Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136342e35332e302f32342d3234203d3e20383334.roa
File: 3138352e3136342e35332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: MD8TfIMwbGV8qObosmrPhASpYWWbaU8Iqi5uxgfnTXw=
Subject key identifier: 18:09:89:11:E6:A6:1C:37:43:7E:7D:C6:A7:43:61:5F:16:2B:61:67
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 695536010BDB3675008908DFAD508A6E9F9CFEC0
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136342e35332e302f32342d3234203d3e20383334.roa
Signing time: Thu 19 Jun 2025 19:39:55 +0000
ROA not before: Thu 19 Jun 2025 19:34:55 +0000
ROA not after: Thu 18 Jun 2026 19:39:55 +0000
asID: 834
IP address blocks: 185.164.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Jun 2025 10:25:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:55:36:01:0b:db:36:75:00:89:08:df:ad:50:8a:6e:9f:9c:fe:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 19 19:34:55 2025 GMT
Not After : Jun 18 19:39:55 2026 GMT
Subject: CN=18098911E6A61C37437E7DC6A743615F162B6167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:48:c8:dd:07:6c:1a:c5:d1:35:79:f9:f9:
d1:7d:35:49:a4:34:eb:31:72:12:d2:8f:80:9d:70:
33:2a:96:8d:fb:4f:94:a7:0e:c1:54:72:15:7d:2f:
0d:84:94:8a:68:a4:8c:75:a5:07:f9:30:2a:41:01:
98:ea:05:30:03:d6:ef:c8:5c:71:75:07:4c:5c:c4:
b9:ef:ed:85:83:30:e8:e6:48:19:3b:e8:d8:cb:cf:
da:2a:07:e3:ce:42:56:63:6e:13:49:25:94:14:b2:
d7:97:0d:4b:ec:f3:ca:e1:32:99:e9:38:e2:dc:83:
7d:ed:1c:36:c1:5f:bb:b1:f4:74:1a:b1:f2:3e:fa:
1a:e0:bd:a4:0f:43:14:69:dc:ff:7b:43:69:6e:e2:
95:28:18:5e:98:ca:4c:01:fb:bd:5e:5e:aa:df:d1:
f5:a2:1f:8c:e1:c3:36:cb:61:db:27:fe:f5:fb:70:
da:32:a0:f5:ab:04:47:6f:a9:8d:a4:1a:4c:71:60:
2a:fe:16:1f:fb:2b:e3:9a:b2:21:a8:4e:32:7a:ad:
b5:4b:98:a2:18:5d:a2:80:80:1c:08:cd:fc:81:68:
01:5d:bf:f3:75:a5:81:95:9a:5e:4f:df:f4:1b:f3:
0a:f4:f9:55:15:ae:16:53:d2:a9:b5:02:99:20:c2:
15:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:09:89:11:E6:A6:1C:37:43:7E:7D:C6:A7:43:61:5F:16:2B:61:67
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3136342e35332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.53.0/24
Signature Algorithm: sha256WithRSAEncryption
95:5e:26:7f:c8:34:a7:7d:2e:a4:8e:c6:91:32:53:db:a0:7e:
05:ce:51:81:7b:28:cb:d7:bc:56:40:fd:c9:5b:10:2f:83:e9:
06:26:d2:7a:20:12:e0:a4:6e:86:39:09:7b:f6:16:70:9c:9d:
8e:2d:a3:68:2d:b9:ea:31:fd:77:e7:14:ae:7c:a0:52:58:e5:
5b:44:30:ad:f0:6c:31:38:e5:d2:85:66:3c:0f:d1:98:16:17:
6c:5d:64:f1:82:63:91:ea:2f:6e:88:79:12:d3:e8:db:12:b7:
4e:92:fc:bc:72:3c:b2:b7:18:56:35:f4:1d:a1:9a:50:4c:8e:
7f:c6:dd:f8:37:b2:c8:f4:5a:bd:32:ee:34:4b:fe:7c:7e:21:
7c:6c:2a:a2:19:86:c8:f2:bd:ee:7b:d6:f6:9f:33:fb:66:40:
2f:ee:83:b3:45:29:32:6b:b7:68:c5:00:57:57:1e:55:28:93:
c4:75:51:a5:2a:02:7a:e3:f4:3d:8b:d1:b0:c8:1c:87:a5:f7:
11:91:de:dd:f0:05:60:b5:6b:e9:c2:57:0d:6f:74:a7:88:85:
79:f3:63:cf:04:42:60:fa:e2:d4:b5:65:b6:95:e8:d0:e2:b3:
c7:dd:1b:54:06:69:00:7e:c0:a0:0a:96:3c:2a:6a:11:68:ae:
4b:ec:f7:fe
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUaVU2AQvbNnUAiQjfrVCKbp+c/sAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNTA2MTkxOTM0NTVaFw0yNjA2MTgxOTM5NTVaMDMxMTAvBgNV
BAMTKDE4MDk4OTExRTZBNjFDMzc0MzdFN0RDNkE3NDM2MTVGMTYyQjYxNjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ZEjI3QdsGsXRNXn5+dF9NUmk
NOsxchLSj4CdcDMqlo37T5SnDsFUchV9Lw2ElIpopIx1pQf5MCpBAZjqBTAD1u/I
XHF1B0xcxLnv7YWDMOjmSBk76NjLz9oqB+POQlZjbhNJJZQUsteXDUvs88rhMpnp
OOLcg33tHDbBX7ux9HQasfI++hrgvaQPQxRp3P97Q2lu4pUoGF6YykwB+71eXqrf
0fWiH4zhwzbLYdsn/vX7cNoyoPWrBEdvqY2kGkxxYCr+Fh/7K+OasiGoTjJ6rbVL
mKIYXaKAgBwIzfyBaAFdv/N1pYGVml5P3/Qb8wr0+VUVrhZT0qm1ApkgwhUvAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUGAmJEeamHDdDfn3Gp0NhXxYrYWcwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM2MzQyZTM1
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5pDUw
DQYJKoZIhvcNAQELBQADggEBAJVeJn/INKd9LqSOxpEyU9ugfgXOUYF7KMvXvFZA
/clbEC+D6QYm0nogEuCkboY5CXv2FnCcnY4to2gtueox/XfnFK58oFJY5VtEMK3w
bDE45dKFZjwP0ZgWF2xdZPGCY5HqL26IeRLT6NsSt06S/LxyPLK3GFY19B2hmlBM
jn/G3fg3ssj0Wr0y7jRL/nx+IXxsKqIZhsjyve571vafM/tmQC/ug7NFKTJrt2jF
AFdXHlUok8R1UaUqAnrj9D2L0bDIHIel9xGR3t3wBWC1a+nCVw1vdKeIhXnzY88E
QmD64tS1ZbaV6NDis8fdG1QGaQB+wKAKljwqahForkvs9/4=
-----END CERTIFICATE-----
Generated at Fri Jul 25 17:12:42 2025 by rpki-client