Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/oLF60J-QTR6yQjMWZFCNEyiJdQM.roa
File: oLF60J-QTR6yQjMWZFCNEyiJdQM.roa (raw, json)
Hash identifier: N8y4momS09g245YppG+1EQzpWQYj2HjpW2/Xl0qV/qQ=
Subject key identifier: A0:B1:7A:D0:9F:90:4D:1E:B2:42:33:16:64:50:8D:13:28:89:75:03
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0197440E03385620C9203EA5644904891482
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/oLF60J-QTR6yQjMWZFCNEyiJdQM.roa
Signing time: Fri 06 Jun 2025 07:04:18 +0000
ROA not before: Fri 06 Jun 2025 07:04:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 393942
IP address blocks: 31.56.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Jun 2025 10:29:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:44:0e:03:38:56:20:c9:20:3e:a5:64:49:04:89:14:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 6 07:04:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0b17ad09f904d1eb242331664508d1328897503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:57:1d:85:24:0c:00:2c:c1:25:52:ee:cc:
33:96:ad:0b:83:9d:f0:4e:b6:a1:d4:20:50:07:8a:
2b:b6:eb:ef:92:bc:d8:d4:45:b3:9d:4e:61:ce:50:
7f:ab:b7:db:b1:a2:2d:58:6b:71:09:a1:d8:3d:99:
30:40:ff:9d:ef:32:68:3f:d7:b7:ce:7c:d2:7a:37:
27:40:7e:29:ca:58:f1:09:94:48:0a:c5:83:35:a5:
e1:79:de:96:1b:d1:0b:20:14:cc:ce:fc:a5:0b:f2:
0f:35:3e:25:a6:88:b7:f6:5c:d7:c8:06:b8:91:db:
8d:da:e8:4a:fe:3a:bc:c5:1d:19:05:c5:66:34:0f:
d3:fa:bd:27:a8:40:c1:04:9f:9b:d0:d8:15:9b:70:
5b:3c:46:dd:79:44:a3:f9:b5:17:64:4f:8d:e5:32:
98:80:b3:71:31:be:5f:35:20:1b:47:9a:be:05:12:
17:80:ae:de:97:92:de:73:cb:3f:a6:83:ee:33:40:
b3:a0:ba:ea:24:1c:69:cf:13:7a:72:67:e3:a5:b5:
71:4d:39:4f:87:93:51:1f:76:c9:a4:2f:64:b9:ac:
51:f3:a7:e0:aa:99:b4:38:12:9e:5d:05:bc:08:9c:
af:fb:80:ff:7c:64:0a:a6:83:15:52:50:fd:76:a2:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B1:7A:D0:9F:90:4D:1E:B2:42:33:16:64:50:8D:13:28:89:75:03
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/oLF60J-QTR6yQjMWZFCNEyiJdQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.238.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ef:b7:b9:2c:d7:20:ca:b0:00:e4:2f:c9:8a:23:b9:af:af:
23:14:75:e1:72:a3:1a:76:f3:ed:15:56:11:06:d8:f2:e7:33:
33:8a:b8:7b:02:97:ed:88:54:65:1b:67:fb:9d:bf:2d:22:f8:
3f:26:da:f9:dc:df:81:c9:11:39:4f:d7:84:1e:60:a5:9d:cf:
99:f0:ac:93:34:a1:46:47:f2:06:42:f1:93:2d:66:83:e3:98:
5d:7c:42:19:71:ac:53:f3:c5:ad:e8:4c:5e:19:ed:e7:81:1f:
b1:2a:1e:8e:68:62:2b:b5:9d:20:ab:19:47:fb:08:88:db:96:
30:b5:24:62:c7:4c:1d:bc:e2:0e:a5:7e:e1:16:31:e2:1d:a7:
00:0f:d4:b3:0e:88:0c:e4:81:c8:d9:de:c2:58:28:f4:1c:55:
d5:45:d9:62:87:58:ac:31:cc:4b:79:fc:7d:7b:c9:1e:16:05:
62:72:46:a5:b2:15:7e:80:a4:b7:7c:4a:2f:22:c3:1b:f1:7f:
b9:1e:9f:1e:b1:c6:88:ad:08:73:22:bd:02:65:b5:7f:d6:fd:
fd:ba:48:59:29:af:b1:d5:ac:ab:b4:4a:e1:d6:61:cb:5a:ff:
f4:eb:9c:94:c6:36:08:a0:1c:2c:ab:f1:ac:68:31:d7:14:7f:
6b:a3:2e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:10:44 2025 by rpki-client