Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/leZTdVi0h68YEHpKwrLc5kOy2p0.roa
File: leZTdVi0h68YEHpKwrLc5kOy2p0.roa (raw, json)
Hash identifier: 8s18ibosO1x50Yww3lAT28OhoJ7QdGPAW+qT9Pw00UM=
Subject key identifier: 95:E6:53:75:58:B4:87:AF:18:10:7A:4A:C2:B2:DC:E6:43:B2:DA:9D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0196A1806F3A22D18C4E58FEEA8C348E115E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/leZTdVi0h68YEHpKwrLc5kOy2p0.roa
Signing time: Mon 05 May 2025 17:31:10 +0000
ROA not before: Mon 05 May 2025 17:31:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212742
IP address blocks: 31.56.176.0/22 maxlen: 24
31.56.184.0/22 maxlen: 24
31.58.180.0/22 maxlen: 24
31.58.184.0/21 maxlen: 24
31.58.192.0/22 maxlen: 24
31.58.196.0/22 maxlen: 24
31.59.36.0/22 maxlen: 24
31.59.44.0/22 maxlen: 24
31.59.84.0/22 maxlen: 24
31.59.90.0/23 maxlen: 24
31.59.92.0/22 maxlen: 24
31.59.101.0/24 maxlen: 24
31.59.102.0/23 maxlen: 24
31.59.104.0/23 maxlen: 24
31.59.106.0/24 maxlen: 24
217.60.8.0/22 maxlen: 24
217.60.32.0/22 maxlen: 24
217.60.44.0/22 maxlen: 24
217.60.48.0/22 maxlen: 24
217.60.52.0/22 maxlen: 24
217.60.56.0/22 maxlen: 24
217.60.128.0/19 maxlen: 24
217.60.160.0/20 maxlen: 24
217.60.176.0/21 maxlen: 24
217.60.184.0/23 maxlen: 24
217.60.186.0/24 maxlen: 24
217.60.200.0/21 maxlen: 24
217.60.208.0/20 maxlen: 24
217.60.224.0/21 maxlen: 24
217.60.232.0/22 maxlen: 24
217.60.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 May 2025 08:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:80:6f:3a:22:d1:8c:4e:58:fe:ea:8c:34:8e:11:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 5 17:31:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95e6537558b487af18107a4ac2b2dce643b2da9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c7:f7:8d:84:15:c9:99:31:7b:78:79:85:2b:
38:f2:12:6d:22:0b:17:a7:4c:62:be:a9:2b:95:4f:
f4:e3:f4:b0:86:4c:cc:e5:84:93:35:ae:9d:0b:69:
05:bf:21:5c:4c:3c:cc:cb:5a:42:cf:11:fc:5c:75:
76:bc:65:ad:02:68:fa:49:e8:e8:66:ca:8c:36:fd:
9c:60:6d:1d:92:b2:4a:cd:02:d3:56:6f:8f:82:92:
15:2a:83:9a:46:6c:cb:d9:ba:71:d3:29:99:e9:88:
26:0a:9a:8d:58:7b:99:74:0e:07:d6:ac:2b:3f:1f:
43:79:b7:9c:8c:9b:7f:6b:b9:dd:94:62:a0:05:68:
cd:1b:a2:d3:5c:88:9d:b9:7f:e0:c6:dc:82:5a:79:
39:bf:5c:94:f1:10:1f:cb:01:73:0a:62:04:c7:fa:
01:94:6a:19:da:53:a8:b9:72:1f:57:ec:09:6f:80:
f8:a9:4b:e1:c1:dc:00:e2:c3:ad:13:bd:57:1f:c9:
55:7e:0b:c5:79:7c:f4:b1:1c:f1:12:78:cc:ed:cd:
4c:bb:df:37:54:f1:34:45:4d:0f:cd:1f:6e:81:09:
60:f3:49:82:91:c9:69:87:91:c8:f3:18:06:e3:bd:
c8:ed:a3:01:d8:b8:60:6a:6d:33:3b:17:54:ab:66:
ec:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E6:53:75:58:B4:87:AF:18:10:7A:4A:C2:B2:DC:E6:43:B2:DA:9D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/leZTdVi0h68YEHpKwrLc5kOy2p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.176.0/22
31.56.184.0/22
31.58.180.0-31.58.199.255
31.59.36.0/22
31.59.44.0/22
31.59.84.0/22
31.59.90.0-31.59.95.255
31.59.101.0-31.59.106.255
217.60.8.0/22
217.60.32.0/22
217.60.44.0-217.60.59.255
217.60.128.0-217.60.186.255
217.60.200.0-217.60.235.255
217.60.250.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cd:0e:c0:be:cf:2e:13:c1:6f:91:78:b4:79:14:c2:94:17:
32:3b:83:4c:94:49:1c:5a:24:4f:0f:be:de:f7:f7:c6:4e:28:
93:24:a8:22:91:fb:85:bf:3f:1f:2a:d2:b1:77:48:d2:f3:a9:
f6:ec:d4:eb:43:9e:d2:fd:b4:40:e0:cb:6e:dc:ad:2a:8b:b7:
59:73:b0:28:4f:da:fb:4b:6a:c1:76:7f:73:9c:89:0c:bf:28:
18:47:12:8c:9b:8d:82:55:fa:f8:bc:f3:e9:fe:77:6c:b1:d5:
0f:a3:c4:e6:b1:4e:23:94:47:1d:ee:f2:d9:87:8b:c5:ac:fd:
fb:db:ab:80:53:8d:46:b9:8f:48:87:f2:36:7a:77:88:29:90:
57:54:66:cd:f2:ce:87:f8:2c:d3:15:2b:b9:1e:24:88:c3:3f:
26:6d:ef:3b:84:58:16:f7:b0:7e:8e:54:38:08:d7:d0:48:e1:
04:2f:fe:5e:32:e9:59:db:8b:34:6f:18:5b:f2:23:8c:10:f4:
ac:61:16:c4:3a:89:b8:ba:8d:a4:d9:51:9b:e9:ba:4e:3b:e1:
bc:bb:94:47:46:97:35:01:04:cf:e9:98:f4:ec:de:ee:10:66:
c7:57:53:db:01:53:00:b1:48:7b:67:25:8f:18:b2:92:64:9b:
2f:80:02:b7
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAZahgG86ItGMTlj+6ow0jhFeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNTA1MTczMTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWU2NTM3NTU4YjQ4N2FmMTgxMDdhNGFjMmIyZGNlNjQzYjJkYTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMf3jYQVyZkxe3h5hSs48hJtIgsX
p0xivqkrlU/04/SwhkzM5YSTNa6dC2kFvyFcTDzMy1pCzxH8XHV2vGWtAmj6Sejo
ZsqMNv2cYG0dkrJKzQLTVm+PgpIVKoOaRmzL2bpx0ymZ6YgmCpqNWHuZdA4H1qwr
Px9DebecjJt/a7ndlGKgBWjNG6LTXIiduX/gxtyCWnk5v1yU8RAfywFzCmIEx/oB
lGoZ2lOouXIfV+wJb4D4qUvhwdwA4sOtE71XH8lVfgvFeXz0sRzxEnjM7c1Mu983
VPE0RU0PzR9ugQlg80mCkclph5HI8xgG473I7aMB2Lhgam0zOxdUq2bs2wIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFJXmU3VYtIevGBB6SsKy3OZDstqdMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvbGVaVGRWaTBoNjhZRUhwS3dyTGM1a095MnAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBAIf
OLADBAIfOLgwDAMEAh86tAMEAx86wAMEAh87JAMEAh87LAMEAh87VDAMAwQBHzta
AwQFHztAMAwDBAAfO2UDBAAfO2oDBALZPAgDBALZPCAwDAMEAtk8LAMEAtk8ODAM
AwQH2TyAAwQA2Ty6MAwDBAPZPMgDBALZPOgDBADZPPowDQYJKoZIhvcNAQELBQAD
ggEBAEfNDsC+zy4TwW+ReLR5FMKUFzI7g0yUSRxaJE8Pvt7398ZOKJMkqCKR+4W/
Px8q0rF3SNLzqfbs1OtDntL9tEDgy27crSqLt1lzsChP2vtLasF2f3OciQy/KBhH
EoybjYJV+vi88+n+d2yx1Q+jxOaxTiOURx3u8tmHi8Ws/fvbq4BTjUa5j0iH8jZ6
d4gpkFdUZs3yzof4LNMVK7keJIjDPyZt7zuEWBb3sH6OVDgI19BI4QQv/l4y6Vnb
izRvGFvyI4wQ9KxhFsQ6ibi6jaTZUZvpuk474by7lEdGlzUBBM/pmPTs3u4QZsdX
U9sBUwCxSHtnJY8YspJkmy+AArc=
-----END CERTIFICATE-----
Generated at Sun May 11 15:10:59 2025 by rpki-client