Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
File: AS4766.roa (raw, json)
Hash identifier: D8z2hOWxRJHLm7Z/4XdEbWuLNlHq4h8V0M3X7s3+d4s=
Subject key identifier: 0F:C3:C6:07:DC:1E:23:43:7D:AB:4C:41:71:69:CD:C5:54:36:B3:A7
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 02709161C43A93C17608B7A3944C2E14F24201DD
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
Signing time: Thu 22 May 2025 14:35:08 +0000
ROA not before: Thu 22 May 2025 14:30:08 +0000
ROA not after: Thu 21 May 2026 14:35:08 +0000
asID: 4766
IP address blocks: 82.21.204.0/24 maxlen: 24
82.27.100.0/24 maxlen: 24
82.29.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 17:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:70:91:61:c4:3a:93:c1:76:08:b7:a3:94:4c:2e:14:f2:42:01:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 22 14:30:08 2025 GMT
Not After : May 21 14:35:08 2026 GMT
Subject: CN=0FC3C607DC1E23437DAB4C417169CDC55436B3A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:ce:c0:5c:66:3c:18:a2:8e:f3:8b:eb:e8:
06:56:4a:cc:77:6d:1f:33:c1:ae:82:28:08:d1:fe:
78:f5:f3:72:b2:7b:bc:0a:15:41:66:7c:25:3f:b7:
ed:06:36:a7:35:a3:a9:db:29:f1:4c:0e:6b:ce:52:
72:9b:79:3b:29:89:ad:c6:7d:55:c4:cc:e5:48:56:
cf:24:6e:aa:22:dc:42:55:14:f9:d1:55:e1:34:29:
6f:37:1b:d5:4a:e4:4a:66:64:10:b8:9d:e1:98:99:
c0:0b:83:f0:6e:15:14:9a:21:71:ef:b4:58:95:53:
68:1b:21:fc:47:9e:fb:c3:35:bc:3c:84:61:86:7a:
f1:67:6a:60:18:5b:7a:bd:9e:94:2a:ea:f8:1b:19:
86:25:a0:62:47:45:34:25:6d:ec:14:7a:25:da:e9:
70:1d:a5:7c:70:92:04:7e:1d:2c:a3:42:dd:c1:f5:
c6:12:ce:e5:21:10:d3:25:b1:5e:94:17:da:89:89:
8e:08:53:d0:75:6e:b0:05:1f:c4:eb:8e:06:5b:26:
97:b4:74:af:04:a6:ec:ca:d1:98:63:83:90:80:f2:
17:2a:4e:1d:ae:40:e7:b5:f9:3d:5c:e6:d6:b3:a2:
72:d5:c4:00:30:f6:47:15:b5:7d:4f:6f:27:46:55:
e1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C3:C6:07:DC:1E:23:43:7D:AB:4C:41:71:69:CD:C5:54:36:B3:A7
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.204.0/24
82.27.100.0/24
82.29.103.0/24
Signature Algorithm: sha256WithRSAEncryption
84:af:22:6e:33:56:bb:2d:21:d8:90:62:3d:a3:21:fc:16:02:
f7:29:1b:b7:0e:3b:2d:97:02:4b:66:08:e1:d0:9d:a2:0b:fc:
d7:b4:37:03:bd:33:b9:81:f4:f2:ec:8c:41:72:63:a7:4c:a6:
0c:92:3e:8f:79:b4:2f:0c:d9:85:8c:2e:45:ab:c0:29:c0:59:
b7:d6:75:61:93:2a:29:1f:6f:8d:5b:2f:84:d8:62:43:c7:f2:
e5:5b:42:4e:fe:cc:65:9c:23:1b:b0:42:58:63:69:b4:1d:28:
18:3f:da:4b:c6:ff:4d:1a:d6:28:3b:c7:16:39:fc:bd:77:1e:
a8:b0:72:a0:bb:cd:e6:1f:51:80:01:65:18:70:15:d6:96:c3:
d6:ae:5b:59:e9:31:cb:16:2c:eb:2e:2d:5e:81:d0:5c:97:df:
53:05:b2:16:ff:aa:12:cf:72:09:14:a5:56:d8:44:29:60:84:
44:7d:60:74:7b:3a:a8:72:00:4d:48:57:52:2a:db:60:09:74:
9a:32:b7:b6:58:74:cc:0c:3d:c8:48:19:39:8f:ba:0a:72:42:
fb:fc:88:04:98:fe:82:11:be:93:86:de:2a:57:cd:ce:97:ce:
89:5a:ac:8b:c1:3e:49:cb:54:0a:14:dc:95:dc:2a:b1:92:c3:
68:53:df:e8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Jun 6 21:54:17 2025 by rpki-client