Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQWjEmmr0m7dna7Skj5-qzwEHhs.roa
File: qQWjEmmr0m7dna7Skj5-qzwEHhs.roa (raw, json)
Hash identifier: oxQYVpacAfnwTYFMdwLUIVOeq0O9BhNSwhORKg45L0g=
Subject key identifier: A9:05:A3:12:69:AB:D2:6E:DD:9D:AE:D2:92:3E:7E:AB:3C:04:1E:1B
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01968213B1CF4B7144085737465ECCE54CFA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQWjEmmr0m7dna7Skj5-qzwEHhs.roa
Signing time: Tue 29 Apr 2025 15:04:10 +0000
ROA not before: Tue 29 Apr 2025 15:04:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5065
IP address blocks: 31.56.114.0/24 maxlen: 24
31.56.157.0/24 maxlen: 24
31.56.200.0/24 maxlen: 24
31.56.201.0/24 maxlen: 24
31.56.202.0/24 maxlen: 24
31.57.133.0/24 maxlen: 24
31.57.136.0/24 maxlen: 24
31.57.138.0/24 maxlen: 24
31.57.143.0/24 maxlen: 24
31.58.129.0/24 maxlen: 24
31.58.138.0/23 maxlen: 24
31.58.150.0/24 maxlen: 24
31.58.154.0/24 maxlen: 24
31.58.165.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
31.59.56.0/24 maxlen: 24
31.59.97.0/24 maxlen: 24
31.59.112.0/24 maxlen: 24
31.59.113.0/24 maxlen: 24
31.59.115.0/24 maxlen: 24
31.59.130.0/24 maxlen: 24
31.59.144.0/22 maxlen: 24
31.59.187.0/24 maxlen: 24
31.59.229.0/24 maxlen: 24
31.59.231.0/24 maxlen: 24
31.59.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 15:08:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:13:b1:cf:4b:71:44:08:57:37:46:5e:cc:e5:4c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 29 15:04:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a905a31269abd26edd9daed2923e7eab3c041e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d1:2e:0e:6f:b3:b7:82:f8:ee:06:fa:83:49:
1f:84:b4:8b:0b:4c:19:fb:6f:f0:05:d0:71:fd:ad:
7d:88:61:92:e0:2c:02:55:bf:24:a5:69:cf:cb:79:
76:88:4b:a4:02:4b:ba:51:5e:01:ca:70:d9:f9:8d:
38:7d:c7:ba:b7:d1:22:31:36:c0:20:1f:78:4b:e4:
6f:c8:72:26:41:88:ca:16:f4:a7:69:c1:2e:71:e0:
a1:3a:ec:b7:1c:a5:6d:3e:28:14:4b:8c:55:ee:b3:
52:ce:33:75:68:8f:2c:79:1e:7c:36:ca:f4:dd:75:
9b:d1:e5:5e:95:a6:e3:5e:9d:83:9b:3c:93:33:ba:
5a:bc:ff:80:e8:00:57:93:35:47:b5:07:38:20:fd:
bb:95:57:97:11:9e:d8:6a:7f:39:e4:66:21:0d:38:
cd:73:b4:a4:b2:62:91:1e:99:d7:a8:f8:43:ef:a2:
ca:68:90:f2:f0:1a:0f:18:4c:13:3e:89:97:96:c2:
5d:fd:28:62:2d:8f:60:34:74:6b:ec:15:03:59:9b:
fc:e1:f0:df:93:46:44:34:7d:f1:b9:4a:5b:e2:e2:
07:77:9b:46:09:f1:34:3f:c4:52:e1:f0:84:85:8c:
aa:28:e2:a3:74:13:4a:14:3f:8d:01:58:32:fa:03:
fc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:05:A3:12:69:AB:D2:6E:DD:9D:AE:D2:92:3E:7E:AB:3C:04:1E:1B
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/qQWjEmmr0m7dna7Skj5-qzwEHhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.114.0/24
31.56.157.0/24
31.56.200.0-31.56.202.255
31.57.133.0/24
31.57.136.0/24
31.57.138.0/24
31.57.143.0/24
31.58.129.0/24
31.58.138.0/23
31.58.150.0/24
31.58.154.0/24
31.58.165.0/24
31.59.43.0/24
31.59.56.0/24
31.59.97.0/24
31.59.112.0/23
31.59.115.0/24
31.59.130.0/24
31.59.144.0/22
31.59.187.0/24
31.59.229.0/24
31.59.231.0/24
31.59.245.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:71:91:5f:01:c9:a0:f9:e2:69:7d:93:eb:0a:65:b8:4b:70:
84:04:24:32:78:84:db:1f:bc:5f:f1:4b:b5:ab:7a:11:03:37:
e7:f2:78:a7:92:c5:58:61:89:47:61:24:02:9e:a3:88:1d:45:
66:b9:9e:90:6b:3d:34:e7:74:b6:58:aa:e4:9a:c3:f1:ae:81:
bf:47:56:b3:4e:7f:79:37:41:6d:a9:90:7c:ae:7a:ac:c9:40:
3f:89:2d:f6:e2:44:95:45:5d:f5:8c:8a:c6:58:71:e5:28:bb:
55:90:29:24:9b:62:29:fa:77:6b:aa:7b:8c:54:a3:22:29:70:
cf:09:2e:5b:48:30:99:34:76:8f:3d:ab:d5:e7:01:31:50:01:
9c:cc:d6:db:f4:53:c5:92:14:f0:67:57:4e:04:ae:e9:55:34:
ed:f0:b2:da:9e:df:66:f3:db:34:33:91:fc:7a:93:f9:ae:81:
72:62:31:ee:15:50:ab:11:39:8a:04:3b:60:51:5e:9d:ce:52:
49:42:74:3c:78:c7:46:38:a0:65:89:56:66:32:18:22:7d:cd:
6c:8e:8c:59:6f:9d:da:fd:6e:77:be:5c:38:e6:98:fe:52:d9:
b0:7c:d4:32:8c:88:d1:40:13:c4:3a:44:a3:80:99:7c:8a:0d:
34:97:be:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:35:15 2025 by rpki-client