Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/SiwPrfTUCeWvaRl_1sN49M5CMjA.roa
File: SiwPrfTUCeWvaRl_1sN49M5CMjA.roa (raw, json)
Hash identifier: UhiWYC/wBZTHyP/Yrk8lRM+kf1KLNPUVPnwjDG47SVM=
Subject key identifier: 4A:2C:0F:AD:F4:D4:09:E5:AF:69:19:7F:D6:C3:78:F4:CE:42:32:30
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197C04AE5BF076071B1E97464D3B53B30E3
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/SiwPrfTUCeWvaRl_1sN49M5CMjA.roa
Signing time: Mon 30 Jun 2025 10:03:43 +0000
ROA not before: Mon 30 Jun 2025 10:03:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 151.240.45.0/24 maxlen: 24
151.240.120.0/23 maxlen: 23
151.242.45.0/24 maxlen: 24
151.242.57.0/24 maxlen: 24
151.242.136.0/23 maxlen: 23
151.242.144.0/23 maxlen: 23
151.242.158.0/24 maxlen: 24
151.243.2.0/24 maxlen: 24
151.243.105.0/24 maxlen: 24
151.243.159.0/24 maxlen: 24
151.243.248.0/22 maxlen: 22
151.244.57.0/24 maxlen: 24
151.244.111.0/24 maxlen: 24
151.244.115.0/24 maxlen: 24
151.244.198.0/24 maxlen: 24
151.244.201.0/24 maxlen: 24
151.245.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 02 Jul 2025 12:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:4a:e5:bf:07:60:71:b1:e9:74:64:d3:b5:3b:30:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 30 10:03:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a2c0fadf4d409e5af69197fd6c378f4ce423230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:be:4c:b0:61:0f:3f:7c:9d:87:b5:cd:13:7e:
a8:17:4c:a3:4d:17:39:4c:05:ee:ae:fd:19:b1:f2:
de:2b:4a:b1:a3:bd:c4:bc:07:81:e1:9c:e5:27:97:
18:1f:f6:1f:5d:f6:be:16:f3:b6:03:a9:f9:8a:37:
55:d3:69:d5:25:3c:1f:b5:05:fb:73:d8:e5:c6:93:
04:9f:ff:a2:25:76:2f:2e:ee:6f:9a:cc:24:b3:b2:
5f:82:1d:ed:22:2d:0f:53:90:3e:b8:35:52:cf:27:
ed:55:ec:69:6b:59:47:49:ba:0a:c2:fa:92:df:31:
84:dd:eb:b1:a6:c5:49:4a:b5:f8:c3:72:5c:25:7e:
a2:2d:10:1d:9f:2b:39:ae:b9:60:05:17:f0:b8:f1:
4f:e2:cf:43:87:88:17:11:e0:b1:db:c7:0b:b6:ec:
81:41:15:d8:c5:46:d5:2c:f9:67:3f:fe:f3:a1:e7:
53:f2:c7:43:e6:1e:1e:80:e2:73:0f:75:97:ef:cb:
35:a8:57:2b:e9:8f:c5:20:09:f5:32:97:6c:b6:11:
9f:82:9f:eb:f3:a7:58:2e:6a:03:6e:b7:19:58:9c:
62:bf:84:cd:cf:d9:89:2a:44:81:1d:c6:2f:04:93:
18:af:27:a6:de:f8:a7:ad:e5:c1:2e:11:0d:02:9a:
50:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2C:0F:AD:F4:D4:09:E5:AF:69:19:7F:D6:C3:78:F4:CE:42:32:30
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/SiwPrfTUCeWvaRl_1sN49M5CMjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.45.0/24
151.240.120.0/23
151.242.45.0/24
151.242.57.0/24
151.242.136.0/23
151.242.144.0/23
151.242.158.0/24
151.243.2.0/24
151.243.105.0/24
151.243.159.0/24
151.243.248.0/22
151.244.57.0/24
151.244.111.0/24
151.244.115.0/24
151.244.198.0/24
151.244.201.0/24
151.245.116.0/22
Signature Algorithm: sha256WithRSAEncryption
70:5d:d3:8b:65:4f:42:14:bd:f8:03:a4:92:9c:a0:10:d6:64:
7c:cb:59:f5:63:98:da:82:73:f5:d0:04:e3:b0:76:52:aa:b0:
1b:b5:ef:cd:9c:8e:82:98:8e:4c:79:c0:5c:89:08:af:c4:21:
b4:c5:7b:84:d6:43:48:7b:5b:1b:d4:e3:92:67:d5:34:c6:b9:
18:c2:62:e4:f5:e8:b2:6e:06:bf:d6:3b:66:51:2e:17:bf:59:
cf:63:9e:3f:b4:e9:2a:73:3b:33:2e:26:fb:0a:01:8e:1a:91:
54:8b:bd:0a:a5:9b:18:7e:f0:4d:84:d2:56:97:3c:8a:1f:60:
58:83:8c:b4:87:60:45:4c:f4:29:10:93:00:f3:c9:ce:13:85:
10:d1:60:90:29:2c:78:66:e2:4b:46:ef:c8:a1:51:34:e9:f3:
d5:b0:b2:69:27:49:1b:28:33:42:2c:82:c8:ea:68:b1:77:e1:
61:d2:e0:d6:6b:18:bc:6d:ab:e3:a9:2f:fc:6d:34:2a:90:dc:
43:09:78:95:05:50:4d:b6:86:59:63:dc:2f:72:5e:64:79:e2:
c7:70:8d:d5:b1:09:e7:82:be:d0:37:9e:f5:67:bd:c0:2a:db:
c3:bb:ca:b1:53:67:46:58:10:1d:aa:ec:24:83:d3:48:9f:f4:
a6:9c:77:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:50:57 2025 by rpki-client