Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4B4XMBLSmSzp-jtMb6N0Oo6as9g.roa
File: 4B4XMBLSmSzp-jtMb6N0Oo6as9g.roa (raw, json)
Hash identifier: yKdIb4iccrXvtU+07NBjm6aMRt5gFPxXAiZ45xi+gbQ=
Subject key identifier: E0:1E:17:30:12:D2:99:2C:E9:FA:3B:4C:6F:A3:74:3A:8E:9A:B3:D8
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196C977720C1AB482504F75C90D97EFFE30
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4B4XMBLSmSzp-jtMb6N0Oo6as9g.roa
Signing time: Tue 13 May 2025 11:46:10 +0000
ROA not before: Tue 13 May 2025 11:46:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 151.243.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 May 2025 12:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:77:72:0c:1a:b4:82:50:4f:75:c9:0d:97:ef:fe:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 13 11:46:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e01e173012d2992ce9fa3b4c6fa3743a8e9ab3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b6:87:7b:2f:4b:51:2b:89:50:d9:15:63:30:
19:79:0d:dd:c7:b2:7b:c9:14:c9:43:5e:90:ff:2c:
8c:0f:f9:9f:fb:70:72:f5:07:10:2d:dc:3d:9f:f8:
e8:3a:ed:49:0b:95:27:40:5b:26:e2:08:20:13:e8:
91:bb:ee:7c:cf:31:4b:8f:c7:28:1a:93:71:dd:82:
37:2c:cb:b7:28:03:a4:1b:be:02:e9:c4:7f:b0:b3:
8b:23:1e:37:ec:f2:cd:55:e8:d7:71:af:88:fa:aa:
9c:d3:e0:17:3e:2e:37:3e:15:f0:67:e3:23:c0:49:
51:a7:9c:c7:d9:5d:17:66:52:1c:bb:50:86:01:26:
e5:93:7f:92:09:f2:d1:c8:80:5e:e5:4e:03:0e:b9:
a8:9c:0f:c9:12:e0:38:16:d1:7f:30:3f:4c:c4:e0:
63:8a:b2:d3:dd:20:39:3e:3d:d6:32:39:03:c7:c5:
4f:c9:2b:07:ea:89:3c:3a:37:04:22:45:26:61:d0:
2a:45:51:49:bb:27:2b:b1:f6:8a:d6:86:07:49:2f:
46:ab:84:a2:57:6b:e5:88:27:45:3a:3a:ac:48:bc:
ab:ca:37:18:0d:dd:da:b7:69:3a:84:1f:c0:46:2e:
36:7c:e0:7a:53:4e:da:ff:bb:64:97:5d:d7:86:5a:
fe:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1E:17:30:12:D2:99:2C:E9:FA:3B:4C:6F:A3:74:3A:8E:9A:B3:D8
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4B4XMBLSmSzp-jtMb6N0Oo6as9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.45.0/24
Signature Algorithm: sha256WithRSAEncryption
12:03:48:d9:73:ad:a4:4e:3f:51:cb:c9:bd:76:39:e5:f3:24:
98:d1:e8:94:75:28:97:d3:58:99:f1:5d:15:55:4d:28:08:71:
14:9b:18:6e:ef:5e:4e:59:e3:09:76:3b:ac:14:bf:63:47:70:
85:ea:3b:06:54:f9:6a:d3:bf:cf:c2:21:73:48:72:22:e4:97:
7e:2a:57:86:ed:75:c0:3f:52:df:cc:7d:44:92:ed:33:d1:6d:
f5:6e:17:dd:0f:fc:ba:82:7e:53:fc:83:88:3b:cf:5f:c8:61:
ac:2a:cb:b9:ce:d8:93:08:e2:be:95:f7:e0:28:f0:ab:a6:86:
60:f3:a3:61:3e:ba:6e:13:ef:fc:3c:4b:b9:e8:04:36:12:4f:
41:20:a6:45:c3:77:a9:ec:61:6d:d1:53:c6:f2:44:94:98:70:
e3:94:70:bd:a0:e0:30:13:d6:8a:7b:2a:8d:36:7e:34:3e:5a:
7c:83:d8:ee:11:d9:0a:dd:58:49:45:ba:c2:cc:5d:4d:cb:93:
e7:41:2a:3c:35:3b:ae:51:61:f2:80:52:7a:c1:eb:e2:d1:03:
6a:07:35:f8:ad:72:56:c9:2b:6b:d8:9d:88:f3:81:d2:ba:c6:
a4:bf:35:c5:2a:08:b5:3e:90:b5:20:bb:ad:f2:ef:88:a5:a2:
fb:43:fe:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:41:42 2025 by rpki-client