Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/H03on-WqAE-Y9pwmkEO3A97hxFY.roa
File: H03on-WqAE-Y9pwmkEO3A97hxFY.roa (raw, json)
Hash identifier: 53LZ3b5/YbzLZzK2mn7CAWxoaIINdohHvtSdu1sGsIA=
Subject key identifier: 1F:4D:E8:9F:E5:AA:00:4F:98:F6:9C:26:90:43:B7:03:DE:E1:C4:56
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197B6B288F1560F6CEFA58364A8C60EAA78
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/H03on-WqAE-Y9pwmkEO3A97hxFY.roa
Signing time: Sat 28 Jun 2025 13:20:43 +0000
ROA not before: Sat 28 Jun 2025 13:20:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214208
IP address blocks: 151.242.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Jul 2025 07:11:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:b2:88:f1:56:0f:6c:ef:a5:83:64:a8:c6:0e:aa:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 28 13:20:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f4de89fe5aa004f98f69c269043b703dee1c456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:31:7d:ab:bc:8a:23:f7:0f:16:9e:7a:27:71:
eb:1a:f2:05:94:23:0f:ee:05:31:4c:51:7e:87:2b:
c7:eb:8b:45:f9:3f:45:32:72:87:a1:5e:3d:07:28:
95:1f:ce:60:2e:0f:c4:92:a6:4f:3d:3a:65:d6:b3:
26:eb:5b:46:fd:b8:9b:f7:4c:df:f9:14:a3:d5:27:
20:69:fe:1d:fe:0d:b7:a5:47:6a:9f:5c:02:c4:57:
71:79:4b:5f:ca:e6:d2:f5:dc:05:80:bd:9c:b1:f4:
39:c1:80:95:84:a9:c8:cb:7d:b7:87:6e:e4:54:74:
3b:e4:fa:e9:66:ef:31:8c:d0:d2:77:ab:17:7b:9b:
fa:45:35:6f:47:18:04:6b:d1:3c:79:d2:08:25:5c:
47:67:52:22:30:01:6a:90:b4:da:5e:b0:36:b3:8b:
43:92:5f:b3:0e:bc:61:88:cd:73:f7:82:ac:ae:29:
e7:e6:e9:87:09:1d:ad:17:0f:95:4b:68:9f:4c:43:
e1:99:b2:c3:f1:6e:28:fe:05:7d:d3:8d:ba:99:a2:
41:2e:83:03:f0:52:8a:c3:91:94:5f:f1:e1:74:36:
f7:5d:d4:97:77:d5:ae:ba:05:17:68:ff:d5:2f:a4:
c1:c0:a9:50:23:3b:d6:be:f9:c4:60:4e:f1:93:48:
dd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4D:E8:9F:E5:AA:00:4F:98:F6:9C:26:90:43:B7:03:DE:E1:C4:56
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/H03on-WqAE-Y9pwmkEO3A97hxFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:42:cf:4b:c7:bc:dc:6e:1c:a5:34:22:f3:0f:d1:9f:e6:18:
1b:4d:63:09:7e:73:7d:30:8d:46:3e:56:1c:f7:46:c1:8b:2d:
2e:0f:fb:ae:74:4b:56:e5:2d:c5:62:3d:30:75:60:d2:a9:c1:
95:c2:89:2d:4f:7b:37:9d:1b:d3:8c:ae:b3:42:a2:5f:a6:52:
3a:61:fd:3f:93:8f:75:07:33:51:df:98:10:14:03:b0:7d:8d:
98:61:7e:84:5b:29:06:c3:dc:fe:86:2c:99:18:16:b4:f1:bb:
b5:df:e8:5a:79:f9:3e:3c:38:e3:33:64:2d:f4:9a:7a:c2:16:
45:e7:6d:a5:2b:d9:c7:a4:6b:76:e9:7a:38:0e:90:7b:fb:9f:
e9:33:35:65:a2:af:9c:7a:31:a4:83:7c:b0:67:8d:ea:39:b9:
21:4c:ac:5e:f5:89:9c:79:5c:68:7f:15:a9:0d:39:4e:75:3c:
a4:d2:9a:e7:53:8c:b5:c9:25:a3:4b:d5:86:10:c0:5a:2a:93:
11:42:e8:5f:9c:ad:84:98:87:79:41:ce:cd:bf:3e:3c:d9:57:
66:50:4c:da:aa:bc:18:02:95:61:48:16:06:8d:32:5d:70:51:
20:0f:6f:0a:fd:c9:1b:b8:95:bc:a8:3f:d8:a3:21:39:51:b9:
9b:b2:4c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 10:09:53 2025 by rpki-client