Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20383334.roa
File: 39332e39352e3131322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: NAmH7d7gerqYSvYHoPnA+wwMWtFYqsKIrKTN6Qov8PI=
Subject key identifier: 05:FA:0A:FA:9C:36:7F:C9:EF:F7:CF:04:DD:54:B6:95:C3:73:5E:58
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 17C674E3DCDA3364CA9DEB59CED1B32B36273E48
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20383334.roa
Signing time: Sun 27 Jul 2025 00:01:12 +0000
ROA not before: Sat 26 Jul 2025 23:56:12 +0000
ROA not after: Sun 26 Jul 2026 00:01:12 +0000
asID: 834
IP address blocks: 93.95.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Aug 2025 13:49:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:c6:74:e3:dc:da:33:64:ca:9d:eb:59:ce:d1:b3:2b:36:27:3e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jul 26 23:56:12 2025 GMT
Not After : Jul 26 00:01:12 2026 GMT
Subject: CN=05FA0AFA9C367FC9EFF7CF04DD54B695C3735E58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:51:19:4a:61:e5:0a:8b:b7:cd:af:eb:5a:0c:
8a:38:4b:6b:68:78:81:e9:da:45:ba:b3:1d:51:f4:
f4:85:1d:e9:bc:08:d0:8a:40:c0:ab:ac:02:87:e2:
95:6e:8a:a6:6f:6a:ad:99:18:14:77:e5:e8:2c:fc:
5c:a4:e4:d4:b9:e9:cd:a1:f6:57:38:f5:8f:89:d4:
1a:93:96:d2:a1:fb:68:e8:53:e6:6f:67:42:ab:f1:
8d:e5:8a:4d:a5:a2:87:19:a6:43:33:ff:47:02:76:
de:c3:5e:4c:39:44:95:4f:e1:e9:c7:c3:24:fb:e7:
ed:81:bb:bf:21:b0:c9:9d:0c:24:e6:00:43:4d:74:
59:c9:6f:58:81:bf:2b:2c:d2:6e:16:f6:c8:e3:66:
37:f6:c9:ec:e1:c9:f4:08:98:8e:16:cc:ad:7a:f7:
16:36:f0:8c:b8:c9:6a:b3:97:b0:fa:27:b7:45:23:
94:62:7e:06:b8:a1:1a:ea:2e:63:59:66:82:74:c1:
24:c4:85:80:63:99:37:ed:c6:d3:89:b9:2e:ae:27:
d7:47:e5:b9:f2:f0:bb:29:97:ae:be:69:bc:ab:09:
c6:f5:80:f5:e6:a5:46:ff:90:cb:bb:51:c6:cc:08:
c3:90:6b:0d:08:b9:26:6c:60:ae:38:96:87:8c:2b:
ad:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FA:0A:FA:9C:36:7F:C9:EF:F7:CF:04:DD:54:B6:95:C3:73:5E:58
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:f1:91:62:b2:a7:6e:e3:88:03:3d:73:54:56:84:2d:b9:de:
fd:c5:fc:fe:e9:15:89:c1:a7:f7:f6:6e:6e:47:17:41:82:20:
ea:4e:d8:06:4b:22:f5:ed:43:8d:d5:15:bd:21:81:5f:ff:0e:
88:44:fe:91:1b:ec:10:ee:74:5c:f5:55:d6:cd:76:d0:30:7d:
6e:5a:f2:06:0c:9d:f8:22:1d:73:66:03:51:86:74:07:52:58:
29:53:44:13:1a:f9:6f:07:fe:86:16:b1:e6:14:ae:a8:56:89:
a5:ee:26:da:15:77:da:e0:56:5a:a2:59:89:74:65:71:83:46:
c2:72:08:d2:4a:77:9a:ba:03:1a:4a:bf:08:92:32:15:52:ab:
f4:91:09:10:26:09:12:85:62:28:96:4a:a1:78:89:db:82:ef:
0d:4d:20:8b:a0:1e:3a:90:d7:f2:e5:f8:ed:ae:66:ba:a6:25:
7e:00:80:d5:af:ff:f4:62:e8:a2:59:b0:af:7b:a0:dd:03:19:
01:fe:c7:69:3e:77:57:54:0c:5d:28:58:5b:1d:fd:57:3c:6c:
dc:7a:9d:3e:8b:28:be:96:46:e1:95:e1:c9:b6:e4:ec:55:ea:
f1:0d:16:74:8e:49:dc:e0:47:23:7a:93:75:b1:9a:0a:7b:8d:
64:76:d8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:54:44 2025 by rpki-client