Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131342e302f32342d3234203d3e20383334.roa
File: 39332e39352e3131342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: bD/zoFigVVEmfvB+ga5GM/HFkeE9AhnnaTsmRTKTYjo=
Subject key identifier: 03:54:57:43:27:CF:19:81:CF:AF:81:38:0C:14:D6:71:89:2B:E2:28
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 27BB5DC29C7A912292E67BC5FC1849E7F0BD1E49
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131342e302f32342d3234203d3e20383334.roa
Signing time: Tue 29 Jul 2025 14:25:47 +0000
ROA not before: Tue 29 Jul 2025 14:20:47 +0000
ROA not after: Tue 28 Jul 2026 14:25:47 +0000
asID: 834
IP address blocks: 93.95.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Aug 2025 13:49:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:bb:5d:c2:9c:7a:91:22:92:e6:7b:c5:fc:18:49:e7:f0:bd:1e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jul 29 14:20:47 2025 GMT
Not After : Jul 28 14:25:47 2026 GMT
Subject: CN=0354574327CF1981CFAF81380C14D671892BE228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:47:57:8d:65:83:2c:14:91:2a:30:2a:8f:09:
7c:a9:3d:4d:d9:7f:6c:d9:84:ab:7b:1f:6d:46:d1:
f5:a0:25:f7:15:ba:b3:6f:61:f4:98:7f:57:8a:b8:
83:0c:3f:d0:2d:89:19:43:30:41:7d:f4:9d:25:a3:
e4:26:ff:a0:d4:6b:14:c8:49:f8:d8:17:cc:67:5e:
b1:4e:8d:f0:6f:cd:a9:89:35:86:3c:bb:77:de:03:
86:8a:1e:17:75:fa:36:a0:bb:c6:bb:f0:30:8c:ed:
3b:04:30:e7:a4:28:35:3e:74:6e:eb:a4:d4:50:78:
15:0d:1c:5b:dc:ef:47:cb:cf:2c:81:a6:b4:f5:eb:
0f:60:18:a9:79:b1:22:4f:03:fb:a8:fb:95:da:bf:
ef:50:46:66:41:a5:20:4d:3d:b3:3d:30:1a:8f:58:
86:49:9d:b9:c3:95:10:fa:f7:0c:e0:2b:f9:9b:e6:
d2:8c:c3:4c:93:d7:f1:5f:b2:17:ea:50:41:e9:7c:
74:9a:77:5d:fc:08:1a:12:c2:99:1d:61:c9:43:be:
c9:62:92:a7:86:15:1c:d6:2c:31:13:bc:0f:aa:8d:
58:12:2c:e4:45:66:d9:f6:1b:68:a6:06:57:58:91:
59:3d:42:22:03:1c:96:60:df:46:b9:ae:40:50:20:
82:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:54:57:43:27:CF:19:81:CF:AF:81:38:0C:14:D6:71:89:2B:E2:28
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
28:2b:98:4e:b7:fc:d7:74:d9:d6:9f:73:23:f9:50:ba:72:9b:
ac:a0:f1:79:c7:83:35:33:99:34:a2:31:35:4e:a6:11:3a:b0:
61:d5:07:2d:2b:2f:05:b7:f4:22:73:d3:9c:97:e6:05:f1:c9:
6e:f5:75:c1:e0:87:e7:88:90:a4:f5:ae:61:40:96:1a:d3:5e:
8d:7a:9e:59:f3:b4:f5:86:60:e8:cd:9e:50:54:15:86:63:3f:
d7:92:75:2e:ed:fc:48:7f:a9:2a:f7:06:ef:6e:8e:b0:98:8b:
26:3b:62:e6:51:1b:d4:6f:3a:95:85:54:26:6a:8a:5e:a3:2c:
7e:c2:a0:32:29:70:f6:42:79:6b:e4:1c:df:f5:86:af:29:14:
51:70:32:0c:99:82:6a:e0:6a:37:d5:7e:16:71:fb:09:c3:07:
d2:c0:94:bc:c8:76:71:fd:79:9b:28:da:bc:6a:a6:fe:d0:0f:
4d:df:6c:90:63:23:d8:a1:84:02:29:57:b4:79:05:e5:c9:89:
27:9b:2e:e2:72:b0:62:ad:e9:5f:f1:c7:50:9a:dd:f8:c3:b0:
db:b4:a9:34:64:14:02:82:ca:de:73:0c:0d:9e:e8:c0:01:98:
31:ee:8d:5a:6b:e6:cb:e6:97:8a:69:0f:db:70:d6:93:f9:62:
26:41:8c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:06:10 2025 by rpki-client