Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/mHSO2__AY2TrP7x5D9Rg724BFo0.roa
File: mHSO2__AY2TrP7x5D9Rg724BFo0.roa (raw, json)
Hash identifier: QQ2z/920hqbxdOXwflII9qbSgSRjdDB6v4bgwgRwfbw=
Subject key identifier: 98:74:8E:DB:FF:C0:63:64:EB:3F:BC:79:0F:D4:60:EF:6E:01:16:8D
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196F2FE4E830CFADA57A01B610FC6808A64
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/mHSO2__AY2TrP7x5D9Rg724BFo0.roa
Signing time: Wed 21 May 2025 13:17:54 +0000
ROA not before: Wed 21 May 2025 13:17:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60602
IP address blocks: 151.243.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 May 2025 18:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f2:fe:4e:83:0c:fa:da:57:a0:1b:61:0f:c6:80:8a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 21 13:17:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98748edbffc06364eb3fbc790fd460ef6e01168d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d9:ee:75:92:f7:af:8d:bc:e6:37:41:c1:43:
07:1f:9c:05:53:ea:8e:7c:3e:18:d4:c6:41:1d:bf:
54:a3:a7:32:c7:79:a9:d4:4b:90:c6:25:b9:c9:1e:
c6:c3:4f:b9:bf:0c:05:4a:fa:45:a2:b1:25:c7:21:
68:68:b8:5c:d2:79:0f:6c:4f:17:09:44:1b:e8:73:
11:9d:95:1b:c0:ba:06:ee:d6:32:aa:e0:1d:e2:cf:
21:5d:6a:f5:b7:e0:7b:91:e6:c9:04:f5:ea:3a:be:
21:fc:da:cb:45:d2:c8:80:1c:a6:32:17:18:bd:0a:
a0:f2:3a:bf:74:fa:70:c8:de:f4:d2:90:a4:b2:e2:
5b:53:48:33:41:be:f2:71:c8:e6:2d:83:49:79:ae:
b7:aa:03:5b:fc:6c:8a:b9:54:f1:1b:fa:58:df:84:
52:8c:bc:5f:4a:fd:cf:70:4d:3d:2a:ca:8a:e8:a4:
08:99:02:6b:2a:d5:4a:f4:10:73:7d:c8:a7:77:2a:
3b:5f:fc:23:19:4e:c6:c4:fc:97:33:80:19:11:1e:
b4:b2:06:e9:a8:fc:9e:a3:3e:c7:7f:84:52:31:bb:
26:5c:50:20:41:29:e6:fc:08:1e:af:1d:6a:90:c3:
5d:07:87:8b:86:ae:5f:98:27:ce:1e:9d:86:6e:c4:
d2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:74:8E:DB:FF:C0:63:64:EB:3F:BC:79:0F:D4:60:EF:6E:01:16:8D
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/mHSO2__AY2TrP7x5D9Rg724BFo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.80.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:11:0a:a6:de:42:71:0d:86:52:67:86:d5:e5:06:02:d7:c2:
ac:3f:4e:6a:7f:c2:12:be:79:ac:0a:6d:fc:4c:45:f0:7f:d9:
8c:25:eb:3c:18:d7:51:4b:14:14:27:ee:91:7b:13:7a:07:f4:
85:90:01:60:f3:a2:7e:5d:91:89:58:f0:6f:47:73:57:3e:99:
1c:57:08:89:00:f8:a0:e3:52:d3:c3:fa:cb:c3:90:32:65:e7:
82:b7:99:cf:88:40:a3:67:61:c4:24:77:19:f9:00:56:0a:9e:
1e:b1:25:bc:33:0a:9a:21:cb:74:a2:ed:62:20:63:78:cf:30:
06:1f:10:95:0f:22:a5:02:9b:b2:b4:1d:ae:10:c2:be:7e:10:
5d:1a:2f:c1:51:a4:47:d6:16:b2:14:49:27:99:d4:c3:a1:0e:
fe:c4:b4:08:79:ed:ff:3f:e7:3d:2b:f5:97:fc:79:b9:41:52:
d0:5d:de:ef:40:54:46:ab:20:9f:01:62:b5:0b:9e:84:5b:12:
1c:5c:53:c0:48:ed:4a:84:89:cf:d1:f5:d3:96:fd:62:10:3d:
16:f5:84:49:15:92:3a:c9:58:8a:23:33:54:bf:b5:66:42:0d:
1b:80:55:18:24:f5:39:fd:bf:29:d7:47:fd:5b:74:a5:95:5b:
e7:3e:60:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 20:40:29 2025 by rpki-client