Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JOxBwkYREWBxrtW7pCvCCLmIBmU.roa
File: JOxBwkYREWBxrtW7pCvCCLmIBmU.roa (raw, json)
Hash identifier: UERCZRfIT4kzE8FAMn0Mr50Qo/T63Pubw2EyFhkIknQ=
Subject key identifier: 24:EC:41:C2:46:11:11:60:71:AE:D5:BB:A4:2B:C2:08:B9:88:06:65
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194541B217EF5032DFF6CBC2ABFDC3290D4
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JOxBwkYREWBxrtW7pCvCCLmIBmU.roa
Signing time: Sat 11 Jan 2025 06:44:11 +0000
ROA not before: Sat 11 Jan 2025 06:44:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36530
IP address blocks: 31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 11:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:54:1b:21:7e:f5:03:2d:ff:6c:bc:2a:bf:dc:32:90:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 11 06:44:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=24ec41c24611116071aed5bba42bc208b9880665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6b:8e:ca:bb:13:dc:88:23:13:51:af:b7:b1:
8c:65:53:10:86:d9:5a:eb:0d:88:9d:bd:92:4f:52:
05:bf:05:64:ba:f5:cc:91:0b:22:9c:a7:87:f2:33:
97:07:53:f8:1a:53:9c:a3:b7:f5:e5:08:46:35:31:
08:6a:4e:28:4d:5e:8f:8e:6c:69:1b:0d:22:78:29:
d0:59:df:5f:dc:6a:b3:91:91:b8:ad:64:44:f2:14:
6c:28:b6:00:02:d5:7e:98:d3:93:ca:17:75:2b:d2:
ef:33:52:7a:38:ec:bc:c9:e3:75:91:f2:56:14:b1:
f2:12:59:1e:e8:2b:cc:be:13:d3:48:12:b6:ff:51:
ad:13:3e:40:98:d9:18:76:30:4f:5e:98:18:49:77:
37:aa:aa:9d:42:7f:ec:c7:dc:c5:69:4f:92:6e:b4:
85:a6:dd:0b:f5:02:de:9a:fd:8e:0d:fa:2a:ff:08:
5e:62:95:42:52:e3:1e:55:8e:e5:11:1c:ff:9d:f9:
de:0a:0d:47:9b:81:5e:2b:eb:87:b6:2e:1d:af:27:
e8:d9:ee:43:43:3a:f3:c2:c3:e8:91:ea:4b:df:71:
31:1b:5a:53:55:62:8d:57:8c:2a:cd:af:55:57:ee:
43:9f:3f:23:94:36:3a:15:c5:1e:67:6c:d9:5c:7f:
09:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EC:41:C2:46:11:11:60:71:AE:D5:BB:A4:2B:C2:08:B9:88:06:65
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JOxBwkYREWBxrtW7pCvCCLmIBmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.57.132.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:f6:b7:be:16:39:04:46:93:73:d7:6e:ad:35:62:c3:ea:a6:
2a:e8:da:04:c0:8c:c1:53:5b:2b:77:9e:60:36:d1:d7:02:22:
d7:66:b4:5b:34:b4:15:71:49:fd:f3:73:4d:60:aa:1e:6a:34:
87:6a:90:9c:0d:9f:eb:91:a6:f1:9d:09:22:f7:da:b5:a2:44:
b4:a3:ef:f6:fd:7c:1b:b4:97:d5:24:be:6f:7f:65:43:24:44:
d2:98:75:81:5a:46:04:5a:eb:50:ae:27:73:8a:87:b7:c8:43:
1e:2c:b7:21:8c:0b:e7:6a:d3:55:d6:62:2f:58:87:75:9c:8f:
b7:ae:3f:46:cf:a7:27:be:16:6f:93:ea:8d:fc:27:c3:f0:db:
62:e8:e0:86:98:e4:d1:ee:7e:79:ae:0e:c0:0d:04:10:4b:d7:
b8:39:a1:f3:be:92:22:5a:16:d9:8d:1c:19:d9:1f:33:0c:f5:
36:17:ce:70:5d:53:69:55:03:4f:5f:d6:e4:5b:79:e0:75:45:
2c:df:87:0f:d3:ce:8f:d1:5f:68:63:7f:eb:09:14:25:71:32:
ae:a0:52:08:33:32:50:08:2e:12:36:cc:90:e7:dc:14:8e:9b:
04:95:be:5b:c6:9c:17:c5:f1:2f:45:b7:50:9d:06:3c:32:5f:
5c:5e:be:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:45:41 2025 by rpki-client