Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ko0Jt1Klo4BqX5RF5Ipp5eauP9Q.roa
File: ko0Jt1Klo4BqX5RF5Ipp5eauP9Q.roa (raw, json)
Hash identifier: tCzSGhrE5lemuHNqIOFBzHBn1LhWnQO5lLWLA0/MTr8=
Subject key identifier: 92:8D:09:B7:52:A5:A3:80:6A:5F:94:45:E4:8A:69:E5:E6:AE:3F:D4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01968C60696257C784713760CF4EA62A84E3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ko0Jt1Klo4BqX5RF5Ipp5eauP9Q.roa
Signing time: Thu 01 May 2025 15:04:10 +0000
ROA not before: Thu 01 May 2025 15:04:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.56.49.0/24 maxlen: 24
31.56.156.0/24 maxlen: 24
31.56.192.0/22 maxlen: 22
31.56.204.0/22 maxlen: 22
31.56.210.0/24 maxlen: 24
31.56.212.0/24 maxlen: 24
31.56.216.0/22 maxlen: 22
31.56.223.0/24 maxlen: 24
31.56.232.0/22 maxlen: 24
31.56.234.0/24 maxlen: 24
31.56.235.0/24 maxlen: 24
31.57.92.0/22 maxlen: 22
31.57.129.0/24 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.142.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.191.0/24 maxlen: 24
31.57.206.0/24 maxlen: 24
31.58.33.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.157.0/24 maxlen: 24
31.58.160.0/24 maxlen: 24
31.58.163.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
31.58.224.0/24 maxlen: 24
31.58.230.0/23 maxlen: 24
31.58.231.0/24 maxlen: 24
31.59.57.0/24 maxlen: 24
31.59.108.0/24 maxlen: 24
31.59.109.0/24 maxlen: 24
31.59.110.0/24 maxlen: 24
31.59.171.0/24 maxlen: 24
31.59.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 May 2025 11:37:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:60:69:62:57:c7:84:71:37:60:cf:4e:a6:2a:84:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 1 15:04:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=928d09b752a5a3806a5f9445e48a69e5e6ae3fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:2a:ff:2c:14:63:48:35:db:b7:b0:57:96:
ac:bb:fd:fd:1a:22:3f:95:95:3d:5d:16:5a:33:ff:
e2:a3:91:e6:3e:79:52:3b:1f:65:56:e1:3c:e9:bd:
36:de:0e:6c:0f:4e:4e:68:34:dc:d0:a9:23:d7:c9:
95:44:f4:99:51:8b:ce:2d:bc:cb:93:1d:6e:28:3a:
cf:78:48:64:9b:00:cc:44:1c:57:8b:b0:e0:b4:df:
ba:c3:55:80:1d:59:80:08:4f:29:7f:80:18:7b:3a:
94:5b:9d:b1:eb:bc:8e:43:b5:f5:b8:a9:d5:a8:87:
70:2c:02:ce:18:bb:10:fa:ab:da:27:b1:da:f2:ba:
fd:09:b3:4c:79:4d:65:d2:c2:07:13:60:d3:59:a9:
ca:94:05:0e:5a:f1:68:11:48:7a:1c:f9:21:23:57:
90:f2:d0:58:16:22:a6:33:17:77:f3:1b:28:26:62:
a6:a0:1d:eb:ef:92:b4:e6:0c:91:77:fe:39:f8:be:
01:c2:4b:bb:42:91:18:60:6f:bc:3b:8e:c2:a2:92:
6c:6f:4a:c2:61:87:32:1a:ee:b1:9e:ec:63:4a:2f:
16:4f:7f:98:9d:9c:6c:c1:e8:57:1d:d9:c5:d4:1d:
92:f3:da:3f:a2:d9:31:df:e4:37:f3:2b:c7:8a:6b:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8D:09:B7:52:A5:A3:80:6A:5F:94:45:E4:8A:69:E5:E6:AE:3F:D4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ko0Jt1Klo4BqX5RF5Ipp5eauP9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.49.0/24
31.56.156.0/24
31.56.192.0/22
31.56.204.0/22
31.56.210.0/24
31.56.212.0/24
31.56.216.0/22
31.56.223.0/24
31.56.232.0/22
31.57.92.0/22
31.57.129.0/24
31.57.132.0/24
31.57.142.0/24
31.57.151.0/24
31.57.191.0/24
31.57.206.0/24
31.58.33.0/24
31.58.90.0/24
31.58.157.0/24
31.58.160.0/24
31.58.163.0/24
31.58.168.0/24
31.58.224.0/24
31.58.230.0/23
31.59.57.0/24
31.59.108.0-31.59.110.255
31.59.171.0/24
31.59.236.0/22
Signature Algorithm: sha256WithRSAEncryption
be:b1:42:1a:26:52:1a:25:1e:44:50:4b:b4:47:1e:36:a3:22:
04:33:a7:77:f0:37:de:79:1d:93:4a:5a:86:b4:a5:5d:d6:01:
65:8b:f3:d1:0e:5e:d2:19:89:f3:d1:6e:78:1e:62:a6:ac:35:
55:5d:a1:e1:1b:aa:cb:61:ce:68:7d:b5:7b:9e:c6:bc:6a:e2:
e4:04:79:6c:88:f1:e0:f5:d2:a1:33:6c:82:8c:c9:51:d0:49:
aa:30:2b:b2:bf:cc:3c:35:cd:cf:2f:15:a2:0c:31:22:0b:bd:
e1:7f:af:66:e1:8f:be:b6:21:4a:83:6f:39:58:f6:30:ee:bf:
ae:9a:b8:9a:0e:3a:c3:da:85:ab:8a:02:16:b7:6c:4e:f9:71:
1b:e0:e4:0a:aa:27:68:a9:73:02:3c:82:a7:79:80:72:df:e2:
00:d4:d3:38:4e:62:10:2b:6a:3a:1d:c8:e5:3a:5f:16:f4:eb:
be:29:24:a9:00:24:5d:a3:60:42:a0:db:2c:a0:21:7a:a2:d3:
9a:88:1b:b2:cb:29:94:ed:25:7e:15:a9:26:e1:2c:37:34:da:
d2:26:b6:d5:fd:95:ad:35:87:1a:f8:51:fc:97:09:25:e1:5d:
33:a0:97:a8:ac:f3:52:fe:2a:27:36:92:74:af:d1:e9:ab:97:
fc:f3:1e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:24:54 2025 by rpki-client