Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
File: AS213060.roa (raw, json)
Hash identifier: TJI16uZwVnVWPHvMloB3qcUco+MTyCMJDzhmiOR9mz4=
Subject key identifier: 6B:6A:EF:81:B6:B0:2C:7B:23:BB:30:C2:50:F5:8D:2C:30:65:F2:01
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 4DBD0B48E63C964C1743CE8BE6EA8C83FAAA844F
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
Signing time: Wed 20 May 2026 07:08:56 +0000
ROA not before: Wed 20 May 2026 07:03:56 +0000
ROA not after: Wed 19 May 2027 07:08:56 +0000
asID: 213060
IP address blocks: 45.231.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 May 2026 07:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:bd:0b:48:e6:3c:96:4c:17:43:ce:8b:e6:ea:8c:83:fa:aa:84:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 20 07:03:56 2026 GMT
Not After : May 19 07:08:56 2027 GMT
Subject: CN=6B6AEF81B6B02C7B23BB30C250F58D2C3065F201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a3:b7:bb:91:a1:54:e5:ce:78:68:31:02:c9:
be:2c:4c:90:b3:72:55:09:22:be:8d:c3:31:ea:76:
90:8d:0a:e4:d6:90:1d:2f:cb:bd:f1:45:50:70:05:
75:cc:53:1e:25:9a:94:1e:e2:78:b6:27:5f:e0:8b:
6a:13:45:30:9e:1b:1c:1e:55:34:d1:28:06:d4:13:
47:f1:57:03:67:fe:6f:1b:05:d4:6c:c7:2e:a4:a7:
c2:ec:a8:4c:35:6d:cb:00:31:56:0a:61:4c:7d:4b:
3e:37:4e:3b:aa:d6:c4:3c:b8:66:92:36:3e:de:7c:
c9:e9:79:70:42:1a:00:ce:0a:a4:05:b3:b4:16:00:
ac:bd:7d:0f:17:27:d6:13:b3:8f:78:2b:01:f5:e7:
c7:c4:cd:48:ee:c2:2e:3c:bd:21:5a:7d:a6:09:cd:
09:63:31:ac:f6:ce:90:7a:94:fb:01:61:61:50:b7:
74:ed:a2:6c:f8:0d:66:5d:cd:63:85:c6:a5:87:86:
1c:e2:5e:ac:ea:da:96:7d:6b:89:d0:06:9e:94:9b:
b1:58:e0:14:62:ec:2d:8a:9f:2e:53:89:1a:4c:25:
51:93:12:75:36:08:78:03:91:25:30:ef:83:13:3f:
ca:36:b7:a5:a8:df:52:0b:20:19:50:44:5f:40:5a:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6A:EF:81:B6:B0:2C:7B:23:BB:30:C2:50:F5:8D:2C:30:65:F2:01
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS213060.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.206.0/24
Signature Algorithm: sha256WithRSAEncryption
29:76:ff:57:0c:3c:ea:94:76:27:bf:94:b0:c1:4e:66:c6:c2:
a9:4c:79:bb:d8:36:e1:72:5c:90:14:28:2a:f6:78:75:e6:dc:
8e:b5:27:f5:0b:bb:b1:de:6e:b1:53:29:bb:6f:79:ac:84:89:
b6:96:e4:d5:67:24:7f:e2:7b:73:3f:21:27:04:e8:67:49:11:
68:fd:5f:4e:f1:08:8f:c8:e6:9f:99:58:9b:39:06:25:93:17:
30:b9:01:2e:f1:56:a8:2e:97:63:2d:84:68:d3:b0:cb:ce:b4:
44:e1:5b:ff:9f:6a:69:d2:32:1c:92:96:ae:dd:11:71:2a:a6:
02:f9:fb:ec:80:bd:d6:6d:ed:b9:69:0f:df:1a:cb:b1:5f:58:
c9:c6:f5:e0:a1:ae:4f:cc:f7:49:24:21:2a:94:04:3c:3f:61:
c7:85:f8:75:b5:e7:94:1a:b6:5e:94:d9:a8:91:44:84:af:f7:
07:7b:a0:d6:a8:f7:34:51:8d:d4:e0:a4:2a:65:8d:3d:e3:2b:
e6:2e:87:20:ba:29:4b:8b:79:c2:cb:de:6a:e4:0d:81:b8:55:
ba:1d:c0:59:f0:78:d4:c8:54:bf:3d:af:af:e3:36:f0:b1:1b:
fc:c5:2e:69:6e:19:ee:27:dd:87:1c:de:ff:37:15:e2:a1:57:
f4:09:37:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:29:45 2026 by rpki-client