Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/80QBl46MR9xFuCIygqecjaOLqow.roa
File: 80QBl46MR9xFuCIygqecjaOLqow.roa (raw, json)
Hash identifier: SXUayMeq2k/bkRrwxX6VyYXkUMVuRADRH6zX4UEAvWs=
Subject key identifier: F3:44:01:97:8E:8C:47:DC:45:B8:22:32:82:A7:9C:8D:A3:8B:AA:8C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197E9EEC5ED15927751549130F154B49E59
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/80QBl46MR9xFuCIygqecjaOLqow.roa
Signing time: Tue 08 Jul 2025 12:07:08 +0000
ROA not before: Tue 08 Jul 2025 12:07:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 151.240.45.0/24 maxlen: 24
151.240.120.0/23 maxlen: 23
151.240.163.0/24 maxlen: 24
151.240.173.0/24 maxlen: 24
151.241.50.0/24 maxlen: 24
151.241.64.0/24 maxlen: 24
151.241.67.0/24 maxlen: 24
151.241.70.0/24 maxlen: 24
151.241.71.0/24 maxlen: 24
151.241.73.0/24 maxlen: 24
151.241.160.0/24 maxlen: 24
151.241.204.0/24 maxlen: 24
151.242.45.0/24 maxlen: 24
151.242.57.0/24 maxlen: 24
151.242.136.0/23 maxlen: 23
151.242.144.0/23 maxlen: 23
151.242.158.0/24 maxlen: 24
151.243.2.0/24 maxlen: 24
151.243.105.0/24 maxlen: 24
151.243.159.0/24 maxlen: 24
151.244.5.0/24 maxlen: 24
151.244.57.0/24 maxlen: 24
151.244.111.0/24 maxlen: 24
151.244.115.0/24 maxlen: 24
151.244.131.0/24 maxlen: 24
151.244.132.0/24 maxlen: 24
151.244.133.0/24 maxlen: 24
151.244.182.0/23 maxlen: 24
151.244.191.0/24 maxlen: 24
151.244.193.0/24 maxlen: 24
151.244.198.0/24 maxlen: 24
151.244.201.0/24 maxlen: 24
151.244.212.0/24 maxlen: 24
151.245.70.0/24 maxlen: 24
151.245.78.0/24 maxlen: 24
151.245.201.0/24 maxlen: 24
151.245.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Jul 2025 04:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e9:ee:c5:ed:15:92:77:51:54:91:30:f1:54:b4:9e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 8 12:07:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f34401978e8c47dc45b8223282a79c8da38baa8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d5:2f:5f:e6:33:fa:6c:fe:a5:9b:a9:62:0c:
ca:65:76:90:8a:9e:2d:5a:8b:0c:9f:1a:25:90:a3:
ed:bd:04:24:9d:aa:82:a7:3a:db:b8:27:e3:70:d0:
01:7a:3a:d7:c0:40:04:70:a2:4a:02:cd:c2:4f:f4:
3d:9e:97:10:49:f0:7e:be:49:64:65:fb:39:5a:33:
c0:d0:ed:ed:d4:c9:8b:18:b9:6b:7a:d6:2e:27:fb:
26:31:bd:cf:91:72:fb:1b:bd:20:ec:3f:62:a0:2e:
17:12:39:0f:ef:5b:7e:e8:18:f9:72:75:43:2b:62:
87:3b:63:84:af:c7:59:fd:c7:f1:9c:7c:59:d3:71:
db:2e:d1:f5:fa:eb:24:bb:02:5e:6b:48:3d:fd:aa:
fa:90:d6:50:c9:83:7f:12:b8:b3:19:33:e6:fe:30:
69:12:02:8f:e4:e0:28:53:9b:ba:dd:72:52:88:7f:
ba:93:c3:64:b2:b7:6b:98:81:6e:c8:f2:26:2a:bf:
5c:e7:f7:0f:75:9c:9f:8a:d9:33:06:7a:b8:9d:a6:
69:06:04:40:cf:25:a6:2a:7a:4f:2b:cf:19:a1:6b:
82:00:21:a3:59:4c:63:fc:fe:76:51:7d:2c:da:16:
e3:10:69:37:8c:dd:60:43:b0:4b:05:cf:11:86:42:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:44:01:97:8E:8C:47:DC:45:B8:22:32:82:A7:9C:8D:A3:8B:AA:8C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/80QBl46MR9xFuCIygqecjaOLqow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.45.0/24
151.240.120.0/23
151.240.163.0/24
151.240.173.0/24
151.241.50.0/24
151.241.64.0/24
151.241.67.0/24
151.241.70.0/23
151.241.73.0/24
151.241.160.0/24
151.241.204.0/24
151.242.45.0/24
151.242.57.0/24
151.242.136.0/23
151.242.144.0/23
151.242.158.0/24
151.243.2.0/24
151.243.105.0/24
151.243.159.0/24
151.244.5.0/24
151.244.57.0/24
151.244.111.0/24
151.244.115.0/24
151.244.131.0-151.244.133.255
151.244.182.0/23
151.244.191.0/24
151.244.193.0/24
151.244.198.0/24
151.244.201.0/24
151.244.212.0/24
151.245.70.0/24
151.245.78.0/24
151.245.201.0/24
151.245.212.0/24
Signature Algorithm: sha256WithRSAEncryption
10:87:a3:f2:40:06:c2:de:a8:0c:8b:38:9b:78:9e:f2:ad:2b:
5f:60:0a:5c:29:53:7d:e0:bc:06:61:f6:0b:c2:32:31:94:e8:
d3:01:16:4d:12:6e:7b:40:79:a9:d1:2b:0c:f3:8b:05:0a:64:
1c:cb:b5:d1:7c:e7:81:db:d1:6d:f4:a6:8e:43:69:6c:df:a8:
1d:ad:0e:e1:2b:4a:c8:85:0e:17:bc:e8:ad:f8:16:82:e7:18:
da:77:a4:7a:4b:5d:bf:0e:75:2f:9f:38:f2:f9:dc:0e:a5:0a:
0f:25:40:45:1c:72:00:be:d2:90:a9:5a:ea:ee:30:f2:81:78:
ad:ab:4f:da:c5:9a:ac:43:dc:96:2b:af:00:66:62:f6:8d:00:
2e:74:14:0a:c9:0e:8b:1d:8f:42:04:d9:94:33:2e:0e:c3:e9:
13:41:cb:e1:4e:ec:6d:2f:10:fa:1d:29:7d:94:0c:97:75:dc:
d9:67:60:e4:3c:f2:8b:58:04:d6:50:64:df:4a:2d:1a:e6:a5:
af:79:4f:db:02:7c:d0:12:04:d6:4c:44:e3:e8:31:ee:71:47:
a9:e5:3d:ba:08:3b:ff:9d:07:0c:44:60:8b:5f:80:f4:cc:f3:
b7:4a:a0:55:54:5e:aa:29:bc:b6:4c:93:be:19:c9:09:e2:0a:
1e:4c:16:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:36:19 2025 by rpki-client