Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/52e0e2-478b-401d-9385-8ff6cd7747c4/1/AlGrQhRnFzafuaePcHLriDtfQfo.roa
File: AlGrQhRnFzafuaePcHLriDtfQfo.roa (raw, json)
Hash identifier: p3yUxz7sIilBy3CYURVM2+bH/QEbV3DEURDU/WmZ+sQ=
Subject key identifier: 02:51:AB:42:14:67:17:36:9F:B9:A7:8F:70:72:EB:88:3B:5F:41:FA
Certificate issuer: /CN=15c181706f61c4b737cd7eb78f7230e34cdfc14c
Certificate serial: 01981D105247A4471F1A3EE71BEDE99A4642
Authority key identifier: 15:C1:81:70:6F:61:C4:B7:37:CD:7E:B7:8F:72:30:E3:4C:DF:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FcGBcG9hxLc3zX63j3Iw40zfwUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/52e0e2-478b-401d-9385-8ff6cd7747c4/1/AlGrQhRnFzafuaePcHLriDtfQfo.roa
Signing time: Fri 18 Jul 2025 10:24:25 +0000
ROA not before: Fri 18 Jul 2025 10:24:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 145.36.0.0/19 maxlen: 19
145.36.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Fri 18 Jul 2025 10:44:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:1d:10:52:47:a4:47:1f:1a:3e:e7:1b:ed:e9:9a:46:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15c181706f61c4b737cd7eb78f7230e34cdfc14c
Validity
Not Before: Jul 18 10:24:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0251ab42146717369fb9a78f7072eb883b5f41fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:85:ac:77:2b:40:46:72:a6:ee:57:77:0c:8b:
6d:b4:32:2e:7f:d5:c9:8d:5a:b9:8b:6f:7a:fb:4c:
d2:dd:8c:52:a4:c5:62:4d:4b:ca:3d:7b:69:ab:66:
13:7b:a1:2d:59:d8:51:96:d6:71:23:53:0d:dc:e9:
02:c1:b2:7e:53:53:b7:5f:63:8b:ef:fb:6b:3c:fe:
b6:21:7f:33:ef:89:38:87:59:56:41:f0:25:56:80:
df:47:05:4c:8c:77:74:66:1b:cc:64:b9:e0:fd:3b:
3f:9b:9c:de:22:d2:c4:97:45:17:5a:73:34:34:db:
92:92:4b:d4:bf:e4:1a:8c:9a:6e:8c:21:1a:1e:b1:
c3:a7:16:26:e5:49:24:6f:02:10:71:a6:fb:1b:dd:
63:b6:f8:d9:59:1e:dd:47:03:22:96:c4:c2:4b:51:
e9:c1:46:d9:12:4a:f7:00:02:e4:04:45:c1:6d:44:
a0:36:23:66:fc:67:46:fc:fb:cd:3e:a9:01:88:eb:
ab:0f:47:8f:3c:68:74:81:45:55:5c:0e:2a:ac:20:
dc:20:d8:ef:36:f6:a1:77:e3:28:7b:51:ef:3f:dc:
ec:c4:7d:e2:1b:c8:ac:6a:e4:0d:91:fe:95:21:a4:
f9:7b:60:17:98:38:db:db:d8:12:5a:b2:41:c5:70:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:51:AB:42:14:67:17:36:9F:B9:A7:8F:70:72:EB:88:3B:5F:41:FA
X509v3 Authority Key Identifier:
keyid:15:C1:81:70:6F:61:C4:B7:37:CD:7E:B7:8F:72:30:E3:4C:DF:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FcGBcG9hxLc3zX63j3Iw40zfwUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/52e0e2-478b-401d-9385-8ff6cd7747c4/1/AlGrQhRnFzafuaePcHLriDtfQfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/52e0e2-478b-401d-9385-8ff6cd7747c4/1/FcGBcG9hxLc3zX63j3Iw40zfwUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.36.0.0/19
145.36.128.0/17
Signature Algorithm: sha256WithRSAEncryption
73:12:ff:00:32:7e:91:24:0a:d1:f3:94:03:8e:b3:fc:36:f3:
1c:2e:6e:5d:5f:85:94:be:48:44:4c:66:05:dd:f7:ee:32:68:
3a:00:4c:9f:7f:85:ad:cf:0b:af:9f:2b:f5:e8:25:3e:08:e6:
b1:9c:83:fb:ad:43:a0:e2:a7:fb:27:c3:a4:1c:aa:45:68:5e:
22:b8:48:a8:0e:9c:a3:2c:a6:fb:6a:77:42:3b:d6:ac:c2:43:
aa:e2:bb:e9:4c:af:88:90:2a:7a:39:3a:ee:6b:44:04:94:e1:
c1:86:87:8b:20:55:95:64:65:6a:ec:6b:81:23:65:42:25:62:
63:c1:bf:ff:29:57:c5:e3:5a:2c:f5:5f:ab:5a:f1:8e:37:d1:
ee:dc:63:68:ba:1e:0b:0c:b5:d6:d0:74:84:b6:eb:9a:2e:46:
1a:2c:63:db:40:59:91:e0:71:8e:8d:0f:2d:78:80:dd:a3:b1:
49:33:47:7e:2e:45:ef:79:5c:db:2c:bf:6d:bb:f0:0f:f7:b5:
d5:64:4e:dd:46:2e:d6:07:a9:1d:df:0f:e4:0a:af:da:a5:c7:
6b:ce:bc:a4:51:23:50:b6:b7:85:ed:a7:df:3b:6d:ea:c5:5a:
93:5f:4d:77:3b:cf:d9:ba:f3:54:d0:aa:b4:8b:dd:bb:44:42:
40:a8:50:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:31:28 2025 by rpki-client