Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34302e302f32342d3234203d3e2037303138.roa
File: 3138352e3235302e34302e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: mM00I5nn9obDMYeDswAUK/hmAXsswn6kWFPTigMm+zU=
Subject key identifier: BC:C9:1A:C8:BB:19:41:CB:A0:D7:39:3A:C9:CA:E7:A1:C0:EF:DC:8E
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 4372439CC2390C7CCB0335B823F23E2FCD8BB8E0
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34302e302f32342d3234203d3e2037303138.roa
Signing time: Sun 16 Feb 2025 15:53:55 +0000
ROA not before: Sun 16 Feb 2025 15:48:55 +0000
ROA not after: Sun 15 Feb 2026 15:53:55 +0000
asID: 7018
IP address blocks: 185.250.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Feb 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:72:43:9c:c2:39:0c:7c:cb:03:35:b8:23:f2:3e:2f:cd:8b:b8:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Feb 16 15:48:55 2025 GMT
Not After : Feb 15 15:53:55 2026 GMT
Subject: CN=BCC91AC8BB1941CBA0D7393AC9CAE7A1C0EFDC8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:29:ea:59:98:c1:64:6f:8b:e6:53:fa:4a:11:
d6:b2:3d:17:5d:ac:66:06:e0:77:49:68:38:c5:0d:
eb:44:53:f8:0f:91:80:83:d5:42:06:f8:3f:cd:3a:
a3:db:fc:e7:69:1b:48:a2:98:c6:40:c2:a1:3c:a1:
73:3e:1a:11:34:71:ab:4e:b7:68:d5:12:00:d1:64:
ab:29:1e:a0:4b:b8:e3:f6:32:e2:70:7b:60:4b:17:
21:a3:66:86:db:c4:a1:a4:35:8e:53:e3:5d:7f:dc:
1a:af:b4:be:13:bd:4d:a9:b5:0b:f8:4a:34:fb:36:
0b:8c:a2:44:74:4b:35:ac:c5:d9:6e:c6:48:24:e3:
42:6c:66:0c:d9:49:81:4f:f4:fb:af:2c:29:39:05:
f9:9b:32:58:80:63:af:92:f1:cb:fa:6a:01:24:72:
69:65:5d:f8:0f:82:c4:78:09:20:f7:db:c4:19:fe:
be:de:0d:d2:5d:8b:c4:f9:79:4c:9c:f9:48:7c:8b:
5d:8f:d4:ad:0b:c6:9a:ea:f7:d7:f7:90:00:c5:e6:
80:02:93:39:7f:f6:4a:65:87:8f:b5:1b:8d:d3:d4:
06:39:f5:28:9d:f0:53:2c:a1:35:76:aa:77:26:a1:
86:d7:2e:b4:c4:d1:bb:21:52:af:07:12:ff:26:a5:
b6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C9:1A:C8:BB:19:41:CB:A0:D7:39:3A:C9:CA:E7:A1:C0:EF:DC:8E
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34302e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.40.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a0:af:c8:35:09:7e:16:e2:c7:03:a9:3c:a3:e5:9a:64:f6:
9f:90:72:6c:53:27:c0:dd:c4:25:6a:2b:af:13:b4:50:5f:15:
a7:03:31:83:fd:70:b2:35:d6:fb:42:b0:3c:27:2d:29:7f:28:
2f:b3:d6:bc:08:6d:aa:3f:8b:eb:d0:09:1c:80:c2:ce:62:f2:
4f:ce:06:f2:a7:03:30:4d:54:ad:ea:27:e2:82:0d:c9:e3:ec:
5f:73:15:f4:03:03:d5:b1:24:18:8e:06:c7:cd:da:27:7e:8f:
1d:b9:d7:95:eb:2b:3d:80:50:42:b9:b5:26:f7:45:00:59:69:
43:46:eb:10:bf:6b:bc:2d:09:e7:db:4f:b0:b8:aa:c7:cd:a8:
ba:72:6c:00:b8:4b:15:64:90:af:9e:fe:6f:4f:f1:69:20:19:
1b:55:88:22:1e:4d:4d:29:71:cf:66:fe:1c:71:a2:bd:10:23:
e5:63:6d:c9:e8:d7:5c:7a:c4:5e:f1:aa:88:ec:5e:4e:de:d1:
ab:36:81:77:da:0e:b3:d5:1b:82:37:ad:5f:fd:5a:58:46:c6:
df:a5:4c:ae:19:19:88:fd:c7:f3:b6:b5:54:56:f9:02:ca:39:
06:39:20:68:df:db:11:4c:1e:b1:ba:7e:b9:18:c3:9b:49:19:
d1:28:9f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:56:40 2025 by rpki-client