Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/tBOupBNPVf18cx654B5Jtt2f2yw.roa
File: tBOupBNPVf18cx654B5Jtt2f2yw.roa (raw, json)
Hash identifier: NPwyrWueCya8GbZ4EMhTU/k5CrbXXXRJSeGNbX3MfBs=
Subject key identifier: B4:13:AE:A4:13:4F:55:FD:7C:73:1E:B9:E0:1E:49:B6:DD:9F:DB:2C
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 01900C76DC8E7D94778AD9A889D9BB790AAA
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/tBOupBNPVf18cx654B5Jtt2f2yw.roa
Signing time: Wed 12 Jun 2024 12:40:34 +0000
ROA not before: Wed 12 Jun 2024 12:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 151.186.144.0/20 maxlen: 24
151.186.160.0/21 maxlen: 24
151.186.160.0/24 maxlen: 24
151.186.161.0/24 maxlen: 24
151.186.162.0/24 maxlen: 24
151.186.163.0/24 maxlen: 24
151.186.164.0/24 maxlen: 24
151.186.165.0/24 maxlen: 24
151.186.166.0/24 maxlen: 24
151.186.167.0/24 maxlen: 24
151.186.168.0/22 maxlen: 24
151.186.168.0/24 maxlen: 24
151.186.169.0/24 maxlen: 24
151.186.170.0/24 maxlen: 24
151.186.171.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.172.0/24 maxlen: 24
151.186.173.0/24 maxlen: 24
151.186.174.0/24 maxlen: 24
151.186.175.0/24 maxlen: 24
151.186.176.0/20 maxlen: 24
151.186.176.0/24 maxlen: 24
151.186.177.0/24 maxlen: 24
151.186.178.0/24 maxlen: 24
151.186.179.0/24 maxlen: 24
151.186.180.0/24 maxlen: 24
151.186.181.0/24 maxlen: 24
151.186.182.0/24 maxlen: 24
151.186.183.0/24 maxlen: 24
151.186.184.0/24 maxlen: 24
151.186.185.0/24 maxlen: 24
151.186.186.0/24 maxlen: 24
151.186.187.0/24 maxlen: 24
151.186.188.0/24 maxlen: 24
151.186.189.0/24 maxlen: 24
151.186.190.0/24 maxlen: 24
151.186.191.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.192.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Jun 2024 13:52:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0c:76:dc:8e:7d:94:77:8a:d9:a8:89:d9:bb:79:0a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jun 12 12:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b413aea4134f55fd7c731eb9e01e49b6dd9fdb2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:37:89:3f:54:1f:b5:e8:6a:d6:61:73:83:97:
71:49:0f:81:99:a0:1e:5b:0d:20:0e:3f:84:a0:c6:
85:e5:a7:a1:d0:f4:6b:f3:a1:d6:50:94:82:30:97:
27:85:97:62:49:78:82:c4:e7:7c:00:dc:f2:4b:ed:
63:6b:e4:14:27:ca:7e:82:7e:33:f7:42:45:32:8d:
23:5a:e3:ae:b1:04:6b:0d:53:d0:e8:07:28:73:69:
cd:01:e9:17:c8:e1:ee:be:0c:1c:25:d0:f4:4e:92:
1d:f3:ad:31:af:26:7e:cc:53:c6:25:19:04:f6:09:
10:dd:7e:82:29:46:86:ad:77:e1:55:b7:f7:2d:e5:
99:51:dd:cb:42:32:09:32:61:3b:6c:a8:40:b5:21:
2c:6a:3a:c3:57:02:8a:4b:a4:ce:5f:8e:26:69:1e:
44:73:85:f1:80:f2:9d:35:ca:28:f5:85:67:8e:61:
a8:be:44:53:60:e3:22:f0:39:68:cd:23:c9:68:33:
45:c4:e4:16:f3:e8:d7:60:bc:32:b2:63:9f:f0:a6:
65:83:0e:49:0b:fc:a5:dc:b0:39:bf:0c:9c:cf:6f:
a5:a9:5d:3e:38:89:3c:95:a1:26:71:24:07:db:43:
94:e5:ba:75:12:aa:bd:58:04:66:1b:ae:2f:7f:33:
0d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:13:AE:A4:13:4F:55:FD:7C:73:1E:B9:E0:1E:49:B6:DD:9F:DB:2C
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/tBOupBNPVf18cx654B5Jtt2f2yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.144.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
82:58:67:36:9d:44:95:0e:8d:34:d1:6e:63:98:d9:fd:7c:b1:
d4:50:32:36:a7:1b:1e:a5:a7:38:25:8c:90:20:1e:3a:26:c0:
29:c0:fe:59:5e:e6:48:a2:52:72:a8:01:25:e1:2e:cc:aa:cf:
39:e6:93:f6:08:16:4f:ef:a0:b6:0d:e0:93:04:ae:df:a7:04:
92:d4:1b:4e:e9:b8:8a:37:60:b0:3e:c9:98:38:b7:63:c9:31:
b5:b5:d9:3e:6a:f9:41:96:77:03:2c:97:a6:05:71:f7:6a:17:
cf:a9:f8:ae:b3:40:8f:f7:4b:ee:67:fa:b5:d0:6f:19:9f:31:
e8:bb:66:a2:3d:0b:4b:68:ee:a4:7c:02:96:db:77:a0:63:0b:
c4:93:02:c0:1f:2f:e4:c5:99:9d:ed:25:e0:9e:7f:e0:b1:40:
e1:de:69:80:78:21:7a:9d:3e:8e:d4:72:d0:8f:d7:6d:94:84:
da:72:e0:6a:df:a4:60:53:62:f9:21:08:3b:fb:5b:09:e2:d6:
ec:15:3e:e4:27:94:e5:81:22:31:35:d1:99:d2:51:e9:6b:75:
90:ec:dd:3e:01:b7:a1:61:5e:14:c8:0e:f6:78:e9:ea:74:af:
ad:bb:9b:c3:0e:40:1e:0b:92:14:86:33:c8:45:df:b2:86:68:
24:02:ea:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:40:58 2025 by rpki-client