Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WhCGOiXIop6tmoV6hBNp81BWQYc.roa
File: WhCGOiXIop6tmoV6hBNp81BWQYc.roa (raw, json)
Hash identifier: vP2hjjl4hU0pKhVkezxyzz4/sxegg2vqACtCCdZmTAs=
Subject key identifier: 5A:10:86:3A:25:C8:A2:9E:AD:9A:85:7A:84:13:69:F3:50:56:41:87
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019428235878B9590522D6903D6CACDB61BF
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WhCGOiXIop6tmoV6hBNp81BWQYc.roa
Signing time: Thu 02 Jan 2025 17:49:52 +0000
ROA not before: Thu 02 Jan 2025 17:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 149020
IP address blocks: 31.56.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 08:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:58:78:b9:59:05:22:d6:90:3d:6c:ac:db:61:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 2 17:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a10863a25c8a29ead9a857a841369f350564187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:76:d5:91:fc:81:35:9e:b7:1e:01:d8:4c:ae:
8a:c0:06:a3:4d:a9:b5:49:d6:5a:66:12:68:4e:1a:
ca:e7:53:8b:2e:a4:fa:09:fe:2a:de:bf:ab:5b:8d:
bd:18:fb:e6:71:b6:8f:60:ec:66:b8:e4:49:be:27:
e0:d9:63:9c:39:42:f1:e6:01:7c:3f:b0:cc:84:1c:
aa:aa:f3:f7:7c:a1:1c:ee:2b:fe:9e:69:f4:8a:a5:
51:73:14:04:09:7a:c6:3d:5e:a3:e1:67:47:0e:f7:
fe:f2:d2:f1:46:6b:8c:97:63:9e:3c:ae:80:dd:d5:
d6:64:7c:5e:86:a7:6b:ec:b7:81:dc:cd:74:77:83:
5f:81:98:9c:f9:87:6d:c9:8c:ee:c4:81:fa:52:55:
f1:57:e9:d6:2f:04:42:b9:6a:e0:07:3a:e3:69:d7:
35:4e:7d:d1:48:26:54:76:f5:35:49:d2:26:e6:9b:
46:17:d2:03:4e:78:df:b1:2a:1b:0b:75:2b:f0:46:
8b:22:c2:d1:d6:10:74:fd:4f:55:a3:22:15:d3:14:
01:23:84:a2:15:e0:d7:64:e2:8e:db:2f:2d:2d:ef:
6f:d9:0a:12:8d:ea:60:35:98:62:70:50:46:fe:a6:
98:54:67:05:9e:99:30:4a:89:c8:37:d8:b1:6d:16:
72:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:10:86:3A:25:C8:A2:9E:AD:9A:85:7A:84:13:69:F3:50:56:41:87
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WhCGOiXIop6tmoV6hBNp81BWQYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.44.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:9e:2e:9e:69:d8:41:47:04:81:33:28:6d:87:b7:fa:47:8f:
e9:e0:7f:f7:37:8a:e5:1b:29:2f:3b:84:49:07:84:93:b3:8b:
e5:fd:d4:9b:42:4b:a8:16:3a:cd:2a:2e:44:3e:1a:95:c9:8e:
1e:8d:97:26:d2:39:25:46:30:46:b1:34:40:89:89:80:9e:8a:
9c:f8:9a:fa:63:38:67:19:ec:90:8f:d5:30:d6:7b:e1:87:52:
e1:3c:d2:9c:77:79:6a:2d:88:1a:79:6b:a5:dd:21:f0:25:db:
68:a2:2d:00:3c:15:ed:05:2a:bc:4c:18:9f:c9:01:7f:a6:ac:
70:67:84:c0:0f:7e:f3:f9:1c:3f:e4:98:b1:5b:fc:f8:17:4c:
79:dc:64:fb:b6:41:c1:fe:ee:b7:bc:bc:f6:45:1a:87:0c:2b:
e0:03:cd:4a:21:4c:49:fb:21:94:04:66:a0:b6:7f:91:69:9b:
88:a9:d2:0c:aa:45:36:2c:3e:82:91:0b:e3:80:57:26:8d:3b:
c4:ba:cd:2b:cb:92:7e:f7:4e:eb:f2:df:19:19:ea:af:0f:b5:
3d:38:72:cc:20:11:d7:43:f9:21:d5:b7:47:4b:54:44:90:e1:
6f:b1:ca:6e:72:54:e2:b3:92:1b:66:26:94:91:ed:9b:55:d9:
a7:a3:ff:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI1h4uVkFItaQPWys22G/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMTAyMTc0OTUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTEwODYzYTI1YzhhMjllYWQ5YTg1N2E4NDEzNjlmMzUwNTY0MTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13bVkfyBNZ63HgHYTK6KwAajTam1
SdZaZhJoThrK51OLLqT6Cf4q3r+rW429GPvmcbaPYOxmuORJvifg2WOcOULx5gF8
P7DMhByqqvP3fKEc7iv+nmn0iqVRcxQECXrGPV6j4WdHDvf+8tLxRmuMl2OePK6A
3dXWZHxehqdr7LeB3M10d4NfgZic+YdtyYzuxIH6UlXxV+nWLwRCuWrgBzrjadc1
Tn3RSCZUdvU1SdIm5ptGF9IDTnjfsSobC3Ur8EaLIsLR1hB0/U9VoyIV0xQBI4Si
FeDXZOKO2y8tLe9v2QoSjepgNZhicFBG/qaYVGcFnpkwSonIN9ixbRZyFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFoQhjolyKKerZqFeoQTafNQVkGHMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvV2hDR09pWElvcDZ0bW9WNmhCTnA4MUJXUVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzgsMA0G
CSqGSIb3DQEBCwUAA4IBAQCKni6eadhBRwSBMyhth7f6R4/p4H/3N4rlGykvO4RJ
B4STs4vl/dSbQkuoFjrNKi5EPhqVyY4ejZcm0jklRjBGsTRAiYmAnoqc+Jr6Yzhn
GeyQj9Uw1nvhh1LhPNKcd3lqLYgaeWul3SHwJdtooi0APBXtBSq8TBifyQF/pqxw
Z4TAD37z+Rw/5JixW/z4F0x53GT7tkHB/u63vLz2RRqHDCvgA81KIUxJ+yGUBGag
tn+RaZuIqdIMqkU2LD6CkQvjgFcmjTvEus0ry5J+907r8t8ZGeqvD7U9OHLMIBHX
Q/kh1bdHS1REkOFvscpuclTis5IbZiaUke2bVdmno//x
-----END CERTIFICATE-----
Generated at Mon Apr 28 01:13:35 2025 by rpki-client