Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UWL4zmdEf2OAt6SWv54LV-XuoiQ.roa
File: UWL4zmdEf2OAt6SWv54LV-XuoiQ.roa (raw, json)
Hash identifier: eaZI5USu3OY6gHnEA/T6a+1OfLVqI++N8h6nshTYCB0=
Subject key identifier: 51:62:F8:CE:67:44:7F:63:80:B7:A4:96:BF:9E:0B:57:E5:EE:A2:24
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193CE516C9FE600E0B0D00E6E2292D3080D
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UWL4zmdEf2OAt6SWv54LV-XuoiQ.roa
Signing time: Mon 16 Dec 2024 07:14:22 +0000
ROA not before: Mon 16 Dec 2024 07:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.4.0/23 maxlen: 23
31.56.24.0/24 maxlen: 24
31.56.42.0/23 maxlen: 24
31.56.57.0/24 maxlen: 24
31.56.71.0/24 maxlen: 24
31.56.73.0/24 maxlen: 24
31.56.74.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.56.85.0/24 maxlen: 24
31.56.89.0/24 maxlen: 24
31.56.104.0/22 maxlen: 22
31.56.108.0/22 maxlen: 22
31.56.114.0/23 maxlen: 24
31.56.118.0/23 maxlen: 24
31.56.120.0/22 maxlen: 24
31.56.156.0/24 maxlen: 24
31.57.44.0/23 maxlen: 24
31.57.65.0/24 maxlen: 24
31.57.132.0/23 maxlen: 23
31.57.146.0/23 maxlen: 24
31.57.176.0/21 maxlen: 24
31.57.178.0/24 maxlen: 24
31.57.179.0/24 maxlen: 24
31.57.181.0/24 maxlen: 24
31.57.182.0/24 maxlen: 24
31.57.183.0/24 maxlen: 24
31.57.188.0/24 maxlen: 24
31.57.192.0/22 maxlen: 24
31.57.200.0/23 maxlen: 24
31.57.204.0/24 maxlen: 24
31.57.207.0/24 maxlen: 24
31.57.232.0/22 maxlen: 24
31.58.34.0/23 maxlen: 24
31.58.130.0/24 maxlen: 24
31.58.131.0/24 maxlen: 24
31.58.152.0/22 maxlen: 24
31.58.167.0/24 maxlen: 24
31.59.96.0/22 maxlen: 22
31.59.112.0/22 maxlen: 22
31.59.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 15:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ce:51:6c:9f:e6:00:e0:b0:d0:0e:6e:22:92:d3:08:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 16 07:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5162f8ce67447f6380b7a496bf9e0b57e5eea224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:01:80:cc:26:1a:b9:ac:ca:04:f9:4a:7a:78:
d9:b0:c3:11:17:96:8d:dd:e3:c1:1b:0e:99:63:f5:
10:44:21:3f:9a:17:df:6e:57:6f:1d:dc:f4:d8:00:
b2:8a:21:de:7c:d5:54:cb:36:78:c8:79:de:35:35:
e5:78:30:86:96:f1:d0:17:43:c3:07:33:ec:44:35:
83:8a:84:25:c6:1e:2a:6e:0c:70:b7:a9:bc:e4:7f:
6c:35:e7:db:dd:53:85:4a:20:80:03:99:4d:79:56:
da:75:70:10:64:4b:7f:23:07:88:ff:54:78:d0:13:
cb:03:5f:c2:03:5c:7e:14:e2:ca:82:e7:65:85:1b:
d2:83:f9:8b:75:8f:2c:34:cc:7d:60:09:5d:a2:81:
39:15:c5:80:a9:3d:7c:20:95:2c:3b:92:78:7c:e1:
69:63:f3:95:5f:48:33:3f:e3:94:e0:e5:5f:cc:8d:
17:d1:64:f6:e1:6c:68:98:ce:fd:f3:b5:11:70:a2:
61:9e:67:25:4f:0c:cf:ed:8c:e4:45:62:8f:8a:0d:
e3:91:37:67:bc:12:62:e3:b3:31:14:8d:8b:81:67:
e6:71:24:98:a8:62:f9:22:3f:3b:7b:d9:05:54:33:
0e:62:a5:da:3e:a1:45:ea:13:97:28:3a:d6:16:a2:
3c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:62:F8:CE:67:44:7F:63:80:B7:A4:96:BF:9E:0B:57:E5:EE:A2:24
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/UWL4zmdEf2OAt6SWv54LV-XuoiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.4.0/23
31.56.24.0/24
31.56.42.0/23
31.56.57.0/24
31.56.71.0/24
31.56.73.0-31.56.75.255
31.56.85.0/24
31.56.89.0/24
31.56.104.0/21
31.56.114.0/23
31.56.118.0-31.56.123.255
31.56.156.0/24
31.57.44.0/23
31.57.65.0/24
31.57.132.0/23
31.57.146.0/23
31.57.176.0/21
31.57.188.0/24
31.57.192.0/22
31.57.200.0/23
31.57.204.0/24
31.57.207.0/24
31.57.232.0/22
31.58.34.0/23
31.58.130.0/23
31.58.152.0/22
31.58.167.0/24
31.59.96.0/22
31.59.112.0/22
31.59.184.0/22
Signature Algorithm: sha256WithRSAEncryption
80:be:1a:41:74:37:9a:ad:f7:9f:46:4f:9a:9c:03:86:15:c5:
da:ce:b4:d4:2b:55:c5:f9:e1:65:87:7d:30:8e:39:8d:72:0f:
5c:55:4e:7b:ec:16:33:7a:76:28:8b:fb:58:02:d5:a2:38:1f:
17:6b:13:ff:6a:59:1e:2a:d7:58:a7:0a:dc:8a:a2:8e:b1:e7:
bd:a6:6e:a8:99:b3:06:19:63:a9:91:c1:06:b1:4e:af:7b:23:
2b:8b:72:ec:e4:0f:60:75:c1:4e:1f:eb:bc:ea:06:98:3f:c6:
58:9a:19:6f:70:e6:45:4b:83:98:2c:d1:cd:13:58:34:ef:87:
2e:6d:17:e6:72:d3:0b:32:dd:72:0a:f7:85:34:10:96:3c:22:
f0:2c:6d:a7:0a:42:5d:b6:25:88:32:4b:a7:bc:ed:eb:55:e2:
9c:c4:5d:a3:73:37:b4:29:f5:50:7b:00:f9:0d:61:bd:6d:e2:
06:1a:c2:f9:72:05:85:cf:73:ca:95:3e:34:4f:94:aa:ac:c2:
cd:80:5c:a5:9c:75:fc:e7:3e:63:5a:ca:2e:56:70:fd:60:7f:
8c:9d:75:6e:53:eb:01:a5:d0:ef:8b:39:5f:69:ed:a2:6c:5b:
29:c4:70:06:1c:9e:75:83:64:db:20:08:fd:f9:78:54:8b:26:
49:4f:62:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 22:02:27 2025 by rpki-client