Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RsOK0TTnju_Vb2o9lx3w4pta0Og.roa
File: RsOK0TTnju_Vb2o9lx3w4pta0Og.roa (raw, json)
Hash identifier: pb+smqJ+OwwIQ++THOrbOch50x1mkvOCfcWHjYTJS0Y=
Subject key identifier: 46:C3:8A:D1:34:E7:8E:EF:D5:6F:6A:3D:97:1D:F0:E2:9B:5A:D0:E8
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0194697869D622440F6D1AFA8183CE2F063C
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RsOK0TTnju_Vb2o9lx3w4pta0Og.roa
Signing time: Wed 15 Jan 2025 10:18:06 +0000
ROA not before: Wed 15 Jan 2025 10:18:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20454
IP address blocks: 151.243.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 11:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:78:69:d6:22:44:0f:6d:1a:fa:81:83:ce:2f:06:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 15 10:18:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=46c38ad134e78eefd56f6a3d971df0e29b5ad0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:79:e9:d7:2d:81:36:15:68:1b:e1:4d:8f:83:
1f:37:6b:17:b4:32:d7:58:cd:42:c2:0d:26:a5:36:
23:64:c4:a2:b7:5b:8c:c7:7c:2f:a1:e0:0b:43:ee:
a4:6a:9c:d1:a7:9c:b7:1e:33:f2:78:0f:25:6b:26:
2c:aa:e2:24:70:5a:61:ff:64:3d:0e:ec:ba:20:a8:
d1:b2:ca:7b:2f:79:6f:5d:79:fc:10:99:98:f8:3d:
86:a8:03:2f:76:ea:ac:86:01:77:28:51:26:76:1f:
1a:f2:97:91:46:c9:ff:61:3e:c1:5c:95:1b:e0:0d:
33:d3:46:51:40:d0:19:e5:4f:a3:55:e8:f0:ca:67:
9f:d6:ae:60:03:3e:b5:8d:15:0b:13:7e:72:8a:e7:
66:63:8e:56:f7:cf:c0:82:c8:4c:1b:61:e3:62:29:
92:17:53:54:1d:a5:62:cb:1d:aa:11:55:09:7a:5a:
a9:e7:96:5d:81:1c:79:26:dd:22:77:3a:49:b5:34:
6a:d0:e8:64:ca:cd:d1:11:91:38:fd:95:d9:c3:6c:
8b:ad:30:2c:80:f3:55:56:3f:85:73:27:b0:0d:fd:
c5:67:63:c6:81:4d:28:8a:01:14:4b:b5:2a:aa:6a:
32:1c:35:57:24:30:49:9e:b7:0f:01:16:fb:7b:6e:
cb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C3:8A:D1:34:E7:8E:EF:D5:6F:6A:3D:97:1D:F0:E2:9B:5A:D0:E8
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/RsOK0TTnju_Vb2o9lx3w4pta0Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:54:6f:89:ad:89:1d:ff:90:9b:0e:57:a8:14:5a:ca:04:c2:
e3:aa:75:be:50:cc:89:c4:f1:c6:7f:dd:df:ac:98:d6:a4:0b:
aa:f0:88:d8:c7:d7:a4:1c:e7:98:ff:bb:27:d4:f8:70:de:3f:
dd:df:28:26:08:70:52:2c:83:8f:24:ca:4f:76:7c:b0:99:35:
9e:9d:28:ca:72:6d:fb:42:f1:60:07:a6:ea:ab:9a:82:4a:e0:
22:0f:c0:1a:d8:c1:a1:52:90:8b:22:81:34:8d:fd:ee:51:97:
4c:15:ee:a7:cd:0c:e4:27:a1:94:8a:b6:ee:1f:f8:c5:6c:e2:
dd:d5:d5:ce:fc:22:4e:7c:6d:fa:9a:06:16:2f:3b:c3:d8:93:
e7:4f:df:5f:45:ae:f7:1c:17:69:10:3f:b7:63:49:78:00:71:
46:3d:bd:fd:ad:13:25:c2:2e:ad:70:16:c3:ba:84:d6:15:5d:
55:ad:69:56:f5:85:6d:e7:95:49:1d:91:ad:37:d7:17:30:29:
ba:11:65:08:17:9a:b9:b6:56:2f:b2:93:5c:a3:a9:4b:5d:02:
60:63:c3:fb:6b:8b:29:25:02:f3:81:d3:c3:5d:59:28:c1:32:
55:ad:01:9c:55:33:85:05:54:0c:84:ea:2a:aa:7c:75:26:fd:
d1:2f:17:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:41:36 2025 by rpki-client