EB:8E
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/LBTJyN91epGwo5zoB0QOCYXw644.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.86.0/24
31.56.107.0/24
31.56.156.0/24
31.57.140.0/24
31.57.162.0-31.57.165.255
31.57.180.0/24
31.57.208.0-31.57.214.255
31.57.216.0/24
31.58.41.0-31.58.42.255
31.58.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:a9:8a:e1:2a:79:1a:4d:55:ac:8c:88:2d:c0:e7:a7:54:d5:
c6:59:f7:da:00:1f:aa:24:6a:4e:3b:d1:14:0b:7f:31:19:4f:
1c:31:f3:81:2a:bc:9b:f5:47:31:47:35:fc:13:cd:e6:46:3c:
db:e5:e4:f7:b3:e6:ee:e6:ae:b8:ff:76:34:52:29:fd:c6:ab:
e3:bf:db:34:38:11:75:1c:50:5d:67:50:20:c3:1f:79:10:94:
df:f8:89:f5:24:38:c3:aa:09:d8:0f:df:92:1b:c1:e9:38:36:
76:44:a1:2a:35:05:1f:8b:7a:c2:92:d2:62:b0:7d:79:d1:be:
80:97:d7:0b:c9:97:65:8d:da:55:f8:85:b5:b6:b1:df:49:e7:
0f:b5:9f:e8:62:3d:e8:f0:6f:e7:1e:97:b4:1c:71:c2:e1:78:
e6:52:e4:10:48:4f:6f:ad:4c:6d:94:c1:f1:6c:70:c0:c4:c2:
d9:4a:22:23:e8:f5:40:e2:50:7b:a7:b8:95:dc:ab:28:f8:fd:
f5:c4:2a:db:cf:5c:5a:da:02:fb:88:1b:d2:bd:1b:4b:cb:d8:
19:2a:7f:6a:c4:ab:3d:79:53:6f:e8:79:95:1d:9b:fd:4a:7b:
67:05:a9:45:84:7e:4d:2b:c5:0b:b2:8d:15:a7:1b:40:ba:0f:
cb:b8:a0:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:44:13 2025 by rpki-client