Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jvuNlhnL9xbHgUsTmKpxoI5wH_M.roa
File: jvuNlhnL9xbHgUsTmKpxoI5wH_M.roa (raw, json)
Hash identifier: cBo+IL/djQB/mXHkgkSIhkdHYr2E+N4osFVBRsKmBdM=
Subject key identifier: 8E:FB:8D:96:19:CB:F7:16:C7:81:4B:13:98:AA:71:A0:8E:70:1F:F3
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196D991274E3B735FB63AC779F3042D6E19
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jvuNlhnL9xbHgUsTmKpxoI5wH_M.roa
Signing time: Fri 16 May 2025 14:48:10 +0000
ROA not before: Fri 16 May 2025 14:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 37.202.194.0/24 maxlen: 24
37.202.201.0/24 maxlen: 24
151.242.190.0/24 maxlen: 24
151.242.194.0/24 maxlen: 24
151.243.228.0/24 maxlen: 24
151.243.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 May 2025 08:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d9:91:27:4e:3b:73:5f:b6:3a:c7:79:f3:04:2d:6e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 16 14:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8efb8d9619cbf716c7814b1398aa71a08e701ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:67:f1:ef:0b:48:7a:72:51:3b:5f:8f:f7:
bf:5f:60:a4:de:99:cb:fe:e2:78:5c:0d:bc:29:ea:
b0:6e:dc:3d:bd:9c:56:37:83:3f:58:bc:a1:ff:63:
d9:d6:e4:ae:e9:97:c8:80:68:35:96:b1:4d:03:78:
5b:bf:62:de:ca:7d:64:10:4e:38:dc:d6:a8:93:8f:
1c:6e:b0:4b:07:14:cb:bf:a8:e3:90:f9:76:8f:2d:
a5:77:ec:ce:30:b4:73:77:75:d2:3b:cb:5d:be:f1:
db:f3:87:bb:57:4c:4a:54:77:bc:48:61:3c:eb:38:
60:4b:7a:b9:f8:c8:e2:f0:ad:86:01:32:ae:d3:85:
a8:52:03:89:42:8d:73:b3:e2:98:b6:2c:9e:c4:f7:
19:96:46:b8:b0:54:be:31:34:0d:f7:27:00:16:a2:
2a:b4:34:03:39:d1:5a:34:77:ab:b7:40:fd:d0:66:
60:3d:d3:5a:6d:15:01:a3:66:1f:d9:39:2d:33:ce:
8d:ce:6d:92:a4:41:fa:74:42:95:dd:d2:27:2e:72:
15:d6:f4:e7:dd:1b:1b:60:67:62:1e:8b:e7:d6:35:
f3:32:10:9a:8c:e4:37:87:23:dc:83:77:1d:6f:2c:
60:ad:53:9b:2a:82:cd:88:d8:fe:54:60:8f:5b:b5:
6c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FB:8D:96:19:CB:F7:16:C7:81:4B:13:98:AA:71:A0:8E:70:1F:F3
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jvuNlhnL9xbHgUsTmKpxoI5wH_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.194.0/24
37.202.201.0/24
151.242.190.0/24
151.242.194.0/24
151.243.228.0/24
151.243.243.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:a8:3d:44:9f:e8:94:de:37:15:b8:a7:e7:fe:db:72:d6:f0:
40:ad:7f:ea:1d:47:ea:14:96:7f:e4:e4:38:50:ef:22:e6:4f:
32:1a:1e:a9:2f:28:01:2c:a4:2e:3b:7f:44:f3:e6:f8:23:76:
a0:ab:1d:86:58:23:68:bd:e4:ee:b5:83:a6:2c:d6:6f:d6:b5:
d3:fe:d9:1a:de:19:2d:17:0b:6c:03:0a:56:83:ca:dc:1c:64:
17:f1:7b:a7:b9:02:0f:43:7e:cf:5b:40:a3:24:82:50:41:83:
03:d8:5c:67:bb:c0:b3:21:8f:8b:e6:75:00:ac:81:87:2d:a2:
a0:f6:c5:28:11:73:02:aa:a2:26:f9:19:c1:5e:86:52:e3:b9:
f6:8c:73:f5:05:55:f6:6c:14:f6:0c:19:6d:a9:5c:01:33:af:
08:e2:c0:6c:c2:c2:42:e4:41:f5:3b:0e:e7:fa:ef:a3:70:cc:
d2:0e:e2:ab:90:68:bf:dd:77:01:d5:8e:27:2c:2a:e9:00:53:
85:6f:7f:27:b8:a6:2f:fc:63:6c:24:40:e2:45:c6:22:26:bc:
68:3a:ac:be:79:a3:22:96:28:6b:d8:b9:8a:f8:cb:04:64:88:
ab:31:a3:a6:9d:a2:fb:85:8c:0b:d7:31:9b:e8:be:66:c3:69:
1a:68:6c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 14:38:42 2025 by rpki-client