Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUGalkERuq2lGqap0iO_qL4eizw.roa
File: GUGalkERuq2lGqap0iO_qL4eizw.roa (raw, json)
Hash identifier: PPPNkuSRBxwxvAcaGJS/LVaWSJYqzjWV3V/+ud2OCM0=
Subject key identifier: 19:41:9A:96:41:11:BA:AD:A5:1A:A6:A9:D2:23:BF:A8:BE:1E:8B:3C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196C9BCB3DF15C1FF8DD55064EE669D4869
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUGalkERuq2lGqap0iO_qL4eizw.roa
Signing time: Tue 13 May 2025 13:01:49 +0000
ROA not before: Tue 13 May 2025 13:01:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 151.241.128.0/22 maxlen: 24
151.242.15.0/24 maxlen: 24
151.242.23.0/24 maxlen: 24
151.242.40.0/24 maxlen: 24
151.242.73.0/24 maxlen: 24
151.242.74.0/24 maxlen: 24
151.242.75.0/24 maxlen: 24
151.242.76.0/24 maxlen: 24
151.242.77.0/24 maxlen: 24
151.242.78.0/24 maxlen: 24
151.242.79.0/24 maxlen: 24
151.242.80.0/24 maxlen: 24
151.242.81.0/24 maxlen: 24
151.242.82.0/24 maxlen: 24
151.242.170.0/24 maxlen: 24
151.242.171.0/24 maxlen: 24
151.242.172.0/24 maxlen: 24
151.242.173.0/24 maxlen: 24
151.242.242.0/24 maxlen: 24
151.243.4.0/24 maxlen: 24
151.243.5.0/24 maxlen: 24
151.243.35.0/24 maxlen: 24
151.243.38.0/24 maxlen: 24
151.243.41.0/24 maxlen: 24
151.243.52.0/24 maxlen: 24
151.243.53.0/24 maxlen: 24
151.243.115.0/24 maxlen: 24
151.243.120.0/24 maxlen: 24
151.243.214.0/24 maxlen: 24
151.244.4.0/24 maxlen: 24
151.244.5.0/24 maxlen: 24
151.244.6.0/24 maxlen: 24
151.244.56.0/24 maxlen: 24
151.244.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 04:51:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:bc:b3:df:15:c1:ff:8d:d5:50:64:ee:66:9d:48:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 13 13:01:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19419a964111baada51aa6a9d223bfa8be1e8b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bd:4f:70:33:08:39:d4:01:ac:d6:be:ce:6b:
83:a1:3b:8f:b5:0a:8d:9c:d5:a9:cd:ba:88:ae:47:
6a:c0:a1:72:ee:24:88:59:98:04:42:c5:56:8e:71:
ea:16:29:77:da:e9:22:3d:b4:fc:81:32:03:32:9c:
db:de:d3:24:51:ae:ac:97:3b:95:57:b7:8f:4d:62:
a9:a2:5a:60:dc:c7:bb:87:5a:86:e7:44:d5:b8:5d:
c2:c0:ed:28:57:65:12:b4:b8:f1:9b:3c:ef:36:2b:
76:31:7d:3b:21:8c:f2:82:6a:3e:ed:18:be:c1:b8:
82:79:cd:d2:16:31:ba:96:15:1b:17:36:de:89:38:
6f:56:be:b9:48:21:d3:b3:6a:83:8e:43:5d:f6:4a:
1a:7e:a4:4b:8e:97:83:fc:f4:e6:0c:64:43:b0:58:
06:61:2d:7c:f0:ef:0b:b0:fd:e7:4d:27:59:01:87:
1f:f9:a5:2c:67:de:ea:84:4c:b0:60:89:a6:42:c2:
d9:8e:3c:c6:ee:48:2d:2a:4c:07:1a:47:ee:07:29:
69:bb:92:ff:95:38:8b:5b:85:7e:d8:ac:7c:ca:d6:
e7:74:4b:14:fc:6a:01:bc:4a:f5:9e:cb:27:f4:70:
fe:10:12:ba:1d:6d:da:2e:1c:e7:c0:77:9b:d4:38:
48:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:41:9A:96:41:11:BA:AD:A5:1A:A6:A9:D2:23:BF:A8:BE:1E:8B:3C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GUGalkERuq2lGqap0iO_qL4eizw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.241.128.0/22
151.242.15.0/24
151.242.23.0/24
151.242.40.0/24
151.242.73.0-151.242.82.255
151.242.170.0-151.242.173.255
151.242.242.0/24
151.243.4.0/23
151.243.35.0/24
151.243.38.0/24
151.243.41.0/24
151.243.52.0/23
151.243.115.0/24
151.243.120.0/24
151.243.214.0/24
151.244.4.0-151.244.6.255
151.244.56.0/24
151.244.58.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:9b:89:0d:f7:ea:12:15:97:42:a5:72:5a:64:4b:40:58:36:
2a:6c:0e:d3:1d:f2:76:a8:34:d8:fb:0b:58:3d:d2:8d:a5:ab:
bd:35:24:84:11:e8:4e:23:e2:4c:26:fe:f5:95:a1:e3:22:87:
0a:d4:f5:d0:1a:1d:1b:44:93:ad:e3:40:cd:cc:60:9a:30:df:
25:68:73:9a:5b:70:aa:d5:50:91:e1:5a:8b:03:44:da:5b:de:
29:7f:e7:1f:8a:9e:d3:25:a4:55:78:9d:f0:08:58:87:c2:a0:
c3:9d:cb:72:72:67:f1:b1:70:c9:e0:95:c1:0d:5b:3a:bc:89:
3f:85:40:60:0e:80:06:20:65:ee:61:0b:fe:1b:6d:2f:14:84:
5a:43:d1:4b:78:42:91:8e:db:07:d3:9e:7f:ef:6b:12:d5:2a:
94:6d:53:30:fa:31:dd:11:57:83:30:e7:5d:ae:c1:ee:c9:8a:
90:05:d2:46:ff:2d:cb:fb:3d:44:06:5d:92:91:bd:ee:9f:aa:
f8:9d:54:7e:20:e2:58:11:5e:e4:86:f3:5d:32:f9:b9:20:63:
38:f9:2d:d5:26:af:5b:0a:95:c0:c4:bb:6c:a8:8c:d3:83:31:
db:15:51:fa:bb:0c:95:2a:87:4b:d3:2d:0a:af:d8:19:d0:46:
ea:89:3b:5a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAZbJvLPfFcH/jdVQZO5mnUhpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwNTEzMTMwMTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTQxOWE5NjQxMTFiYWFkYTUxYWE2YTlkMjIzYmZhOGJlMWU4YjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqb1PcDMIOdQBrNa+zmuDoTuPtQqN
nNWpzbqIrkdqwKFy7iSIWZgEQsVWjnHqFil32ukiPbT8gTIDMpzb3tMkUa6slzuV
V7ePTWKpolpg3Me7h1qG50TVuF3CwO0oV2UStLjxmzzvNit2MX07IYzygmo+7Ri+
wbiCec3SFjG6lhUbFzbeiThvVr65SCHTs2qDjkNd9koafqRLjpeD/PTmDGRDsFgG
YS188O8LsP3nTSdZAYcf+aUsZ97qhEywYImmQsLZjjzG7kgtKkwHGkfuBylpu5L/
lTiLW4V+2Kx8ytbndEsU/GoBvEr1nssn9HD+EBK6HW3aLhznwHeb1DhIiwIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFBlBmpZBEbqtpRqmqdIjv6i+Hos8MB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvR1VHYWxrRVJ1cTJsR3FhcDBpT19xTDRlaXp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBAKX
8YADBACX8g8DBACX8hcDBACX8igwDAMEAJfySQMEAJfyUjAMAwQBl/KqAwQBl/Ks
AwQAl/LyAwQBl/MEAwQAl/MjAwQAl/MmAwQAl/MpAwQBl/M0AwQAl/NzAwQAl/N4
AwQAl/PWMAwDBAKX9AQDBACX9AYDBACX9DgDBACX9DowDQYJKoZIhvcNAQELBQAD
ggEBAEubiQ336hIVl0KlclpkS0BYNipsDtMd8naoNNj7C1g90o2lq701JIQR6E4j
4kwm/vWVoeMihwrU9dAaHRtEk63jQM3MYJow3yVoc5pbcKrVUJHhWosDRNpb3il/
5x+KntMlpFV4nfAIWIfCoMOdy3JyZ/GxcMnglcENWzq8iT+FQGAOgAYgZe5hC/4b
bS8UhFpD0Ut4QpGO2wfTnn/vaxLVKpRtUzD6Md0RV4Mw512uwe7JipAF0kb/Lcv7
PUQGXZKRve6fqvidVH4g4lgRXuSG810y+bkgYzj5LdUmr1sKlcDEu2yojNODMdsV
Ufq7DJUqh0vTLQqv2BnQRuqJO1o=
-----END CERTIFICATE-----
Generated at Fri Jun 6 21:03:47 2025 by rpki-client