Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/PrV5j5y_VShJJIyxM1ME93doQ9Y.roa
File: PrV5j5y_VShJJIyxM1ME93doQ9Y.roa (raw, json)
Hash identifier: n48SsfW4c3B4V0CZAvSm8hcqZwJgk39LRLosj4nLJGU=
Subject key identifier: 3E:B5:79:8F:9C:BF:55:28:49:24:8C:B1:33:53:04:F7:77:68:43:D6
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197D4A353F5D5E0F09FD643B9D7A1204C07
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/PrV5j5y_VShJJIyxM1ME93doQ9Y.roa
Signing time: Fri 04 Jul 2025 08:52:42 +0000
ROA not before: Fri 04 Jul 2025 08:52:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 37.202.220.0/24 maxlen: 24
151.240.8.0/24 maxlen: 24
151.240.28.0/24 maxlen: 24
151.240.60.0/23 maxlen: 24
151.240.72.0/24 maxlen: 24
151.240.74.0/24 maxlen: 24
151.240.80.0/23 maxlen: 24
151.240.110.0/24 maxlen: 24
151.240.118.0/23 maxlen: 24
151.240.252.0/24 maxlen: 24
151.240.253.0/24 maxlen: 24
151.242.13.0/24 maxlen: 24
151.242.27.0/24 maxlen: 24
151.242.134.0/24 maxlen: 24
151.242.135.0/24 maxlen: 24
151.242.236.0/22 maxlen: 24
151.243.25.0/24 maxlen: 24
151.243.170.0/24 maxlen: 24
151.243.172.0/24 maxlen: 24
151.244.48.0/24 maxlen: 24
151.244.102.0/24 maxlen: 24
151.244.196.0/24 maxlen: 24
151.245.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Jul 2025 06:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:a3:53:f5:d5:e0:f0:9f:d6:43:b9:d7:a1:20:4c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 4 08:52:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3eb5798f9cbf552849248cb1335304f7776843d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:95:f5:85:3f:c4:74:08:5e:34:78:f3:61:
47:74:a5:c8:9a:d0:10:f8:c9:a6:61:cb:02:fd:69:
b2:fe:13:0a:48:8b:71:cc:f4:04:44:2f:65:8e:66:
79:67:63:e7:94:2d:84:07:dd:70:c8:a0:02:06:39:
7b:00:6f:02:2c:08:42:fa:44:08:11:14:16:98:d6:
da:d8:48:82:6b:4c:dc:fa:55:21:85:c5:58:c0:0e:
d9:cc:3a:c6:cc:41:dd:ba:82:77:02:6e:f3:f8:85:
a2:99:76:bc:f0:f3:0e:72:ca:8d:c9:03:e0:76:6e:
be:c8:26:fc:b3:b4:70:66:77:77:c9:18:51:45:e5:
91:73:0c:7b:e6:ec:57:63:43:d4:c8:e0:af:ca:79:
62:a8:d5:b9:2f:6c:a9:2c:90:f5:ce:17:e1:89:02:
ff:f0:20:2b:4e:a2:93:a8:bd:a5:1b:0a:d4:f1:4b:
4a:c8:38:64:6e:97:46:b7:04:64:2b:e8:3e:fd:47:
0a:08:51:df:e7:34:8b:e5:e2:4d:0d:9d:4b:a9:74:
f7:73:51:02:eb:2f:e6:8e:92:d2:a8:9b:2d:07:09:
50:23:fa:cf:24:94:bc:21:13:ba:1d:71:d5:28:f7:
2f:af:36:86:f0:26:40:5b:c0:45:d3:aa:cc:93:04:
ed:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B5:79:8F:9C:BF:55:28:49:24:8C:B1:33:53:04:F7:77:68:43:D6
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/PrV5j5y_VShJJIyxM1ME93doQ9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.220.0/24
151.240.8.0/24
151.240.28.0/24
151.240.60.0/23
151.240.72.0/24
151.240.74.0/24
151.240.80.0/23
151.240.110.0/24
151.240.118.0/23
151.240.252.0/23
151.242.13.0/24
151.242.27.0/24
151.242.134.0/23
151.242.236.0/22
151.243.25.0/24
151.243.170.0/24
151.243.172.0/24
151.244.48.0/24
151.244.102.0/24
151.244.196.0/24
151.245.64.0/22
Signature Algorithm: sha256WithRSAEncryption
18:23:30:d2:da:aa:94:6c:3e:e9:60:2c:77:43:c6:0d:94:a5:
f1:20:3e:38:b5:89:37:d8:c5:1a:86:9f:8d:52:22:f3:2f:6f:
79:2c:ff:8f:34:77:75:7c:07:ce:61:a3:f5:af:49:5d:7f:cd:
bc:0d:7a:7c:a6:72:7c:6e:44:ce:aa:e8:7a:a9:70:0b:ff:8c:
79:94:a5:2b:30:a9:49:60:ba:98:30:27:b9:8e:3c:92:27:43:
8b:70:70:9d:ba:ad:0e:e2:04:0c:38:ad:a4:56:2b:63:b6:a3:
46:9e:c5:01:9b:46:69:50:62:20:04:98:2b:38:6a:e9:19:1c:
51:b6:46:2d:76:a7:89:b2:db:b8:6c:c1:46:a3:57:63:83:48:
bc:7f:17:36:fe:02:be:37:5b:09:9a:48:59:de:c0:63:86:c8:
f3:9b:b4:2b:b7:51:10:fa:cc:d5:4e:4e:55:a7:07:9c:a5:d7:
69:0d:22:b5:25:a5:a8:01:05:79:35:4f:40:42:57:b9:ad:45:
36:cf:5d:23:b4:c8:5c:24:b1:43:c5:d7:60:eb:0d:6a:e6:fa:
51:22:3b:a0:fa:26:64:c3:34:d2:d9:44:07:b9:d0:f1:59:20:
84:f1:32:5f:15:c2:1d:5c:3d:0d:83:7e:a7:52:66:22:7f:70:
f7:1b:69:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:36:09 2025 by rpki-client