Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TyqvqILz5G3NPAHuAu_Nrouu26c.roa
File: TyqvqILz5G3NPAHuAu_Nrouu26c.roa (raw, json)
Hash identifier: Y0xVxtN47MoljcYOdWGt4Fbjd236V5HURCNr1ZSzLI4=
Subject key identifier: 4F:2A:AF:A8:82:F3:E4:6D:CD:3C:01:EE:02:EF:CD:AE:8B:AE:DB:A7
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019914DF06A6209C16D24B397A770A1FE354
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TyqvqILz5G3NPAHuAu_Nrouu26c.roa
Signing time: Thu 04 Sep 2025 13:16:24 +0000
ROA not before: Thu 04 Sep 2025 13:16:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51659
IP address blocks: 206.245.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Sep 2025 11:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:14:df:06:a6:20:9c:16:d2:4b:39:7a:77:0a:1f:e3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 4 13:16:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4f2aafa882f3e46dcd3c01ee02efcdae8baedba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:e7:52:a1:9c:a9:54:98:4f:22:f3:27:0b:
5d:32:3d:20:91:7c:9d:11:1d:7c:91:89:ea:ce:28:
4a:3f:dc:16:c1:51:4b:04:f7:70:f0:1a:55:3b:5b:
13:56:99:5a:31:21:ac:68:2c:fc:c6:dd:67:3c:85:
7f:92:86:d4:4c:7f:19:85:c0:c8:44:e8:c1:0e:04:
4f:fb:26:ff:19:57:58:f6:b2:3b:10:81:d4:06:de:
85:f5:54:4c:dc:18:4d:52:2f:9b:8a:01:38:9b:a3:
30:c3:6d:e1:e3:19:85:21:7e:a0:6e:c8:1d:21:2b:
c3:27:fe:46:4a:3d:36:eb:1c:56:6a:0c:80:26:89:
04:22:4e:2a:f0:18:c0:c8:52:3f:87:a5:0c:88:02:
c6:cb:0c:2b:89:bd:be:13:a5:4d:16:ad:cf:3b:cb:
ac:29:96:64:46:c5:22:1a:9d:3e:2a:79:3c:4d:71:
d5:3c:e3:63:05:3a:66:70:18:fc:c0:c0:a8:db:a9:
e6:48:5b:2a:aa:6f:41:38:4d:06:6e:73:38:dc:58:
bb:9b:28:e3:d4:ec:7f:84:e0:bf:17:51:4f:fa:0f:
db:c4:7f:b5:f3:bd:5d:e1:24:10:62:05:c4:f3:da:
a1:d9:53:0c:07:f0:1e:02:46:2f:07:ee:7d:89:49:
f7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2A:AF:A8:82:F3:E4:6D:CD:3C:01:EE:02:EF:CD:AE:8B:AE:DB:A7
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TyqvqILz5G3NPAHuAu_Nrouu26c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.245.133.0/24
Signature Algorithm: sha256WithRSAEncryption
81:4d:3e:85:36:d3:fd:e7:bb:e5:50:94:89:ec:54:52:4f:ff:
68:45:82:3b:cd:13:c3:fe:37:09:7c:86:17:9a:7e:a7:1b:3d:
fd:ef:66:de:95:e7:8a:b8:cc:af:fe:73:ce:ef:c6:3d:c7:6b:
83:fa:42:6a:80:f2:63:63:32:2d:8b:b9:23:f7:a7:93:01:e9:
20:9d:53:ba:98:41:1f:ba:e5:4a:c4:1b:7d:ee:dd:cd:e7:58:
22:26:21:9d:e1:a6:34:47:0a:e2:19:a2:71:90:98:c9:1a:1a:
ce:bd:65:58:27:71:37:4d:aa:48:ef:73:40:e4:fe:92:42:14:
3c:55:1d:3e:93:63:df:e8:de:7c:19:78:38:ea:58:90:97:2a:
4e:3b:36:9c:d3:6a:e1:df:3f:19:5c:e5:ab:dd:e5:c8:18:98:
53:6c:8c:a5:93:09:28:c1:30:8b:ff:b8:05:03:05:0a:50:89:
2e:30:75:ab:6c:fc:dd:f0:aa:ac:0a:4c:db:ce:dc:39:52:de:
27:54:93:4f:11:21:fc:35:da:d9:06:4a:db:5d:05:01:8a:76:
63:07:5f:1a:ae:88:0c:e5:95:6e:44:e6:63:7e:b0:d2:b7:c3:
7d:85:fd:31:07:0b:fd:93:86:d7:61:a6:4c:9f:25:77:19:2e:
19:8a:9c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:45:02 2025 by rpki-client