Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/emkxpXFPBwuBpB7l4W51DFoREh0.roa
File: emkxpXFPBwuBpB7l4W51DFoREh0.roa (raw, json)
Hash identifier: KzJTqijzrUSkSlyHu6KE4e8Vf1FLvIFh1Fj9aKaxw+c=
Subject key identifier: 7A:69:31:A5:71:4F:07:0B:81:A4:1E:E5:E1:6E:75:0C:5A:11:12:1D
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01982C100CA2D470FB448DEED46E9211EA5F
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/emkxpXFPBwuBpB7l4W51DFoREh0.roa
Signing time: Mon 21 Jul 2025 08:18:25 +0000
ROA not before: Mon 21 Jul 2025 08:18:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19318
IP address blocks: 151.242.41.0/24 maxlen: 24
151.242.58.0/24 maxlen: 24
151.242.200.0/24 maxlen: 24
151.242.201.0/24 maxlen: 24
151.243.164.0/22 maxlen: 22
151.243.254.0/24 maxlen: 24
151.244.136.0/22 maxlen: 22
151.244.160.0/22 maxlen: 22
151.244.164.0/22 maxlen: 22
151.244.168.0/22 maxlen: 22
151.244.172.0/22 maxlen: 22
151.244.176.0/22 maxlen: 22
151.245.160.0/21 maxlen: 21
151.245.168.0/21 maxlen: 21
151.245.176.0/21 maxlen: 21
151.245.216.0/21 maxlen: 21
151.245.224.0/21 maxlen: 21
151.245.232.0/21 maxlen: 21
151.245.248.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 21 Jul 2025 12:15:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2c:10:0c:a2:d4:70:fb:44:8d:ee:d4:6e:92:11:ea:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 21 08:18:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a6931a5714f070b81a41ee5e16e750c5a11121d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ef:75:be:13:22:17:30:b4:df:62:35:95:11:
8b:52:41:51:57:b1:9f:05:3e:94:0d:40:79:f6:1c:
9e:56:fd:0a:60:0b:e6:f4:38:83:2e:9f:a0:5c:33:
1d:6e:57:27:51:89:d8:6b:05:98:e1:c6:8c:73:23:
ba:20:70:be:e3:86:1f:7b:37:db:86:f0:4c:33:63:
4c:b1:57:4b:c4:07:c7:b9:d5:83:15:31:fd:fb:48:
85:e6:63:7a:d8:e0:9a:f8:0c:b4:03:ae:5f:8e:23:
6f:69:dc:52:4b:88:b2:3f:70:2a:68:57:a8:ed:11:
98:59:8c:f3:ad:ff:33:61:4f:f1:d0:f3:b9:fb:58:
d9:73:24:87:a2:0b:db:69:39:61:ef:73:36:44:61:
98:34:15:82:7c:12:c6:c5:4f:4e:a5:40:3b:d0:8c:
15:86:44:b6:a1:c8:4c:01:36:ca:6f:7c:fa:c5:f7:
c6:23:7b:5d:8d:55:2b:1f:ae:22:d4:b3:12:a0:9e:
b4:af:50:77:d3:bc:2f:3f:a4:b4:98:4e:de:14:f4:
84:07:2b:6b:69:e8:15:12:0b:f5:32:b1:da:c7:d1:
cd:87:93:4d:5a:3f:b9:b1:6a:6e:3d:a9:e2:22:ce:
24:58:aa:c8:00:41:8f:53:7d:4b:36:4a:87:42:e4:
2b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:69:31:A5:71:4F:07:0B:81:A4:1E:E5:E1:6E:75:0C:5A:11:12:1D
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/emkxpXFPBwuBpB7l4W51DFoREh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.41.0/24
151.242.58.0/24
151.242.200.0/23
151.243.164.0/22
151.243.254.0/24
151.244.136.0/22
151.244.160.0-151.244.179.255
151.245.160.0-151.245.183.255
151.245.216.0-151.245.239.255
151.245.248.0/21
Signature Algorithm: sha256WithRSAEncryption
82:41:3c:d4:5f:6b:46:5f:6f:9c:c1:55:da:32:39:51:f3:81:
79:e4:41:ee:9c:8c:00:b4:9d:42:84:76:a4:e0:05:f8:63:fd:
8a:f2:85:2b:05:1f:06:79:76:ad:62:06:a1:e7:1f:87:32:b1:
ab:97:00:60:53:1a:a4:13:81:26:77:3f:c0:33:4a:ea:e9:4f:
5f:f7:81:f7:91:2e:ac:9f:ce:99:28:7f:b9:cc:f8:d5:1f:33:
41:40:50:6d:46:c6:9d:01:73:e4:0d:72:c5:4c:45:5c:a9:93:
2f:1d:5c:be:47:68:e9:fe:71:5d:d7:1f:5c:19:b1:2a:03:70:
3c:d1:a8:72:f3:cc:14:0a:af:3b:f1:3a:85:d0:39:89:5f:e8:
11:e2:a4:0c:28:d7:29:43:bd:2f:7a:30:cf:ed:f4:89:7b:be:
8c:6b:1f:f7:a8:31:16:47:0f:e1:47:75:9d:9b:1e:4c:b4:4d:
75:49:fb:e1:9b:83:ad:b2:9c:a6:71:92:0f:7f:1f:bf:64:8c:
7c:7a:1b:c3:e1:e0:5b:1e:8e:2b:08:bf:2d:83:a2:89:b5:6d:
bb:c0:b5:f5:11:db:fd:b9:7f:d1:bc:47:3b:76:0e:d9:68:7f:
35:15:82:48:17:0c:85:90:29:a1:8b:5c:b8:d8:fb:4d:39:2b:
61:76:07:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:49:12 2025 by rpki-client