Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/i2X1Htc37MElUBnJhJxiCDIis2s.roa
File: i2X1Htc37MElUBnJhJxiCDIis2s.roa (raw, json)
Hash identifier: Kt/e6c/zisToHUy+enUdSZspEE8spR0vTeLwnph5EDw=
Subject key identifier: 8B:65:F5:1E:D7:37:EC:C1:25:50:19:C9:84:9C:62:08:32:22:B3:6B
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0194CF33811B925D31E8A2BFB80787CBCB55
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/i2X1Htc37MElUBnJhJxiCDIis2s.roa
Signing time: Tue 04 Feb 2025 04:24:06 +0000
ROA not before: Tue 04 Feb 2025 04:24:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 151.243.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Feb 2025 06:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cf:33:81:1b:92:5d:31:e8:a2:bf:b8:07:87:cb:cb:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 4 04:24:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8b65f51ed737ecc1255019c9849c62083222b36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d3:ba:3d:0d:86:ff:f5:33:74:76:34:30:52:
9d:34:6e:85:db:5c:a5:95:65:4c:20:3a:71:45:15:
c5:bc:39:d6:d1:fc:d7:c3:f1:60:c2:e3:b6:07:35:
3b:38:88:30:5f:c1:7f:fd:00:68:7a:76:16:ae:99:
01:08:72:4e:1d:20:c8:9a:32:a4:88:55:be:b5:c6:
f0:0a:94:39:81:0d:8e:d7:8f:cb:31:7d:80:90:ea:
dc:80:79:59:ca:6d:55:b7:f7:e5:0c:f7:2c:1f:3b:
e6:74:e7:d1:a5:ad:eb:88:f9:76:f1:22:00:00:35:
2b:2f:db:f8:06:0b:24:6e:e9:a8:76:c8:6c:83:3d:
d1:36:04:4c:4e:a6:29:08:7b:d9:4f:1d:d2:d0:60:
6d:40:f6:23:93:41:bc:dd:25:a5:33:21:ad:90:2e:
c9:56:35:94:14:37:84:65:b5:46:8e:a7:cb:3d:15:
89:cb:74:07:1f:4b:ad:c4:8b:c7:88:ac:5e:9a:e4:
e1:f0:64:b4:e6:a7:06:2b:0d:4d:d5:99:66:a9:00:
a0:01:8b:4a:1f:f3:ab:ff:64:a6:f1:9b:44:e4:05:
a2:71:97:e2:3d:aa:b1:8a:2e:6a:73:ed:5f:cb:82:
20:5b:93:4b:0e:e9:ad:42:14:87:6f:da:9b:6f:e6:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:65:F5:1E:D7:37:EC:C1:25:50:19:C9:84:9C:62:08:32:22:B3:6B
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/i2X1Htc37MElUBnJhJxiCDIis2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.234.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:55:d0:c8:f1:af:e2:33:db:73:c4:42:83:15:a2:77:4a:a1:
b9:76:49:50:50:04:4f:9a:4b:43:87:56:56:21:bf:d6:ee:db:
85:75:06:bd:45:a1:c4:df:0f:70:b3:88:d9:65:47:51:d5:86:
a5:27:f3:d2:58:35:be:b0:66:35:47:29:99:0f:28:d8:69:05:
d8:ff:14:13:83:ce:56:e5:56:23:0a:c1:77:aa:40:22:56:b7:
6a:cc:1e:f6:56:62:cd:97:a6:5c:18:ae:65:cd:61:62:b1:d7:
9f:e0:48:87:3f:fc:ee:12:94:e2:f2:6f:e2:a9:aa:29:58:47:
f0:67:d9:b3:94:80:0c:54:e4:21:9b:b5:d7:e6:9c:4d:08:ff:
8f:23:57:0c:78:0b:ff:b7:05:45:31:21:e5:01:26:ed:1e:67:
a6:97:e4:77:fa:f7:b2:44:43:d5:39:c9:2b:c6:1d:1b:9c:3f:
e4:93:61:e9:92:a3:c1:9d:da:3f:fa:ac:ab:e3:43:80:9e:3d:
27:be:18:20:67:5f:fe:66:8a:38:85:64:86:eb:fb:90:d7:bc:
be:dc:b6:40:0f:11:2b:a2:b9:f5:36:13:89:b0:ee:8e:e8:42:
51:58:66:16:73:1d:d3:e7:5f:0b:13:13:60:69:df:2e:7d:ea:
11:db:b6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:24:36 2025 by rpki-client