Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4dRT5hRkVh-EKECE35w3Kg3-Nic.roa
File: 4dRT5hRkVh-EKECE35w3Kg3-Nic.roa (raw, json)
Hash identifier: Bu0C5822h9FMr3XlLe8uXS+UOkjI0mSNxGTYepBHRlM=
Subject key identifier: E1:D4:53:E6:14:64:56:1F:84:28:40:84:DF:9C:37:2A:0D:FE:36:27
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019740656DAA87A8CD4234B08216691A7D95
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4dRT5hRkVh-EKECE35w3Kg3-Nic.roa
Signing time: Thu 05 Jun 2025 14:01:18 +0000
ROA not before: Thu 05 Jun 2025 14:01:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 18811
IP address blocks: 151.242.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jun 2025 05:27:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:65:6d:aa:87:a8:cd:42:34:b0:82:16:69:1a:7d:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 5 14:01:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e1d453e61464561f84284084df9c372a0dfe3627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:30:4e:47:21:6d:f0:4c:1b:cb:6e:81:bf:b8:
89:36:bd:7b:61:48:ed:98:ce:5c:54:31:69:4a:16:
40:a3:3f:05:22:1f:24:0e:73:65:6a:4e:aa:33:cd:
4a:1e:77:cb:a5:bb:c9:95:5b:7c:ea:8f:78:b8:bc:
8f:26:e1:f0:20:f8:0f:04:5d:89:2f:85:e3:5b:c1:
ac:84:be:75:6b:4b:78:46:83:d5:7c:28:dd:06:f5:
2d:a4:d0:c2:a5:b9:15:b5:59:54:b4:f9:a9:7b:1f:
21:f2:16:68:15:b3:82:3e:80:3a:2b:74:dc:49:b9:
1d:5a:08:f3:3d:83:f1:74:9b:8b:84:6b:08:24:a2:
47:98:c2:ed:e9:72:23:1e:7d:1d:2c:a7:9b:8b:00:
29:06:d7:3f:e1:bb:b8:e2:5c:c3:f6:73:32:15:18:
c5:37:bf:5e:f0:2c:dd:b5:1f:e4:c7:ae:e9:fb:04:
6d:08:77:ab:be:45:69:c3:59:3e:bb:c0:c7:7b:55:
a7:72:d4:eb:66:d9:81:d5:58:b0:a3:06:6f:77:1f:
c9:ff:94:88:71:f5:ee:07:c1:6a:40:4c:2b:4a:08:
04:47:f6:5a:0a:be:c9:3a:cf:c2:26:a1:33:c5:24:
df:6a:27:cf:82:8c:a1:2b:ad:c0:31:30:e7:05:35:
5c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D4:53:E6:14:64:56:1F:84:28:40:84:DF:9C:37:2A:0D:FE:36:27
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4dRT5hRkVh-EKECE35w3Kg3-Nic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:b9:98:28:63:4e:e9:28:24:e4:f8:65:be:b5:1f:95:ee:19:
a2:f4:7f:46:29:fe:4b:ab:bb:6d:03:e8:a1:e5:35:df:43:6f:
05:0c:f6:a3:64:61:ab:7c:bd:4d:27:72:f8:05:c6:ca:3f:36:
98:bf:19:fd:e8:b1:b3:eb:39:1e:ed:37:11:c0:60:5a:89:b7:
44:bb:54:6a:65:57:43:c0:01:82:5b:84:44:85:ea:1b:b7:17:
4e:6e:aa:22:3e:88:c6:e5:5e:1e:f5:e4:56:76:3f:3b:d1:2f:
c7:70:a8:bb:6c:42:16:f7:5c:b1:45:81:2d:90:a1:3e:a8:ee:
af:8c:4a:7a:d3:4a:6a:8c:b4:17:de:c3:fc:7e:87:38:a1:8d:
58:38:73:2f:94:9f:1a:91:05:d7:51:29:22:f1:8f:6f:9b:04:
ba:49:ee:e7:2c:c9:cc:6a:92:07:83:27:4e:dd:0e:a3:d2:3c:
92:05:d6:2a:e8:54:44:b2:bd:39:77:7a:86:fd:78:0c:ee:fe:
5b:8b:57:5d:1d:eb:de:61:c1:53:4a:0f:b9:bd:8d:0a:50:8e:
62:16:89:11:8c:db:73:a6:a0:7a:9b:d9:f2:61:c3:a3:16:52:
3b:2e:1a:e1:51:50:a0:cb:80:8d:82:30:3d:d8:54:1c:71:62:
6e:6c:54:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:05:34 2025 by rpki-client