Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UrDVQGVbT03qa94J9Tp2jUMYSL4.roa
File: UrDVQGVbT03qa94J9Tp2jUMYSL4.roa (raw, json)
Hash identifier: H5wBdn5y8iMOPyJsPdYULRXoRFAs6Eu7N8/iyFfWlWI=
Subject key identifier: 52:B0:D5:40:65:5B:4F:4D:EA:6B:DE:09:F5:3A:76:8D:43:18:48:BE
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01942036F215FD09761FC6E4C314B3F9FE1A
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UrDVQGVbT03qa94J9Tp2jUMYSL4.roa
Signing time: Wed 01 Jan 2025 04:54:19 +0000
ROA not before: Wed 01 Jan 2025 04:54:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214491
IP address blocks: 151.243.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:36:f2:15:fd:09:76:1f:c6:e4:c3:14:b3:f9:fe:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 1 04:54:19 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52b0d540655b4f4dea6bde09f53a768d431848be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:24:b9:95:d3:f4:c2:9d:bc:93:7b:9b:f0:f5:
0d:44:28:01:2e:55:54:6d:1a:cb:b1:5b:eb:2a:ee:
d5:df:25:4b:87:a0:06:0c:35:9a:d8:91:2a:17:7b:
7d:1d:9c:fb:6b:5e:6f:4c:12:2f:70:83:4a:6c:02:
db:ed:25:d6:d0:3b:b6:39:58:11:7b:56:0d:6f:27:
9e:79:bd:ab:08:41:e8:2c:04:21:a4:1e:f9:90:27:
46:b3:08:c1:4d:2f:88:08:61:fb:e1:e9:20:8e:a0:
b1:d3:19:0f:e8:c2:49:cc:19:3c:5f:64:6e:3c:f2:
91:33:3e:c6:3f:78:93:97:31:16:a4:8a:1d:93:4b:
63:58:53:46:7f:ff:3f:bc:88:69:9c:66:4c:6b:cd:
00:d3:af:b9:71:7e:3a:43:c6:fd:29:90:2d:b9:17:
85:30:5f:3a:bd:76:a1:41:02:0b:81:d0:42:db:fd:
04:7f:41:4d:a2:1c:56:7d:00:17:ab:0f:e6:20:41:
78:d6:79:01:19:74:0f:b3:95:5b:73:a8:63:ec:95:
e9:24:3b:33:07:3b:3a:27:d3:c4:f1:6f:ac:78:a6:
9c:d2:66:e1:99:0c:ac:3a:9a:b4:bf:3d:f7:35:9f:
79:c9:3c:6b:72:ac:3c:b4:ea:67:62:dd:d3:8f:95:
e4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B0:D5:40:65:5B:4F:4D:EA:6B:DE:09:F5:3A:76:8D:43:18:48:BE
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UrDVQGVbT03qa94J9Tp2jUMYSL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.245.0/24
Signature Algorithm: sha256WithRSAEncryption
83:40:ac:16:5a:b3:51:63:1b:2f:fb:6b:b7:c3:e9:47:c3:38:
d6:25:0c:28:52:44:ef:ff:98:cd:69:d9:a2:e1:aa:a2:45:62:
67:f6:ca:d3:3f:51:72:c4:66:75:48:f0:cc:c3:07:db:89:2e:
46:d7:3c:f1:22:e2:65:5e:59:8d:c0:ea:58:56:e3:00:60:b2:
c7:a1:22:67:18:51:7e:91:ba:4a:20:49:97:1f:23:d3:60:fc:
15:41:d6:86:4f:d2:d3:f0:4d:73:28:21:98:32:db:85:ff:7f:
7c:68:44:57:23:46:78:e6:c0:43:53:1d:47:50:e8:e9:33:df:
08:b5:8a:60:7a:cb:61:bb:db:ae:b9:64:e8:3c:a7:71:10:23:
99:1a:99:10:d3:69:49:53:69:54:f0:09:fb:ab:db:6d:a5:7a:
47:62:16:b6:72:67:bc:1d:dc:b6:10:dd:29:3a:07:b1:c0:ab:
af:ea:98:12:2d:f8:c8:d7:c7:31:5c:a4:31:4f:9c:15:85:fc:
f2:7c:a9:ed:76:6a:9f:23:80:81:42:3e:b9:60:70:7c:95:41:
b4:a9:37:44:e1:5b:e0:5f:46:17:83:4b:bf:1b:67:a2:9e:73:
c9:ee:bd:48:b0:97:3a:8f:36:05:d1:2f:a6:cc:57:a0:7d:75:
e8:2c:4f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:18:43 2025 by rpki-client