Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SGDfC8igBmRBtVh_hbAMduAKFI0.roa
File: SGDfC8igBmRBtVh_hbAMduAKFI0.roa (raw, json)
Hash identifier: GHacEuB+Kd/hOnlaLY0RWD9/BhOz1n1XRc6cQ3YayNU=
Subject key identifier: 48:60:DF:0B:C8:A0:06:64:41:B5:58:7F:85:B0:0C:76:E0:0A:14:8D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01960FE93F4356FA85EDFE2A8E7A834BF6E3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SGDfC8igBmRBtVh_hbAMduAKFI0.roa
Signing time: Mon 07 Apr 2025 11:01:06 +0000
ROA not before: Mon 07 Apr 2025 11:01:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 31.57.181.0/24 maxlen: 24
31.58.142.0/23 maxlen: 24
31.58.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Apr 2025 18:55:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:e9:3f:43:56:fa:85:ed:fe:2a:8e:7a:83:4b:f6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 7 11:01:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4860df0bc8a0066441b5587f85b00c76e00a148d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:1a:1d:5d:62:5c:e4:76:e2:93:05:80:08:
73:22:82:e8:28:fc:f6:f3:8d:3b:ea:32:f8:d3:09:
8a:e0:5a:12:f2:f2:e5:67:cf:66:7b:53:31:43:e9:
b7:95:fe:7d:bb:11:b0:52:15:b5:9f:01:c0:44:44:
05:19:57:65:96:79:e7:ff:99:01:a0:02:6f:27:9f:
ab:32:82:d8:89:92:c5:47:f1:a5:65:49:74:14:d6:
a8:ad:68:6e:e7:a5:f3:80:56:85:32:2f:dd:fd:09:
21:ec:dd:ac:7b:ee:63:d1:0f:25:41:3b:12:69:8e:
5f:a0:74:8a:df:7c:18:9d:29:08:81:af:ba:07:71:
ea:b5:03:6b:6f:2f:59:4e:a0:a1:39:52:12:ab:bc:
28:a8:2d:5a:26:5e:94:75:c6:e0:bd:db:c1:45:d3:
b2:e4:21:1d:a0:bc:ab:fc:86:17:ce:64:dd:b7:5b:
ce:5c:ce:34:c2:b8:35:00:ad:5f:3b:89:04:5c:03:
29:18:e1:b1:6b:b5:d5:65:33:34:42:d8:85:a1:b0:
57:ec:10:4d:ab:63:1d:ff:68:8d:18:0b:30:ca:22:
d7:7f:4f:56:47:09:eb:78:ae:5e:9c:0a:c4:5f:01:
fd:97:98:93:22:54:9f:7f:25:c8:aa:3b:70:32:46:
e4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:60:DF:0B:C8:A0:06:64:41:B5:58:7F:85:B0:0C:76:E0:0A:14:8D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SGDfC8igBmRBtVh_hbAMduAKFI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.181.0/24
31.58.142.0/23
Signature Algorithm: sha256WithRSAEncryption
22:46:ee:8c:71:19:70:22:98:ab:77:86:40:b5:9c:1d:50:fa:
3d:97:bb:21:09:dd:54:43:54:ef:b0:1b:55:e2:7e:ff:f8:bf:
6e:21:19:f0:b4:3a:e3:cc:5e:f6:79:7a:2c:41:3d:65:57:3a:
eb:01:83:61:ae:4a:f8:3a:54:57:ca:b1:27:72:51:e8:6b:0f:
54:15:3c:db:60:70:fd:30:93:9d:f5:8d:56:1d:af:76:4d:49:
11:81:81:e7:68:be:32:c2:99:04:aa:4a:ad:8e:85:12:45:b1:
9b:ae:82:a5:b2:1e:16:1b:b0:e3:43:9e:50:5d:18:9b:d8:4b:
85:59:14:01:60:79:e7:56:e3:07:8b:cb:48:98:35:ee:b7:2c:
15:75:79:a8:eb:e2:e1:3e:1b:4b:e6:3c:97:11:6f:87:8c:09:
a3:76:90:37:2a:c6:33:d1:3d:9f:9c:53:a3:92:54:5a:1a:f6:
1c:19:9f:24:0e:4a:66:7e:bf:96:0b:e7:a9:43:4e:75:0a:80:
fb:9a:fa:97:e7:f5:4d:f0:39:35:69:e2:79:7e:6b:16:06:c7:
6c:f3:3b:3f:ea:bc:13:bf:00:9b:23:13:ee:a2:6f:1c:c5:05:
ef:0b:fa:d9:76:2d:32:6f:03:5e:3b:6c:af:4b:62:d9:cf:53:
ac:63:1a:82
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZYP6T9DVvqF7f4qjnqDS/bjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNDA3MTEwMTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODYwZGYwYmM4YTAwNjY0NDFiNTU4N2Y4NWIwMGM3NmUwMGExNDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoY8aHV1iXOR24pMFgAhzIoLoKPz2
84076jL40wmK4FoS8vLlZ89me1MxQ+m3lf59uxGwUhW1nwHAREQFGVdllnnn/5kB
oAJvJ5+rMoLYiZLFR/GlZUl0FNaorWhu56XzgFaFMi/d/Qkh7N2se+5j0Q8lQTsS
aY5foHSK33wYnSkIga+6B3HqtQNrby9ZTqChOVISq7woqC1aJl6UdcbgvdvBRdOy
5CEdoLyr/IYXzmTdt1vOXM40wrg1AK1fO4kEXAMpGOGxa7XVZTM0QtiFobBX7BBN
q2Md/2iNGAswyiLXf09WRwnreK5enArEXwH9l5iTIlSffyXIqjtwMkbkMQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEhg3wvIoAZkQbVYf4WwDHbgChSNMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvU0dEZkM4aWdCbVJCdFZoX2hiQU1kdUFLRkkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzm1AwQB
HzqOMA0GCSqGSIb3DQEBCwUAA4IBAQAiRu6McRlwIpird4ZAtZwdUPo9l7shCd1U
Q1TvsBtV4n7/+L9uIRnwtDrjzF72eXosQT1lVzrrAYNhrkr4OlRXyrEnclHoaw9U
FTzbYHD9MJOd9Y1WHa92TUkRgYHnaL4ywpkEqkqtjoUSRbGbroKlsh4WG7DjQ55Q
XRib2EuFWRQBYHnnVuMHi8tImDXutywVdXmo6+LhPhtL5jyXEW+HjAmjdpA3KsYz
0T2fnFOjklRaGvYcGZ8kDkpmfr+WC+epQ051CoD7mvqX5/VN8Dk1aeJ5fmsWBsds
8zs/6rwTvwCbIxPuom8cxQXvC/rZdi0ybwNeO2yvS2LZz1OsYxqC
-----END CERTIFICATE-----
Generated at Sun Apr 27 18:03:52 2025 by rpki-client