Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214432.roa
File: AS214432.roa (raw, json)
Hash identifier: BRm8BE4HoFbpnVd8Fjein043JH7i3fBAfBbOSA1vBmU=
Subject key identifier: 63:C9:43:2C:8B:5F:98:80:C6:FC:62:2C:B8:53:12:21:94:3C:FE:77
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 23C4BD568D3565BEEE710D29ADFAE0DA42F9AB25
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214432.roa
Signing time: Sat 06 Jun 2026 15:56:38 +0000
ROA not before: Sat 06 Jun 2026 15:51:38 +0000
ROA not after: Sat 05 Jun 2027 15:56:38 +0000
asID: 214432
IP address blocks: 146.103.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jun 2026 05:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:c4:bd:56:8d:35:65:be:ee:71:0d:29:ad:fa:e0:da:42:f9:ab:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 6 15:51:38 2026 GMT
Not After : Jun 5 15:56:38 2027 GMT
Subject: CN=63C9432C8B5F9880C6FC622CB8531221943CFE77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0d:2e:0a:45:93:cc:35:3a:9f:16:4b:8a:43:
99:ff:fe:16:dc:05:04:66:d6:72:dc:ad:fb:f7:c1:
ab:db:e0:76:f2:fa:87:4b:39:5d:3d:70:88:d0:e6:
38:e5:65:ad:6e:74:31:52:41:8e:b8:b5:78:ec:95:
aa:89:80:db:e0:e0:48:9a:12:4a:2e:ef:76:ab:7c:
0a:c1:a1:db:5c:98:b7:0d:b1:fd:31:ce:26:2b:7b:
ba:5d:43:53:cd:e1:c4:66:36:42:87:11:63:5a:d5:
9e:30:e3:be:65:4a:e7:ce:9c:07:f2:46:09:7a:32:
37:b5:24:4b:53:31:ed:92:d1:c8:2a:5c:3b:30:29:
38:20:52:b5:ad:75:9b:e5:e5:18:bd:ed:3a:36:5f:
94:d2:bf:d5:2b:d8:84:10:1a:f5:75:c0:01:7b:ff:
ca:ec:3a:e8:d2:82:c2:44:1f:bf:bd:4b:18:35:fc:
a3:fe:c7:23:18:ef:64:d7:8f:7c:70:39:35:e3:ea:
11:07:a3:62:b7:4d:ef:65:0a:53:3e:77:b8:9c:be:
a5:67:0c:02:59:21:f6:12:fb:fb:9c:b8:56:1d:24:
fb:ee:ab:22:d5:1c:ea:ec:8e:4f:dc:6d:5f:a8:bf:
35:7b:4a:54:53:a0:15:9e:e5:20:db:03:05:48:00:
bd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C9:43:2C:8B:5F:98:80:C6:FC:62:2C:B8:53:12:21:94:3C:FE:77
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS214432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.11.0/24
Signature Algorithm: sha256WithRSAEncryption
39:fd:04:72:80:4f:4a:f1:71:f5:87:9b:47:5c:dc:45:be:3b:
a6:a9:a0:5e:29:80:93:55:06:ff:56:db:69:9f:99:07:4c:52:
24:ae:5f:e7:f8:8c:68:0b:64:89:ac:89:20:cd:8c:86:7d:73:
b2:0f:16:34:cb:4f:0a:d9:27:d5:07:64:c0:8d:ac:7a:c8:b7:
0f:f1:e9:9e:d8:9b:d4:02:2f:12:74:d1:02:a8:d6:e4:ad:90:
6d:f0:d0:c4:d6:e3:77:e6:3a:cb:f7:0a:81:e7:5f:ab:26:89:
ab:7b:04:9d:13:48:46:fa:d8:13:cc:e4:8d:11:8a:85:8c:7b:
91:6e:96:3b:dc:c6:12:9c:01:6c:56:97:c2:81:6b:d4:81:01:
1f:00:ec:f6:13:b6:ee:ea:16:52:c8:0e:5a:f7:e9:d2:55:d3:
74:5d:16:61:42:6f:33:3d:67:d9:4f:4b:a9:b9:44:f3:57:2e:
da:97:26:cf:a2:55:7c:83:7b:11:b2:de:e9:bb:3b:05:21:ca:
7b:ef:c0:12:0d:55:bd:8a:b8:8c:7d:e3:4a:8e:d9:1c:4f:ad:
5a:52:16:89:d0:84:40:31:fa:e3:44:6c:4a:a4:15:19:42:df:
c5:c7:8b:ed:08:8f:2d:1e:b9:35:ff:11:75:50:b9:6e:25:43:
af:27:41:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 00:03:14 2026 by rpki-client