Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_5uBEVZSiW-fyGJcm7YKuI4IiOU.roa
File: _5uBEVZSiW-fyGJcm7YKuI4IiOU.roa (raw, json)
Hash identifier: F9vTyDYmGqD8CX4yV4de3JbcNyx1uQlrK8L1Twc9xE0=
Subject key identifier: FF:9B:81:11:56:52:89:6F:9F:C8:62:5C:9B:B6:0A:B8:8E:08:88:E5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019504EB9689CF40C7D30FED5E0AC60D63D1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_5uBEVZSiW-fyGJcm7YKuI4IiOU.roa
Signing time: Fri 14 Feb 2025 14:45:02 +0000
ROA not before: Fri 14 Feb 2025 14:45:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Mar 2025 17:15:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:04:eb:96:89:cf:40:c7:d3:0f:ed:5e:0a:c6:0d:63:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 14 14:45:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ff9b81115652896f9fc8625c9bb60ab88e0888e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:8d:01:eb:0e:08:46:74:36:71:b4:98:ac:
ca:3c:f1:8a:4d:50:49:7f:98:36:ef:3b:b6:75:63:
dd:74:5e:e4:5b:db:39:29:6e:63:28:81:fd:89:af:
d5:7f:a3:af:95:46:15:63:3f:e8:f0:69:99:60:bc:
0e:63:bc:7e:36:ca:d4:44:a1:8b:17:a7:ba:1a:ca:
4c:87:46:a1:7d:16:d8:90:69:24:93:09:7e:c5:a6:
16:19:1e:35:aa:95:88:4e:34:9d:32:d8:ae:c3:98:
ad:7a:c3:67:ed:9b:36:04:e2:f1:a7:a7:02:c3:c2:
a3:9b:55:1b:87:54:df:64:27:de:46:a5:13:f1:2d:
d7:83:06:94:ff:de:cf:43:c2:bc:7d:36:15:e6:a7:
30:e2:49:b3:48:b9:3a:1b:cf:25:f7:73:bd:ae:b5:
11:e6:ef:0d:47:9a:70:68:a2:84:7b:4b:b2:6c:ca:
c1:13:3c:45:8f:b6:31:c3:d2:3d:86:a8:16:17:6f:
10:f6:f2:4c:99:3d:c4:52:b7:be:3e:96:0e:8b:62:
88:64:0c:25:8f:0c:c5:4a:1c:df:6e:3a:0e:24:29:
92:24:7c:74:5f:08:f2:b5:0d:be:a8:67:50:c8:26:
0a:36:14:a6:45:da:40:bf:66:4c:46:93:59:91:5f:
e5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9B:81:11:56:52:89:6F:9F:C8:62:5C:9B:B6:0A:B8:8E:08:88:E5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_5uBEVZSiW-fyGJcm7YKuI4IiOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.157.0/24
31.58.163.0/24
31.58.168.0/24
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
Signature Algorithm: sha256WithRSAEncryption
2d:57:03:1b:3a:95:d5:ab:06:d3:f2:87:f3:94:82:d5:e3:e3:
8e:54:1c:49:03:91:e7:f7:b1:c8:51:29:0c:ba:9a:95:b8:c9:
6e:65:61:2d:26:fe:7b:20:be:c2:c1:bf:79:cf:48:ab:84:f4:
a9:1e:1e:95:05:2f:04:3e:3f:c0:e2:cf:8b:f3:ef:ad:d6:4b:
5b:7c:f3:8e:d9:7f:fb:dc:ff:95:32:62:1d:7b:78:5e:cf:c4:
42:10:d7:fd:c9:39:07:95:12:46:63:01:71:e4:cc:79:c8:0d:
b7:ba:dd:af:1a:5f:68:45:44:ee:84:56:83:a6:e5:9e:e9:a2:
e0:8e:b7:09:76:62:19:9c:a4:5c:34:ea:90:2b:5f:6e:9c:0f:
2a:83:44:5e:af:a4:e2:19:20:d5:0c:35:98:31:f9:74:38:34:
6f:a8:ea:94:e8:d3:f7:3b:06:09:18:d8:ad:fb:8b:a1:ec:ff:
c5:01:c4:b8:53:fc:72:7c:e2:f3:2f:34:e0:34:b1:91:ee:58:
49:12:89:f3:d6:38:5b:e3:90:32:8d:bd:f1:5c:d1:ef:d4:d1:
16:2a:1b:2b:97:70:4f:f3:92:3a:f5:78:af:c4:c4:81:59:3d:
21:ae:4c:bf:ee:7c:d4:64:f0:83:04:bd:dd:f1:0d:08:94:ef:
25:c4:3e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:52:50 2025 by rpki-client