Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gz2aR782JedHNxAQdKZvQvklzUQ.roa
File: gz2aR782JedHNxAQdKZvQvklzUQ.roa (raw, json)
Hash identifier: lQnR5V2l+JjCkwPEwEn8tfeCAVj/m/Okx6bO3Ym+Uho=
Subject key identifier: 83:3D:9A:47:BF:36:25:E7:47:37:10:10:74:A6:6F:42:F9:25:CD:44
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019682AF54E25DAC385C0A67D2CFC775917C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gz2aR782JedHNxAQdKZvQvklzUQ.roa
Signing time: Tue 29 Apr 2025 17:54:10 +0000
ROA not before: Tue 29 Apr 2025 17:54:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.49.0/24 maxlen: 24
31.56.156.0/24 maxlen: 24
31.56.192.0/22 maxlen: 24
31.56.204.0/22 maxlen: 22
31.56.210.0/24 maxlen: 24
31.56.212.0/24 maxlen: 24
31.56.216.0/22 maxlen: 24
31.56.223.0/24 maxlen: 24
31.56.232.0/22 maxlen: 24
31.56.234.0/24 maxlen: 24
31.57.92.0/22 maxlen: 22
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
31.59.171.0/24 maxlen: 24
31.59.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 19:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:af:54:e2:5d:ac:38:5c:0a:67:d2:cf:c7:75:91:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 29 17:54:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=833d9a47bf3625e74737101074a66f42f925cd44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ab:f1:7a:a5:d3:07:65:d1:34:41:5d:04:2d:
87:05:c5:f2:ed:3c:34:e1:c2:50:4d:2f:b6:31:3b:
69:d9:33:e9:84:5e:5b:e6:4b:60:94:1a:27:db:1f:
11:18:dc:fa:32:e0:a2:6b:96:44:f9:f3:48:6f:07:
a2:77:e3:af:eb:40:ca:bc:f5:ff:51:38:18:a9:03:
5a:df:7c:c9:54:f3:96:fd:df:f9:89:93:05:15:55:
c8:36:71:92:08:10:23:9c:b7:b8:f7:fe:0c:5c:5a:
5a:82:71:15:3f:0e:81:cb:cb:3d:06:e0:ab:4e:cf:
31:14:f0:55:c7:93:60:63:c0:a9:73:e2:b0:3b:e2:
88:ea:e6:ee:12:21:c4:4f:13:27:f6:76:40:50:eb:
fc:25:e3:0c:a4:ea:b4:58:e0:16:8a:b6:ba:de:c8:
75:de:f7:71:44:c4:3e:4b:61:84:16:9e:ac:b8:56:
9d:bc:07:af:1f:98:8e:84:a9:f6:8a:8a:36:be:da:
69:41:17:ea:00:0f:0a:3c:5b:e5:31:06:73:bc:7b:
fb:86:9b:dc:c7:1d:9d:43:6e:ea:5e:2e:60:bf:01:
44:ae:c7:73:d8:bb:cf:70:43:a6:4f:de:6c:2b:f5:
58:c7:8f:80:bc:ea:85:11:bc:31:b7:6d:ca:70:08:
af:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3D:9A:47:BF:36:25:E7:47:37:10:10:74:A6:6F:42:F9:25:CD:44
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/gz2aR782JedHNxAQdKZvQvklzUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.49.0/24
31.56.156.0/24
31.56.192.0/22
31.56.204.0/22
31.56.210.0/24
31.56.212.0/24
31.56.216.0/22
31.56.223.0/24
31.56.232.0/22
31.57.92.0/22
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.224.0/24
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
31.59.171.0/24
31.59.236.0/22
Signature Algorithm: sha256WithRSAEncryption
30:01:94:de:ac:75:6a:2b:31:a2:4f:39:38:12:dc:f2:9b:68:
85:ab:06:12:6c:8b:0f:27:d9:d5:5f:7b:c4:bf:de:e0:20:4c:
bc:ce:49:89:35:6a:be:04:38:4a:b6:8d:c4:3f:4e:d2:dc:6e:
74:27:e9:41:e9:35:39:61:5c:f5:18:df:a1:a4:6b:e1:23:df:
41:94:7a:98:61:ee:a7:dc:1d:82:a9:ef:ae:e0:dd:bd:7c:f6:
4b:54:b4:91:a3:17:ac:ad:6e:ff:a9:78:b0:3e:67:0c:d2:8d:
80:ee:d5:80:de:99:3b:53:61:78:88:c3:6e:26:5e:0e:ab:34:
4e:f7:43:89:40:30:42:7a:b5:66:15:1c:3f:db:77:df:20:2b:
7c:0c:1b:09:22:a9:c2:d3:a2:72:4f:f5:75:ff:d8:49:bc:73:
c2:53:53:45:e1:87:0f:2e:0a:bb:ba:48:da:88:6f:67:2a:ae:
5c:77:6f:bd:2c:ef:17:44:ba:3c:9f:fa:0c:67:42:d9:74:6e:
fa:94:ab:b0:17:f3:95:51:36:bd:22:41:ec:81:01:1e:19:b3:
7f:5e:c4:b2:55:ff:5c:87:df:40:79:84:ec:25:49:fc:cc:fc:
4e:89:4e:c6:5e:76:4c:b9:df:fd:19:c6:b3:5f:d2:38:2c:59:
62:61:6c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:09:36 2025 by rpki-client