Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4hUQcXXm1dHjqJTF1YVafU8A7Jo.roa
File: 4hUQcXXm1dHjqJTF1YVafU8A7Jo.roa (raw, json)
Hash identifier: TBjXshpocEdtVvvsGEGbL208xgG2CjWy69b9YM1q1mQ=
Subject key identifier: E2:15:10:71:75:E6:D5:D1:E3:A8:94:C5:D5:85:5A:7D:4F:00:EC:9A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01967CBA1016C834B79E7D8C3015FC8AEA3F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4hUQcXXm1dHjqJTF1YVafU8A7Jo.roa
Signing time: Mon 28 Apr 2025 14:08:10 +0000
ROA not before: Mon 28 Apr 2025 14:08:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 31.56.25.0/24 maxlen: 24
31.56.27.0/24 maxlen: 24
31.56.28.0/22 maxlen: 24
31.56.44.0/24 maxlen: 24
31.56.61.0/24 maxlen: 24
31.56.80.0/22 maxlen: 22
31.56.92.0/22 maxlen: 22
31.56.96.0/22 maxlen: 22
31.56.100.0/22 maxlen: 22
31.56.112.0/24 maxlen: 24
31.56.113.0/24 maxlen: 24
31.57.105.0/24 maxlen: 24
31.57.106.0/24 maxlen: 24
31.57.107.0/24 maxlen: 24
31.57.108.0/24 maxlen: 24
31.57.109.0/24 maxlen: 24
31.57.110.0/24 maxlen: 24
31.57.111.0/24 maxlen: 24
31.57.119.0/24 maxlen: 24
31.57.226.0/24 maxlen: 24
31.58.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Apr 2025 15:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:ba:10:16:c8:34:b7:9e:7d:8c:30:15:fc:8a:ea:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 28 14:08:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e215107175e6d5d1e3a894c5d5855a7d4f00ec9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:58:59:8f:b8:b7:69:27:8a:d4:03:78:1b:6e:
33:03:c0:2c:4c:eb:42:85:73:a7:8d:58:c4:24:c0:
c6:0a:af:dd:8e:9d:85:b0:fb:3c:e0:6e:9f:6f:9b:
06:f7:a5:65:7f:37:26:e7:ad:01:8b:fe:20:ae:fc:
86:09:b9:a8:65:72:58:93:68:f9:b0:03:85:4b:7a:
60:fa:ac:22:4b:fe:17:87:08:84:e4:20:10:7a:0a:
36:7b:52:0f:9a:8e:b4:25:cd:66:9c:46:a5:06:f2:
b1:cf:55:75:15:26:fe:f0:9c:01:60:55:03:6c:e5:
77:f2:19:70:ad:f7:fa:18:66:bf:90:eb:d1:7e:bc:
77:a9:7b:67:2f:b1:bc:0b:ab:6e:b4:5c:54:3b:65:
b7:7f:2a:62:e0:ba:19:ac:a7:15:3b:d0:3b:19:24:
ae:0a:44:b4:0a:92:41:d9:56:b1:09:62:88:0a:81:
62:ad:53:a0:54:cb:34:5f:c4:f2:30:85:96:2b:8e:
fd:45:66:49:f0:ed:35:50:f2:96:1b:f2:8c:bb:19:
a5:f4:86:59:1e:3c:0a:4a:5d:8c:99:0a:70:df:b0:
54:d9:fc:22:54:55:a3:c5:69:e0:07:b1:9c:31:50:
4d:92:8b:22:ab:fa:5f:a8:08:c7:d4:42:c6:04:77:
b1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:15:10:71:75:E6:D5:D1:E3:A8:94:C5:D5:85:5A:7D:4F:00:EC:9A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/4hUQcXXm1dHjqJTF1YVafU8A7Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.25.0/24
31.56.27.0-31.56.31.255
31.56.44.0/24
31.56.61.0/24
31.56.80.0/22
31.56.92.0-31.56.103.255
31.56.112.0/23
31.57.105.0-31.57.111.255
31.57.119.0/24
31.57.226.0/24
31.58.130.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:bb:28:f0:da:3f:08:46:13:76:64:43:65:63:58:9e:e8:7f:
a3:9c:73:a6:73:a9:6d:34:19:00:0d:ac:98:32:af:c8:15:d7:
3d:2f:0d:4c:53:00:66:78:b1:b7:b7:13:72:bd:a2:39:09:d0:
1d:eb:1f:1d:45:71:19:d4:f7:be:a8:9f:65:63:fb:26:2e:f5:
7a:f2:ee:8e:1e:3d:f5:55:43:e9:60:23:3f:c4:c1:12:d0:87:
ac:fc:f9:34:d1:26:72:f5:b1:72:63:ce:51:fd:e8:98:15:80:
29:cd:d9:23:b8:eb:1a:b3:5b:70:91:c0:9d:26:77:e7:4f:0c:
15:d3:7d:52:79:a5:d0:28:be:8c:9f:e5:61:81:9b:31:94:29:
04:0e:88:8c:45:97:c8:cc:62:7f:df:e2:ca:27:3f:dc:18:66:
4a:06:74:3d:1d:8c:df:e5:a0:4b:91:a2:c2:a5:3c:eb:b4:56:
26:12:48:03:04:62:98:4c:13:e5:02:5d:65:c9:5c:f3:8e:9e:
9b:58:4e:b3:14:9e:ab:23:b6:b8:6f:d8:37:cc:f7:f4:4b:ae:
8d:63:09:b2:57:da:a3:b8:9b:e0:f8:93:f4:f0:44:31:81:a1:
65:15:67:64:91:d6:40:ad:36:c3:c3:5a:e1:05:e2:1b:fd:b3:
79:99:e6:78
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAZZ8uhAWyDS3nn2MMBX8iuo/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNDI4MTQwODEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjE1MTA3MTc1ZTZkNWQxZTNhODk0YzVkNTg1NWE3ZDRmMDBlYzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlhZj7i3aSeK1AN4G24zA8AsTOtC
hXOnjVjEJMDGCq/djp2FsPs84G6fb5sG96Vlfzcm560Bi/4grvyGCbmoZXJYk2j5
sAOFS3pg+qwiS/4XhwiE5CAQego2e1IPmo60Jc1mnEalBvKxz1V1FSb+8JwBYFUD
bOV38hlwrff6GGa/kOvRfrx3qXtnL7G8C6tutFxUO2W3fypi4LoZrKcVO9A7GSSu
CkS0CpJB2VaxCWKICoFirVOgVMs0X8TyMIWWK479RWZJ8O01UPKWG/KMuxml9IZZ
HjwKSl2MmQpw37BU2fwiVFWjxWngB7GcMVBNkosiq/pfqAjH1ELGBHexgwIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFOIVEHF15tXR46iUxdWFWn1PAOyaMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvNGhVUWNYWG0xZEhqcUpURjFZVmFmVThBN0pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAHzgZMAwD
BAAfOBsDBAUfOAADBAAfOCwDBAAfOD0DBAIfOFAwDAMEAh84XAMEAx84YAMEAR84
cDAMAwQAHzlpAwQEHzlgAwQAHzl3AwQAHzniAwQAHzqCMA0GCSqGSIb3DQEBCwUA
A4IBAQCuuyjw2j8IRhN2ZENlY1ie6H+jnHOmc6ltNBkADayYMq/IFdc9Lw1MUwBm
eLG3txNyvaI5CdAd6x8dRXEZ1Pe+qJ9lY/smLvV68u6OHj31VUPpYCM/xMES0Ies
/Pk00SZy9bFyY85R/eiYFYApzdkjuOsas1twkcCdJnfnTwwV031SeaXQKL6Mn+Vh
gZsxlCkEDoiMRZfIzGJ/3+LKJz/cGGZKBnQ9HYzf5aBLkaLCpTzrtFYmEkgDBGKY
TBPlAl1lyVzzjp6bWE6zFJ6rI7a4b9g3zPf0S66NYwmyV9qjuJvg+JP08EQxgaFl
FWdkkdZArTbDw1rhBeIb/bN5meZ4
-----END CERTIFICATE-----
Generated at Mon May 12 18:36:24 2025 by rpki-client