Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kI0Xg2voVRpPx7snR0gttdZa1cs.roa
File: kI0Xg2voVRpPx7snR0gttdZa1cs.roa (raw, json)
Hash identifier: MHOnKXwiVEvKE+2fV073dtHQBEdO6ivO2qeY4Np96Rg=
Subject key identifier: 90:8D:17:83:6B:E8:55:1A:4F:C7:BB:27:47:48:2D:B5:D6:5A:D5:CB
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194282359427A91CE93BF935BC3ACA372C0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kI0Xg2voVRpPx7snR0gttdZa1cs.roa
Signing time: Thu 02 Jan 2025 17:49:52 +0000
ROA not before: Thu 02 Jan 2025 17:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 151349
IP address blocks: 31.56.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Jan 2025 06:42:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:59:42:7a:91:ce:93:bf:93:5b:c3:ac:a3:72:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 2 17:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=908d17836be8551a4fc7bb2747482db5d65ad5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:ab:2a:09:b7:b4:45:d2:db:c2:07:23:a7:
2c:7d:44:ce:fc:84:cf:ae:3f:00:a9:d0:71:db:53:
ad:db:be:5f:38:57:60:a6:8f:e5:bf:26:4a:00:d0:
8a:71:a5:33:4a:de:47:bd:bd:52:ac:5d:bd:61:dc:
d8:ac:4b:1b:57:b6:0e:01:92:7b:e0:ea:81:de:1c:
9e:5a:18:26:3f:ed:fa:ca:45:42:0f:52:79:b8:2d:
2b:e3:26:36:c9:fa:ba:c3:d1:d4:79:28:85:0c:b0:
d3:94:c0:34:d4:af:02:f5:87:4d:2a:fd:ce:b4:50:
18:f9:b3:d0:23:4c:c4:1b:c1:9b:f4:ba:f7:3d:7e:
12:d9:a1:4a:24:de:6b:5b:47:45:c3:3a:e7:6d:cb:
66:73:57:1c:81:c5:41:9a:40:03:87:61:e9:4a:e7:
3b:38:3a:af:30:13:59:d4:2b:53:29:16:c6:10:68:
ce:87:61:b5:aa:4a:fa:8f:78:9d:81:3d:fd:0d:fb:
7e:4f:b9:83:ba:9e:2a:32:bb:f0:e8:b5:ef:d5:0f:
0d:87:69:bf:16:a9:f5:af:c1:9a:c9:23:6d:d6:8f:
9b:2f:5c:b7:4a:30:86:7d:ef:a6:45:79:da:33:e7:
32:12:fc:04:85:8f:74:b1:3b:f6:5c:e8:2c:c4:2b:
be:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8D:17:83:6B:E8:55:1A:4F:C7:BB:27:47:48:2D:B5:D6:5A:D5:CB
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kI0Xg2voVRpPx7snR0gttdZa1cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.49.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:d9:05:fa:85:d4:b9:22:b1:9a:d0:42:d4:2b:b4:7a:86:7a:
25:31:53:de:59:d1:d4:a8:dc:64:43:9d:d9:fa:4e:44:96:a2:
bc:66:b8:33:91:83:ed:56:4c:b1:d1:7d:77:81:de:86:6b:ad:
69:83:2c:03:45:e0:41:27:e4:94:a7:61:ac:ae:30:0b:ae:73:
19:48:dc:36:8e:d3:bd:2f:51:23:44:2b:3c:e5:29:64:46:d2:
fc:a8:3a:d5:ae:d2:58:32:54:9f:09:68:96:b7:29:d1:a7:05:
ec:4d:4e:e9:ed:0f:68:dd:76:c0:52:dc:bb:43:55:ab:bb:36:
4f:ec:e5:bb:3f:c2:c7:c6:8d:bf:7e:41:96:20:67:86:3e:78:
7d:b8:08:e5:a6:0d:3c:3c:97:4b:90:fc:a3:ec:59:be:e6:20:
42:c3:e5:e8:a6:1e:97:82:d0:83:a1:d5:b8:90:61:48:a2:1f:
b0:27:74:c1:41:bc:f0:56:1e:4e:8f:a6:cf:b5:71:58:51:09:
b0:14:05:e4:55:18:37:0a:6c:1c:dc:ed:f0:33:df:b1:59:34:
74:88:a9:27:0e:13:8c:64:e9:42:5f:05:9b:cc:45:59:47:f9:
8a:d5:25:f3:ed:e2:a3:d5:c8:e5:fa:23:ea:f0:3c:1e:ab:51:
06:37:84:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:34:23 2025 by rpki-client