Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0WP7g1gyzLZgJIsxP6NMAVwC9fY.roa
File: 0WP7g1gyzLZgJIsxP6NMAVwC9fY.roa (raw, json)
Hash identifier: Z+KLdxoBCpGRKw2k/Ww4fQqLpCMjcdEIuO/I8ZC7tYI=
Subject key identifier: D1:63:FB:83:58:32:CC:B6:60:24:8B:31:3F:A3:4C:01:5C:02:F5:F6
Certificate issuer: /CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Certificate serial: 0198145A35519F60F454D51C5674E7D4479B
Authority key identifier: D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0WP7g1gyzLZgJIsxP6NMAVwC9fY.roa
Signing time: Wed 16 Jul 2025 17:48:32 +0000
ROA not before: Wed 16 Jul 2025 17:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197540
IP address blocks: 152.53.0.0/16 maxlen: 24
152.53.5.0/24 maxlen: 24
152.53.7.0/24 maxlen: 24
152.53.12.0/22 maxlen: 24
152.53.16.0/22 maxlen: 24
152.53.20.0/22 maxlen: 24
152.53.32.0/22 maxlen: 24
152.53.44.0/22 maxlen: 24
152.53.48.0/22 maxlen: 22
152.53.64.0/22 maxlen: 24
152.53.84.0/22 maxlen: 22
152.53.92.0/22 maxlen: 22
152.53.100.0/22 maxlen: 22
152.53.104.0/22 maxlen: 22
152.53.108.0/22 maxlen: 22
152.53.112.0/22 maxlen: 22
152.53.116.0/22 maxlen: 22
152.53.124.0/22 maxlen: 22
152.53.128.0/20 maxlen: 22
152.53.160.0/22 maxlen: 22
152.53.172.0/22 maxlen: 22
152.53.176.0/22 maxlen: 22
152.53.180.0/22 maxlen: 22
152.53.196.0/22 maxlen: 22
152.53.224.0/22 maxlen: 22
152.53.228.0/22 maxlen: 22
152.53.236.0/22 maxlen: 22
152.53.244.0/22 maxlen: 22
152.53.248.0/22 maxlen: 22
152.53.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 25 Jul 2025 09:07:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:14:5a:35:51:9f:60:f4:54:d5:1c:56:74:e7:d4:47:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Validity
Not Before: Jul 16 17:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d163fb835832ccb660248b313fa34c015c02f5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:06:23:63:14:85:0c:01:38:18:8b:04:9c:23:
12:ac:c8:9a:5f:a1:22:2a:7f:ae:2a:ae:4f:3f:11:
74:dd:6c:c8:b5:ab:77:99:c4:a5:9f:35:f6:03:50:
02:96:7e:11:17:b4:4f:43:f0:d0:0e:a7:84:16:f6:
bb:92:5e:ac:33:e6:61:b2:9a:41:8f:f4:a5:44:f0:
2d:ec:f1:c2:f6:46:b7:79:48:a6:f9:01:15:7a:2a:
fe:78:2d:e2:cd:26:1d:d1:01:47:c8:bd:29:3a:1c:
d2:57:79:25:be:42:0d:52:33:bf:76:6a:22:03:55:
b2:04:d1:b2:5d:21:79:3f:df:c6:a4:95:2a:cb:25:
a5:51:bb:05:fb:f5:53:70:4f:81:a7:99:61:c6:fe:
b6:4e:9f:59:e3:ad:42:4c:9d:9f:be:c7:a6:9b:31:
86:63:6b:64:e0:b8:f0:81:42:30:23:6e:66:70:d5:
5d:19:88:e5:1e:3c:2e:24:ef:8d:7e:ba:fa:24:02:
03:a4:a7:1c:c1:13:31:b5:0f:af:d5:a3:20:13:cf:
01:53:8c:37:8e:cc:b1:9d:fb:6a:13:57:e1:e3:ac:
07:44:a9:cf:ba:b0:24:f4:4c:99:a0:32:76:46:26:
a6:3e:7e:77:1a:8a:33:12:ce:e2:bd:0a:9a:44:74:
a8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:63:FB:83:58:32:CC:B6:60:24:8B:31:3F:A3:4C:01:5C:02:F5:F6
X509v3 Authority Key Identifier:
keyid:D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0WP7g1gyzLZgJIsxP6NMAVwC9fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:96:67:b1:b3:53:54:48:84:6c:4b:a4:11:02:16:a1:e4:06:
8a:58:0f:29:a2:2c:9b:df:30:cf:d1:01:56:6b:eb:eb:d5:df:
fc:80:4d:4a:2c:a4:36:4b:e8:67:75:d4:5c:7e:39:f1:a3:38:
6b:b1:3b:06:6c:fd:09:be:6a:8a:37:d6:f3:d5:3d:0e:57:98:
2c:19:1f:5a:fe:cd:2b:48:bc:48:fb:5d:a8:6e:0b:75:f9:3c:
0d:25:0c:1a:a6:06:80:54:49:60:0c:8f:e9:46:ba:a1:07:1c:
ff:a4:f3:d4:95:91:64:c5:bf:b4:64:02:62:25:d2:e7:2d:3b:
20:eb:2c:b0:98:8c:48:de:fc:eb:40:e7:c3:44:36:6c:16:fb:
1c:7e:ec:51:86:28:eb:d9:b5:2a:fe:06:c4:ff:6d:78:7b:b5:
a0:4c:90:04:46:93:b5:29:f0:f3:1a:01:e4:3f:fc:88:8f:0c:
ae:5d:1d:3b:2e:d5:38:4a:4a:36:7d:2f:40:52:fc:1f:7a:97:
47:5d:f0:38:77:25:44:18:a6:e6:99:04:fc:f0:db:65:b8:37:
76:7d:e6:68:72:cc:53:9e:c9:bc:4e:93:3c:06:78:0b:6f:ea:
01:6d:33:a2:62:68:8d:46:ae:03:80:25:cd:5e:0a:c6:4f:55:
34:f2:1a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 17:26:18 2025 by rpki-client