Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/29066f5d-ecc1-4927-95c1-e1a8df8f9897/0/3138352e39312e3131332e302f32342d3234203d3e20323132323338.roa
File: 3138352e39312e3131332e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: KcYDMg2n/HtPW2fCwOh6n32UlHR36YZyJ27v++RACCM=
Subject key identifier: C5:77:E1:F1:7D:CC:35:BA:EC:D1:D9:A2:8D:CD:B1:9B:AD:BE:3B:7D
Certificate issuer: /CN=1498141819112b8446c2d4a3111f53038f05dbe9
Certificate serial: 1318C8C1699730907246C81358A4B4C855521BFA
Authority key identifier: 14:98:14:18:19:11:2B:84:46:C2:D4:A3:11:1F:53:03:8F:05:DB:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FJgUGBkRK4RGwtSjER9TA48F2-k.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/29066f5d-ecc1-4927-95c1-e1a8df8f9897/0/3138352e39312e3131332e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 02 Jun 2025 12:24:46 +0000
ROA not before: Mon 02 Jun 2025 12:19:46 +0000
ROA not after: Mon 01 Jun 2026 12:24:46 +0000
asID: 212238
IP address blocks: 185.91.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jun 2025 09:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:18:c8:c1:69:97:30:90:72:46:c8:13:58:a4:b4:c8:55:52:1b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1498141819112b8446c2d4a3111f53038f05dbe9
Validity
Not Before: Jun 2 12:19:46 2025 GMT
Not After : Jun 1 12:24:46 2026 GMT
Subject: CN=C577E1F17DCC35BAECD1D9A28DCDB19BADBE3B7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:3b:53:bc:b9:d6:21:66:b5:08:28:91:8c:
fa:dc:e8:b7:ec:d7:b6:9c:cd:05:14:f9:fb:50:1d:
57:7a:93:13:56:be:67:ba:c4:70:a3:e4:1a:24:e7:
b9:85:a2:b1:39:a0:e5:38:fd:56:74:c9:66:dd:90:
26:85:11:f0:98:e8:3c:e4:fd:f2:25:de:51:07:3f:
fb:66:22:0f:7b:34:cf:90:7e:ee:b8:b1:d3:60:e8:
23:1e:f4:1f:9f:34:e7:1b:3a:58:5f:d3:b1:17:af:
05:74:53:6f:b4:07:04:50:c9:7d:98:8a:9f:71:fd:
02:9e:a8:4f:ed:96:73:46:59:fb:d7:29:b7:32:80:
8a:fd:f2:74:34:6a:45:20:95:5b:0e:58:d4:0d:7d:
e0:01:b0:0e:ef:63:2d:5c:4d:f6:36:53:8f:aa:98:
28:ff:3f:1b:00:be:e7:6d:cb:a1:35:df:39:58:f5:
00:56:f1:b4:cc:56:3c:b3:23:1b:5e:85:b3:4b:c5:
ba:73:43:e8:a0:8f:5c:d2:cf:6c:36:0e:a8:6d:ea:
36:37:0e:29:2c:8a:72:e3:55:c1:16:b1:8f:3e:e6:
c2:13:95:37:a3:24:07:94:73:be:45:44:8e:c8:e9:
dd:22:53:de:a1:9d:c8:72:34:db:ea:80:3e:81:80:
21:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:77:E1:F1:7D:CC:35:BA:EC:D1:D9:A2:8D:CD:B1:9B:AD:BE:3B:7D
X509v3 Authority Key Identifier:
keyid:14:98:14:18:19:11:2B:84:46:C2:D4:A3:11:1F:53:03:8F:05:DB:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/29066f5d-ecc1-4927-95c1-e1a8df8f9897/0/1498141819112B8446C2D4A3111F53038F05DBE9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FJgUGBkRK4RGwtSjER9TA48F2-k.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/29066f5d-ecc1-4927-95c1-e1a8df8f9897/0/3138352e39312e3131332e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.113.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a5:93:ca:b9:de:64:2f:a4:9b:8e:fe:33:78:26:f2:37:89:
a0:d1:6b:28:6a:af:27:78:0e:d0:4d:74:45:bd:9a:3b:e4:99:
e9:83:7c:e6:c3:ff:fb:9c:8a:72:19:d3:01:40:ea:9b:8c:d8:
63:52:1f:60:29:a8:bc:19:71:e0:23:65:c1:70:c5:c4:71:2d:
7c:cd:9e:fb:51:02:e2:07:da:08:84:a7:47:ba:0e:b2:a3:69:
40:60:81:fb:b4:58:f8:9b:20:44:08:49:4f:e7:9f:bc:ed:b6:
6f:a4:ee:09:87:3f:ef:bd:cd:a0:f9:c5:8c:d6:11:c2:91:7f:
0e:2b:51:84:d4:75:85:2e:ec:a1:ba:27:63:c4:94:b7:94:ef:
6d:47:f0:74:cd:06:8f:e9:3c:be:02:99:3f:7c:42:da:87:ca:
8d:a4:1e:b1:f3:b7:c9:fb:22:7b:60:ad:0f:0a:58:b0:2e:36:
57:e5:09:b4:2a:0f:e1:6b:5f:7c:ef:f2:5c:21:a7:14:16:79:
cb:cf:2f:8d:f2:ca:30:d1:15:0f:01:a7:90:6a:24:d5:43:d6:
7f:1c:85:4e:55:33:e7:ad:48:50:8e:bb:4c:28:f7:40:f6:16:
43:86:f3:94:a1:14:e7:0c:d8:27:81:d3:87:e4:1b:73:b4:6f:
d9:cc:49:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:12:06 2025 by rpki-client