Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/DkG6Su7pu5od_q3MGIEMxbQ1CGc.roa
File: DkG6Su7pu5od_q3MGIEMxbQ1CGc.roa (raw, json)
Hash identifier: tdKY94ZDxW9NT9Jwuk052ayiif+fwk0k4T8Hzwn/iYU=
Subject key identifier: 0E:41:BA:4A:EE:E9:BB:9A:1D:FE:AD:CC:18:81:0C:C5:B4:35:08:67
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197968A6CA6DD7F76ADE744BE4A261AAFF7
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/DkG6Su7pu5od_q3MGIEMxbQ1CGc.roa
Signing time: Sun 22 Jun 2025 07:29:03 +0000
ROA not before: Sun 22 Jun 2025 07:29:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64286
IP address blocks: 151.244.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jun 2025 07:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:96:8a:6c:a6:dd:7f:76:ad:e7:44:be:4a:26:1a:af:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 22 07:29:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e41ba4aeee9bb9a1dfeadcc18810cc5b4350867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e6:b5:12:5e:0d:b7:92:61:f3:7c:13:b5:a5:
29:f8:65:52:bc:76:44:10:2e:63:ed:13:22:9f:9e:
ee:a8:74:e6:a3:65:c8:79:73:35:48:d3:0a:0f:d0:
de:bd:33:5b:3c:6c:d4:87:8d:2d:52:9d:5e:1b:d8:
1d:ad:f7:1e:a7:e0:56:27:19:8b:3c:11:d7:63:a6:
88:5e:98:bd:60:25:97:ec:b0:ca:45:65:10:2e:b0:
8f:f1:04:15:41:35:17:1d:41:21:d3:53:0a:18:24:
45:c2:2f:9a:dd:57:6d:b8:03:c2:db:d7:04:34:7d:
b6:f4:49:98:31:53:d9:e0:98:f8:76:fc:8e:87:aa:
20:e3:f8:a3:e7:e4:07:22:d6:3e:d3:73:65:43:60:
67:fa:60:8a:3c:d1:9d:11:f0:be:23:49:4b:b7:98:
03:9f:d7:19:6b:1d:68:67:57:67:8d:f5:7b:37:f1:
27:f0:af:01:f3:43:3b:83:d8:c8:37:35:dd:f4:f2:
6a:4b:89:99:22:3f:7b:99:db:64:b8:64:86:5f:97:
11:cc:e5:6d:de:3c:4f:59:e6:8c:6c:59:d3:1a:f4:
d4:91:8d:1a:88:0d:bd:af:bc:5d:67:24:b1:57:4c:
e3:b8:51:1e:08:2e:44:0e:cc:d7:4a:d4:f7:d9:13:
15:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:41:BA:4A:EE:E9:BB:9A:1D:FE:AD:CC:18:81:0C:C5:B4:35:08:67
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/DkG6Su7pu5od_q3MGIEMxbQ1CGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.244.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:e9:87:60:2a:e1:91:33:ff:de:e9:7f:90:7d:0d:c2:f5:07:
e4:d1:19:8c:78:39:cd:b2:2a:48:21:5f:cf:44:28:39:69:58:
20:8f:1c:85:1f:02:41:c6:9c:29:64:64:6a:90:cb:ed:81:e7:
f6:53:5b:4d:2b:40:8e:df:95:a9:31:2a:4b:29:2f:f5:ee:07:
ae:4c:82:f3:50:c3:80:b7:34:d5:2f:20:7d:c0:42:ff:f6:bf:
83:c4:d7:61:af:13:6d:c1:e3:cd:5c:48:e1:2e:f4:aa:24:7a:
e1:b4:bd:8c:b0:06:40:6c:66:2b:71:f5:ab:a1:3a:cd:5b:69:
c6:14:b9:f4:0c:49:fc:5f:73:4c:fa:44:54:1b:20:64:83:99:
42:d3:4a:86:e5:7e:1a:de:fb:e1:0e:a0:46:da:8c:d5:30:d0:
68:8a:7a:c1:84:f0:3d:bc:33:c5:06:bc:33:04:ac:a6:6c:57:
80:84:98:64:f6:10:3e:8a:20:27:24:05:cf:f9:e9:0d:da:89:
6a:7e:2d:5f:56:d3:31:7b:5a:96:46:35:14:09:53:c5:1b:a7:
9d:a4:a0:54:06:73:58:17:29:b1:06:47:72:9a:2b:21:fd:d6:
61:34:92:96:1a:1c:a0:94:31:98:3d:07:d2:dd:7f:9b:13:a2:
01:69:ad:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:54:49 2025 by rpki-client