Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0QOfYfae3EhnKOKeMc2jUEz1Ggc.roa
File: 0QOfYfae3EhnKOKeMc2jUEz1Ggc.roa (raw, json)
Hash identifier: MkH8SFSFoOdjEsNcS3O3E8LJGmzKlHDoV3MPCQSEgSY=
Subject key identifier: D1:03:9F:61:F6:9E:DC:48:67:28:E2:9E:31:CD:A3:50:4C:F5:1A:07
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01947043EA6A99500C4F2DA9A05B43EBCE29
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0QOfYfae3EhnKOKeMc2jUEz1Ggc.roa
Signing time: Thu 16 Jan 2025 17:58:06 +0000
ROA not before: Thu 16 Jan 2025 17:58:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198090
IP address blocks: 151.243.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 16:12:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:70:43:ea:6a:99:50:0c:4f:2d:a9:a0:5b:43:eb:ce:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 16 17:58:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d1039f61f69edc486728e29e31cda3504cf51a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c7:91:03:02:46:b6:96:a0:b3:03:26:6b:bd:
2c:37:3b:f7:06:83:04:e1:79:49:cd:73:6d:6b:13:
5c:96:a6:c9:4c:4e:87:af:81:51:c9:44:c8:8b:5f:
44:d8:7c:f6:94:ac:f7:ad:88:a6:20:a1:00:b4:d0:
f2:9d:f3:04:ba:2d:ee:50:2c:5f:ca:23:e6:e1:1a:
57:04:e1:b4:d5:f8:8e:66:1b:1f:d8:d4:b4:01:a9:
ab:c2:a7:94:55:9b:44:61:71:11:c3:b2:4d:f4:48:
fa:eb:58:f9:64:35:bb:9f:d2:e1:c9:22:32:82:bf:
81:88:58:e9:73:53:54:c3:a5:0c:6e:65:81:89:30:
65:ee:bc:e8:97:35:38:6b:3b:c4:74:08:4d:59:31:
c5:d6:ed:f7:f2:b1:74:e2:d8:e1:52:fa:61:d7:91:
2c:da:43:c0:83:35:08:a5:da:14:72:ad:2a:2b:ae:
09:30:49:ac:0a:b3:43:6e:44:64:9c:d9:03:1e:d2:
3e:a6:ca:c1:3f:3b:59:c2:de:01:ea:64:b1:27:b2:
e7:44:14:c7:6d:3b:cd:fd:2c:d3:b9:f4:22:ea:01:
74:4a:63:0b:b8:ce:fe:d9:40:ed:5b:2b:94:28:93:
cb:02:e9:ab:97:5a:2d:be:59:17:aa:6f:06:de:49:
f2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:03:9F:61:F6:9E:DC:48:67:28:E2:9E:31:CD:A3:50:4C:F5:1A:07
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/0QOfYfae3EhnKOKeMc2jUEz1Ggc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.125.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:9d:b9:cb:98:18:52:7d:2c:43:09:4a:29:01:46:d3:31:22:
5b:64:da:b1:d8:78:c2:2e:fe:25:a2:98:b2:8b:44:f2:ed:94:
bb:1d:dc:3d:f6:8e:8a:f1:53:ef:46:b5:c9:2e:77:fc:75:d1:
06:a4:ff:dd:0d:9d:d1:a5:a4:19:08:d8:f1:44:f1:5e:c9:8d:
f8:c4:2a:b7:59:6c:55:25:a1:cc:78:45:e5:b4:4d:4a:4f:7e:
bb:e9:06:f8:87:49:5b:61:32:3e:71:11:7d:9f:14:ff:95:c7:
47:3c:66:f6:92:0c:19:fc:6f:39:e9:86:36:ac:f3:bc:ae:de:
5f:b6:4b:d9:1d:74:c0:53:77:b8:5c:05:6f:01:0c:3b:08:ba:
37:c2:de:30:d4:b9:2e:70:c0:37:8c:3b:0b:a7:5f:8c:68:37:
96:2f:ae:d3:e8:01:37:74:c3:58:bb:d9:c7:c2:0e:8e:91:49:
51:09:bd:cc:e1:b0:ce:3a:2f:0f:00:f5:a1:d1:14:de:4a:44:
0b:80:ba:09:99:4c:47:22:fd:59:2b:a0:b8:cb:b7:46:53:30:
1c:fa:d8:84:7a:78:67:06:1c:ad:73:a6:ea:fc:21:40:66:f6:
23:03:e3:83:18:2a:33:17:f9:98:68:09:35:0c:4b:b4:41:85:
96:48:0c:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:33 2025 by rpki-client