Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gCS7JqyTwEkuVd7VVTExUUarc40.roa
File: gCS7JqyTwEkuVd7VVTExUUarc40.roa (raw, json)
Hash identifier: UZqAYLzwD3a8B2cJq4HDqWxHuZgDNeun8gR5lDCDxJ0=
Subject key identifier: 80:24:BB:26:AC:93:C0:49:2E:55:DE:D5:55:31:31:51:46:AB:73:8D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01936233EBB04F4A6AA099EEADFB0C34399F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gCS7JqyTwEkuVd7VVTExUUarc40.roa
Signing time: Mon 25 Nov 2024 07:23:10 +0000
ROA not before: Mon 25 Nov 2024 07:23:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.3.0/24 maxlen: 24
31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.48.0/24 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.67.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Nov 2024 09:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:33:eb:b0:4f:4a:6a:a0:99:ee:ad:fb:0c:34:39:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 25 07:23:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8024bb26ac93c0492e55ded55531315146ab738d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a6:10:04:ee:cd:6a:ed:67:f0:91:54:a7:16:
ac:00:86:db:da:0c:36:c0:b4:7b:60:ef:3e:d5:a4:
c2:f9:cd:31:0d:b2:1d:e6:fa:c8:ab:7f:9a:bb:fd:
35:96:41:95:01:45:e0:e2:be:35:87:20:22:11:83:
2c:aa:5f:42:52:99:7e:32:5e:7d:64:01:66:63:48:
d1:59:2c:60:61:0d:39:81:e1:92:d4:08:62:17:ef:
4e:7f:ae:d9:3e:d1:91:7e:58:f9:9d:37:4c:26:a2:
63:e1:8a:bc:e3:43:2d:c6:30:8f:ce:a0:e7:f9:af:
80:43:4d:65:28:84:9e:e9:df:b7:15:77:57:c7:f2:
e2:2e:24:f9:80:2d:41:8a:05:ec:6b:1d:46:23:d0:
df:73:fd:69:cd:9b:bc:db:f0:61:6d:ad:1c:1e:bf:
99:20:80:50:01:36:34:df:d2:70:b7:50:9e:e9:39:
0a:e8:dc:7c:ad:74:d1:15:53:56:4b:c0:cc:9e:ac:
72:57:2a:30:21:88:bb:2e:e7:cc:79:e3:6f:29:7b:
77:8e:99:6c:e5:6c:36:e3:c4:09:58:5e:92:a7:8c:
dc:94:ed:70:66:45:19:7b:82:6c:57:eb:ed:3a:53:
7a:22:35:c3:dd:31:b4:81:57:c0:aa:72:ca:b4:f0:
80:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:24:BB:26:AC:93:C0:49:2E:55:DE:D5:55:31:31:51:46:AB:73:8D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gCS7JqyTwEkuVd7VVTExUUarc40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.3.0-31.56.5.255
31.56.24.0/24
31.56.42.0/23
31.56.48.0/24
31.56.57.0/24
31.56.89.0/24
31.56.120.0/22
31.56.127.0/24
31.57.65.0/24
31.57.67.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0/21
31.57.192.0/22
31.57.232.0/22
31.58.49.0/24
Signature Algorithm: sha256WithRSAEncryption
96:26:6e:a9:86:1a:2c:39:2e:65:43:e6:71:53:0c:99:25:d9:
6d:52:f1:bd:b8:09:e9:d8:a9:83:e0:85:34:51:0a:bc:3d:8e:
62:b9:da:a0:bf:26:0d:fa:07:c4:34:2d:89:07:05:66:ee:a6:
38:5f:f3:78:8b:d1:cc:83:7e:f3:ec:24:83:87:3c:3f:8d:7f:
5f:8f:3e:36:05:c2:1d:7f:a1:92:e7:2f:37:64:8f:02:3a:b9:
02:f0:f9:ec:d3:bd:89:9e:62:62:bb:1c:25:bd:36:fb:a3:52:
34:64:4d:ca:fe:00:c7:25:f8:df:e7:b5:20:93:a2:8c:50:0c:
fe:ef:52:b0:38:f6:4d:35:77:a9:46:09:19:4e:44:3e:86:8a:
ab:81:bc:3f:da:80:eb:c3:ae:ec:fa:92:df:17:07:ee:3b:05:
81:8b:b4:26:62:52:09:32:4b:7f:1f:23:74:9c:43:db:96:7f:
8b:68:b3:67:4d:e9:39:66:e2:64:16:d4:37:55:44:41:3a:0e:
c0:38:a9:32:c2:bd:d3:52:6b:ce:c2:ae:f7:6b:16:76:f5:78:
00:17:89:e2:74:a1:a0:f7:8a:37:57:e8:dc:97:12:5a:e2:53:
a0:8d:77:0d:f1:a6:77:7d:b5:62:1b:75:1b:4d:47:de:78:f5:
91:6d:c9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:22:30 2025 by rpki-client