Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
File: AS213060.roa (raw, json)
Hash identifier: 7QvcuBJhasjqtev2NZhsHXfLymeDMOFHn7R6wHUU6KI=
Subject key identifier: 1B:CE:48:14:BE:FA:75:56:7B:B4:90:88:CB:E2:ED:81:08:41:8E:30
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4726CAC132B6F2FA8D6554245DFD475A4B649063
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
Signing time: Wed 28 May 2025 07:09:13 +0000
ROA not before: Wed 28 May 2025 07:04:13 +0000
ROA not after: Wed 27 May 2026 07:09:13 +0000
asID: 213060
IP address blocks: 185.137.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 00:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:26:ca:c1:32:b6:f2:fa:8d:65:54:24:5d:fd:47:5a:4b:64:90:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 28 07:04:13 2025 GMT
Not After : May 27 07:09:13 2026 GMT
Subject: CN=1BCE4814BEFA75567BB49088CBE2ED8108418E30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1d:f0:8d:b6:e8:f1:74:0a:9e:d1:fa:bd:58:
6e:58:05:db:da:98:f3:fe:17:4e:2c:35:98:db:ae:
19:0c:7c:0c:2a:9d:a9:fe:d0:cf:3b:29:cb:64:4f:
38:6b:bb:1a:84:ae:a8:ac:5a:07:d6:0e:82:18:26:
4f:ae:97:42:ab:47:8a:cc:71:87:97:e9:70:53:c2:
8b:94:af:09:e6:d3:3d:54:3a:2f:72:e5:ad:2f:48:
82:f8:49:92:98:e4:f2:23:d8:2a:1c:3d:66:be:bd:
fb:bb:98:f0:ed:6a:f9:fa:25:3d:65:e2:9e:13:92:
70:a6:0f:e2:24:9a:d2:6f:69:53:f0:ed:cd:c9:18:
2c:0e:a0:a1:0e:99:ed:d2:ca:12:3c:1a:4f:fd:05:
c0:f2:f4:c0:ed:69:71:1b:b0:6f:fd:92:2d:a6:3b:
a5:fc:0f:02:de:14:1e:d7:86:fa:55:70:2a:78:16:
21:e0:c7:4b:ab:5c:84:11:66:eb:9e:e3:c3:96:e7:
4a:ee:78:81:57:a0:46:cf:bd:79:35:c1:8c:50:17:
cc:26:4f:ad:7e:e4:d8:ff:7e:ac:6e:57:cf:b0:dc:
ca:cb:93:83:ef:96:d7:3f:fb:9e:cd:54:b7:d5:a4:
df:f0:37:01:56:04:7f:7c:ab:0e:25:dd:30:07:d3:
f5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CE:48:14:BE:FA:75:56:7B:B4:90:88:CB:E2:ED:81:08:41:8E:30
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.15.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f7:73:bd:ab:0d:f1:99:17:26:06:d9:9c:56:27:56:32:2a:
03:65:0e:f8:af:f4:b4:b4:2e:be:4e:54:18:46:95:63:7d:17:
28:05:00:47:20:89:02:18:ea:a5:38:e9:e2:81:7a:37:5a:a2:
e9:a5:57:97:be:b1:47:81:e0:e5:03:73:ae:e5:2a:19:e5:08:
24:b4:a4:a8:cc:3d:32:8b:f0:2d:5b:e2:dc:86:ec:29:45:26:
97:03:9d:12:45:ee:9b:3e:a9:e0:2a:9b:ee:72:b7:05:1e:6f:
88:e1:1a:b7:4b:1f:6b:9b:be:b2:b5:2f:24:93:e2:1e:eb:41:
f6:2e:3a:52:ca:b1:b2:82:0e:c3:02:90:fd:aa:0d:63:36:8e:
55:e1:a9:c9:3f:d3:c0:58:a3:fb:6b:d5:3e:00:77:11:c7:ff:
a3:c4:6d:79:98:17:bf:4d:06:6a:a3:11:d6:c5:f6:32:98:3d:
2b:49:3b:30:31:b5:ed:eb:3a:7f:1c:71:24:a4:a9:8e:56:40:
65:33:0d:c9:7a:09:52:d4:c5:02:1d:67:27:3c:de:57:cc:67:
73:9b:96:72:0f:6f:a6:76:37:8b:cb:69:f4:05:71:b8:c8:5b:
59:0e:f1:b4:3f:78:bb:bf:76:26:d7:28:46:bd:22:95:09:25:
fb:88:5a:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:19:12 2025 by rpki-client