Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cEiDFmBA72dB-lKVmKG0gGWZ6RI.roa
File: cEiDFmBA72dB-lKVmKG0gGWZ6RI.roa (raw, json)
Hash identifier: 67psQ1/dHD0PZ+k6TzVSQMj/nOmHLz1f9mrAJzxlhWM=
Subject key identifier: 70:48:83:16:60:40:EF:67:41:FA:52:95:98:A1:B4:80:65:99:E9:12
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019658B6B3A300DFF4F6F37351F5CC4BF61C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cEiDFmBA72dB-lKVmKG0gGWZ6RI.roa
Signing time: Mon 21 Apr 2025 14:18:10 +0000
ROA not before: Mon 21 Apr 2025 14:18:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 31.56.16.0/22 maxlen: 24
31.57.16.0/21 maxlen: 24
31.57.135.0/24 maxlen: 24
31.58.92.0/22 maxlen: 24
31.58.176.0/22 maxlen: 24
31.58.200.0/22 maxlen: 24
31.58.216.0/22 maxlen: 24
31.58.235.0/24 maxlen: 24
31.58.236.0/24 maxlen: 24
31.58.240.0/22 maxlen: 24
31.58.244.0/24 maxlen: 24
31.58.247.0/24 maxlen: 24
31.58.251.0/24 maxlen: 24
31.58.252.0/22 maxlen: 24
31.59.64.0/22 maxlen: 24
31.59.80.0/22 maxlen: 24
31.59.124.0/22 maxlen: 24
31.59.148.0/22 maxlen: 24
31.59.152.0/21 maxlen: 24
31.59.160.0/22 maxlen: 24
31.59.176.0/21 maxlen: 24
31.59.188.0/22 maxlen: 24
31.59.192.0/22 maxlen: 24
31.59.216.0/22 maxlen: 24
217.60.16.0/21 maxlen: 24
217.60.28.0/22 maxlen: 24
217.60.40.0/22 maxlen: 24
217.60.64.0/18 maxlen: 24
217.60.187.0/24 maxlen: 24
217.60.196.0/23 maxlen: 24
217.60.244.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Apr 2025 14:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:b6:b3:a3:00:df:f4:f6:f3:73:51:f5:cc:4b:f6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 21 14:18:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=704883166040ef6741fa529598a1b4806599e912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:71:d1:47:76:d4:c4:bc:80:01:98:93:19:29:
27:50:92:7a:8b:3f:3c:97:a7:e4:35:b9:6b:29:18:
b6:b0:58:fc:a5:55:bf:98:0b:33:c6:ba:78:0f:51:
af:2f:d1:34:2b:a1:fe:18:84:9c:52:55:ee:4a:78:
2f:7c:78:4d:12:0d:2d:53:c8:f0:56:d8:6c:63:6b:
db:91:c1:50:7f:92:a6:9f:7c:ef:77:c6:67:05:12:
81:82:67:84:54:dd:b2:15:9b:89:b2:0d:4d:9e:bc:
70:e4:1e:a8:e6:22:88:7a:36:a8:70:fd:77:92:4a:
5a:fa:50:58:26:69:22:34:40:27:c5:88:63:84:8e:
d3:6e:6e:dc:0f:37:25:38:7b:37:8a:93:17:a9:c0:
73:d5:70:e2:9d:ae:6f:7d:f3:68:a9:34:2a:35:9f:
bd:ca:94:41:b9:96:87:ae:04:88:28:f1:1f:8f:e8:
61:b2:26:d8:f5:66:28:64:9d:7e:d3:dd:ce:d5:3e:
6c:1d:71:0a:3f:da:0b:b5:f0:a9:81:7b:db:e0:af:
6d:f8:e5:e2:e5:4e:d6:8f:61:50:f4:25:19:48:54:
8f:aa:f9:dd:80:a9:46:83:81:ea:3c:1c:98:5b:f4:
9a:53:57:0e:6d:e1:4e:b8:74:a9:29:01:08:63:1f:
6b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:48:83:16:60:40:EF:67:41:FA:52:95:98:A1:B4:80:65:99:E9:12
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cEiDFmBA72dB-lKVmKG0gGWZ6RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.16.0/22
31.57.16.0/21
31.57.135.0/24
31.58.92.0/22
31.58.176.0/22
31.58.200.0/22
31.58.216.0/22
31.58.235.0-31.58.236.255
31.58.240.0-31.58.244.255
31.58.247.0/24
31.58.251.0-31.58.255.255
31.59.64.0/22
31.59.80.0/22
31.59.124.0/22
31.59.148.0-31.59.163.255
31.59.176.0/21
31.59.188.0-31.59.195.255
31.59.216.0/22
217.60.16.0/21
217.60.28.0/22
217.60.40.0/22
217.60.64.0/18
217.60.187.0/24
217.60.196.0/23
217.60.244.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:3a:79:15:78:af:97:66:72:6f:d7:5b:56:ef:77:0f:6b:05:
6f:6d:16:e2:ae:b4:5b:88:12:4c:1c:d7:e9:e2:ca:c8:6d:f2:
43:c5:5c:eb:bb:3f:43:12:0a:7b:58:9a:49:d8:ea:4b:31:7f:
1f:f3:8a:da:34:43:e3:47:6e:00:5d:37:f7:14:89:6e:61:cc:
52:ce:c3:d5:eb:4e:b5:5b:52:62:93:65:de:0c:e4:c8:a8:f5:
74:67:07:25:4a:28:04:fd:3b:1f:25:1e:62:40:96:c1:15:1b:
c5:95:32:8f:dd:c6:3c:84:90:67:28:7f:3e:4c:16:64:ce:7b:
ad:e2:45:64:85:73:6c:aa:50:27:d9:0d:55:c9:52:fb:82:56:
5b:38:43:9d:7b:6a:b0:ba:a1:e0:d8:32:5e:a3:5c:b6:0f:aa:
ce:c9:ad:22:89:ae:9b:19:24:b7:12:ff:b3:46:4e:c0:14:03:
26:5a:d5:66:cc:55:8e:64:ed:7b:0d:9a:03:74:b2:b5:6c:f8:
db:24:65:f8:22:9e:ba:c7:2f:ab:40:08:d7:b2:c6:d1:eb:c6:
08:d9:df:d5:5b:55:db:fb:39:bd:c6:a9:ee:7d:02:f4:62:a3:
68:84:68:1d:a6:67:d3:cc:ea:16:1f:e2:e0:08:d6:1e:8e:a3:
8c:df:51:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:38:13 2025 by rpki-client