Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/vTN5_B8jvZKlk_FyiVAQSPtF6G0.roa
File: vTN5_B8jvZKlk_FyiVAQSPtF6G0.roa (raw, json)
Hash identifier: DJ+moDGkP6PVIpIn4VQ78IdEEXcoIDajcuAWpJlxJxM=
Subject key identifier: BD:33:79:FC:1F:23:BD:92:A5:93:F1:72:89:50:10:48:FB:45:E8:6D
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01965D6437DC861B6B313EC12179C1B608B0
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/vTN5_B8jvZKlk_FyiVAQSPtF6G0.roa
Signing time: Tue 22 Apr 2025 12:06:11 +0000
ROA not before: Tue 22 Apr 2025 12:06:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64267
IP address blocks: 151.240.24.0/24 maxlen: 24
151.240.26.0/24 maxlen: 24
151.240.27.0/24 maxlen: 24
151.240.179.0/24 maxlen: 24
151.241.7.0/24 maxlen: 24
151.241.35.0/24 maxlen: 24
151.241.36.0/24 maxlen: 24
151.241.37.0/24 maxlen: 24
151.241.40.0/24 maxlen: 24
151.241.47.0/24 maxlen: 24
151.241.171.0/24 maxlen: 24
151.241.179.0/24 maxlen: 24
151.244.3.0/24 maxlen: 24
151.244.69.0/24 maxlen: 24
151.244.76.0/24 maxlen: 24
151.244.199.0/24 maxlen: 24
151.245.69.0/24 maxlen: 24
151.245.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 May 2025 05:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:64:37:dc:86:1b:6b:31:3e:c1:21:79:c1:b6:08:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 22 12:06:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd3379fc1f23bd92a593f17289501048fb45e86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:41:54:48:7f:b1:d2:e0:aa:69:21:ec:a5:30:
d4:f4:6c:d2:fe:52:93:4d:83:47:e4:95:64:9f:fd:
42:88:a7:52:ea:ca:bd:77:a1:ae:14:4b:a7:24:f5:
ca:d8:3e:0c:ea:33:83:0a:9a:e5:d9:07:d6:7c:15:
44:ae:7e:a4:ae:e9:7b:ab:5e:4d:3c:0f:0f:25:89:
8f:95:e0:18:c8:48:fe:52:6b:e2:03:50:6f:1d:d6:
d8:8d:e7:1c:2d:af:ae:8d:60:1a:20:ef:c5:7e:87:
ae:fb:94:ea:93:f9:e8:22:70:90:51:5e:70:2e:45:
ca:8b:63:d3:28:8f:50:02:39:77:0c:61:20:b0:3f:
23:56:28:33:a1:54:15:06:1f:56:2c:89:ea:cb:66:
2b:2a:f9:e9:1d:be:b1:1f:a5:5a:56:f7:97:db:da:
c7:0b:85:6a:c6:93:41:d1:2e:b8:e5:3a:ab:27:20:
cf:f2:54:a8:c6:66:9d:1f:85:3f:05:e3:76:b9:9c:
18:96:12:43:34:8e:de:d9:e0:e6:71:19:43:cd:2c:
2d:cc:08:5a:49:76:2d:32:75:8f:b8:2c:d6:d4:bc:
01:65:2f:d6:e3:2a:c5:90:df:13:ab:9a:cd:51:f6:
34:b8:bb:68:22:70:54:29:68:5c:8f:22:01:42:01:
b4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:33:79:FC:1F:23:BD:92:A5:93:F1:72:89:50:10:48:FB:45:E8:6D
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/vTN5_B8jvZKlk_FyiVAQSPtF6G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.24.0/24
151.240.26.0/23
151.240.179.0/24
151.241.7.0/24
151.241.35.0-151.241.37.255
151.241.40.0/24
151.241.47.0/24
151.241.171.0/24
151.241.179.0/24
151.244.3.0/24
151.244.69.0/24
151.244.76.0/24
151.244.199.0/24
151.245.69.0/24
151.245.199.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:5f:ea:4e:bb:dc:59:c0:d5:1f:46:49:33:7c:ec:18:35:68:
7a:35:44:15:19:66:1c:ac:24:3d:41:a9:47:73:b4:98:df:17:
b6:d0:5f:30:24:8b:da:e1:79:6d:14:c2:9b:28:dd:59:e4:3f:
fb:9d:e0:ee:99:81:d0:62:70:7a:d4:a1:0b:8a:04:41:4a:7a:
1d:56:7e:26:23:ce:3f:42:e8:84:32:cc:c2:13:13:29:31:77:
8d:64:cb:01:bc:3a:a6:70:f0:72:0e:34:bf:3a:23:7a:2b:bc:
8b:72:ea:72:82:d4:ac:49:b1:52:ae:2b:fd:17:33:79:b2:b0:
37:19:60:67:37:6e:64:c6:fd:26:73:90:4d:bc:60:9b:d0:e4:
71:02:29:84:9c:98:e0:01:1f:c9:8a:68:6a:0a:30:5f:ec:3d:
3a:d4:32:c2:6b:64:6e:9e:d4:ef:a1:c2:d8:19:88:9c:39:6c:
88:68:87:0f:1d:03:26:cd:d2:fd:19:27:bb:b4:05:a1:ff:b1:
66:f9:dd:ca:0d:7b:c1:b3:4c:ba:cd:21:41:d7:d7:af:4a:65:
69:a0:cc:70:90:08:76:6d:47:76:4c:cc:af:b7:6e:d5:cd:78:
49:0c:74:6c:8d:c7:a6:b1:d8:73:af:5d:ad:99:a8:42:b9:3c:
98:d7:9e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 06:17:57 2025 by rpki-client