Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/73zM_8QXliJxoX8a4HWAn1RhqYM.roa
File: 73zM_8QXliJxoX8a4HWAn1RhqYM.roa (raw, json)
Hash identifier: iyLJkDi0PYGtb7if6b4Ck8rnP8+8SQ+0vOiGzNddMjs=
Subject key identifier: EF:7C:CC:FF:C4:17:96:22:71:A1:7F:1A:E0:75:80:9F:54:61:A9:83
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197ED650182A33060300C5DC145EAE57AD8
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/73zM_8QXliJxoX8a4HWAn1RhqYM.roa
Signing time: Wed 09 Jul 2025 04:15:09 +0000
ROA not before: Wed 09 Jul 2025 04:15:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 37.202.220.0/24 maxlen: 24
151.240.8.0/24 maxlen: 24
151.240.28.0/24 maxlen: 24
151.240.60.0/23 maxlen: 24
151.240.72.0/24 maxlen: 24
151.240.74.0/24 maxlen: 24
151.240.80.0/23 maxlen: 24
151.240.110.0/24 maxlen: 24
151.240.118.0/23 maxlen: 24
151.240.148.0/23 maxlen: 24
151.240.226.0/23 maxlen: 24
151.240.252.0/24 maxlen: 24
151.240.253.0/24 maxlen: 24
151.242.13.0/24 maxlen: 24
151.242.76.0/23 maxlen: 24
151.242.134.0/24 maxlen: 24
151.242.135.0/24 maxlen: 24
151.242.156.0/23 maxlen: 24
151.242.236.0/22 maxlen: 24
151.243.25.0/24 maxlen: 24
151.243.148.0/23 maxlen: 24
151.243.170.0/24 maxlen: 24
151.243.172.0/24 maxlen: 24
151.244.48.0/24 maxlen: 24
151.244.102.0/24 maxlen: 24
151.244.196.0/24 maxlen: 24
151.244.226.0/23 maxlen: 24
151.245.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Jul 2025 17:27:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ed:65:01:82:a3:30:60:30:0c:5d:c1:45:ea:e5:7a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 9 04:15:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef7cccffc417962271a17f1ae075809f5461a983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:a1:2e:15:cd:a5:18:13:68:0d:a4:7f:53:
68:3f:4d:e0:1b:35:8f:07:a8:ba:97:4f:2a:b5:3e:
79:bc:fb:35:f3:93:9f:60:e0:d8:91:93:ab:4f:7d:
e6:c0:51:9c:5a:e9:b0:cb:53:72:79:eb:6a:57:92:
4c:4c:f4:7b:18:c9:fc:18:d6:d0:90:c0:ce:74:b5:
79:08:27:55:74:9d:09:cb:08:37:af:8a:46:e5:89:
24:9c:05:97:5c:e9:23:40:e7:fc:65:b0:0d:45:ac:
c7:42:1e:42:f9:e6:c1:10:9d:f4:1a:82:1b:09:59:
ff:20:ed:7e:af:1c:7d:6f:4e:32:a1:53:16:2c:11:
dc:0b:8d:bc:cd:2f:8f:eb:4f:46:7a:9e:70:dd:c0:
24:00:97:fc:4d:dc:93:f4:67:d6:d0:36:4e:07:f4:
8a:fc:43:a5:cf:b0:e7:ad:ab:b9:e3:d2:40:c6:88:
6a:ae:b6:bb:0a:38:f5:4d:eb:3b:bb:3e:9c:7d:ce:
d8:77:0e:3e:b6:91:0f:a8:f1:2c:66:1a:47:63:3c:
a9:73:94:02:35:b3:f1:b6:00:ce:a3:93:7c:c7:f8:
f9:59:4b:30:24:48:06:29:10:7f:31:41:aa:14:95:
9c:ac:3b:cc:95:26:b4:ef:33:6e:f4:37:1d:a1:5b:
ca:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7C:CC:FF:C4:17:96:22:71:A1:7F:1A:E0:75:80:9F:54:61:A9:83
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/73zM_8QXliJxoX8a4HWAn1RhqYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.220.0/24
151.240.8.0/24
151.240.28.0/24
151.240.60.0/23
151.240.72.0/24
151.240.74.0/24
151.240.80.0/23
151.240.110.0/24
151.240.118.0/23
151.240.148.0/23
151.240.226.0/23
151.240.252.0/23
151.242.13.0/24
151.242.76.0/23
151.242.134.0/23
151.242.156.0/23
151.242.236.0/22
151.243.25.0/24
151.243.148.0/23
151.243.170.0/24
151.243.172.0/24
151.244.48.0/24
151.244.102.0/24
151.244.196.0/24
151.244.226.0/23
151.245.64.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:45:f4:11:ee:3c:49:cb:34:3f:4e:20:0b:0f:86:4c:03:e4:
37:53:c9:8f:1e:cb:5b:b8:76:67:4c:c5:84:0d:ce:42:a5:fb:
68:a2:38:2a:0b:28:90:cf:ae:33:e8:4a:ea:ae:80:c4:50:b9:
fc:43:16:54:b1:e4:e2:87:a6:60:78:aa:5b:20:8d:2c:a4:2f:
ea:f0:f2:49:72:9a:14:a4:90:28:71:e3:54:19:32:84:d2:93:
07:c6:2e:29:f3:32:45:73:f2:f0:51:e5:ca:58:ae:32:df:c9:
41:5b:76:10:e8:ad:3c:db:b1:16:ea:9b:ce:ec:74:27:2d:30:
51:49:9c:a1:13:b3:1d:b9:3d:e0:03:58:4d:45:fc:0c:41:e5:
0f:84:5c:01:83:82:e6:2a:51:ec:db:85:ca:34:4e:2a:9d:df:
28:70:bd:21:d3:14:20:58:0c:f1:7c:aa:a0:31:58:c1:a3:2e:
47:a9:b2:a4:c2:54:49:88:4e:91:28:03:fe:4f:02:ec:d3:fb:
57:5f:70:27:86:48:9a:42:84:ad:56:15:6e:3c:b6:ba:14:43:
11:0e:45:2d:e9:4c:c3:c0:01:4e:a5:a4:32:e4:2d:8b:22:10:
88:4f:87:d7:7a:53:84:2c:86:af:50:c1:d8:93:21:de:58:3d:
1f:9e:d2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 12:06:07 2025 by rpki-client