Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
File: 39332e39352e3131372e302f32342d3234203d3e20323032363733.roa (raw, json)
Hash identifier: V1fel5/vnSYlissUs0JT6cnBIH0GkZvGHsUhQ4IEdyg=
Subject key identifier: 25:DE:79:07:59:5D:FA:A5:49:F3:F2:AC:29:BB:EE:B3:C3:0A:2A:2A
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 4CE2FA0440E49E91BF3E65832810826ECCDD20B2
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
Signing time: Sat 01 Jun 2024 12:54:34 +0000
ROA not before: Sat 01 Jun 2024 12:49:34 +0000
ROA not after: Sat 31 May 2025 12:54:34 +0000
asID: 202673
IP address blocks: 93.95.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 14:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:e2:fa:04:40:e4:9e:91:bf:3e:65:83:28:10:82:6e:cc:dd:20:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Jun 1 12:49:34 2024 GMT
Not After : May 31 12:54:34 2025 GMT
Subject: CN=25DE7907595DFAA549F3F2AC29BBEEB3C30A2A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:c7:2e:d2:63:2d:2f:e4:4e:69:e4:3b:d5:
b8:85:87:b1:a6:06:25:cf:c0:f3:b4:ac:8d:af:ca:
ef:ee:b0:b2:1b:95:9f:5d:2a:43:e0:e3:92:b6:48:
7e:cd:6d:58:c9:a7:f7:fe:55:bd:6e:fb:f3:bc:e9:
87:41:a9:1f:f2:74:e7:f3:7c:4f:55:1d:5e:66:d4:
c7:cb:cd:4c:31:2d:84:62:6b:6a:f1:97:8c:5a:cf:
fa:f5:bf:4c:a2:ab:78:68:32:ca:b9:e7:43:46:61:
4f:c3:90:f0:60:44:6d:56:12:26:55:61:40:61:ab:
ca:0e:5b:48:ea:21:7e:6b:ac:6e:af:be:a8:cf:24:
4d:f2:2e:5f:b8:dd:06:1e:e0:95:3e:e6:f7:48:ba:
9f:87:01:45:5f:d0:e6:f1:35:a8:26:8f:74:a0:2f:
cc:fd:36:e0:5a:19:92:7a:84:f8:d9:c5:ef:66:29:
88:d2:61:dc:9a:50:17:4b:37:46:4e:74:e5:f2:9d:
9d:e6:da:0a:6a:5b:1a:64:2e:bc:84:9b:c4:64:f2:
d4:0d:0f:2d:5d:6b:0e:02:72:b5:4b:dd:2a:09:80:
ee:16:e0:e8:1f:f6:38:8b:cd:d1:af:6e:e9:66:29:
8c:7e:83:9f:8b:76:fb:0e:e3:24:c8:7c:92:05:95:
92:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DE:79:07:59:5D:FA:A5:49:F3:F2:AC:29:BB:EE:B3:C3:0A:2A:2A
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131372e302f32342d3234203d3e20323032363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.117.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:8c:32:7e:41:e0:e7:4c:da:3a:74:d4:ce:30:50:53:38:2a:
14:49:9f:53:1a:4f:28:1d:fe:54:b8:49:a9:1e:fe:11:30:7c:
d1:6e:c7:b7:93:7d:89:c2:5d:1c:60:ca:77:56:6e:51:67:2a:
f0:9d:0f:8b:77:c9:47:c3:9b:6e:25:03:37:2f:d1:3d:c9:3f:
fd:90:bf:90:e8:16:ab:0e:63:2b:94:f3:82:71:80:07:c6:d3:
25:4f:d4:5f:7b:26:99:ef:c0:ab:fd:0f:f5:38:75:2c:55:4f:
83:60:68:1d:2b:f8:28:53:c0:73:73:b8:a2:79:73:57:b9:9d:
0c:f5:71:17:b0:ac:e0:09:63:ce:61:a8:8f:60:53:03:21:3a:
3a:13:28:9c:b6:b2:32:c8:13:c9:4d:0b:b0:ef:14:13:9a:a0:
3c:aa:70:d5:69:a9:fe:1a:de:64:bf:f6:d7:36:a7:57:d9:a2:
40:73:aa:e8:5d:ea:9f:a8:0f:01:e9:af:e6:ee:47:78:e5:d8:
fe:aa:ff:ef:11:15:f6:61:70:af:d6:9b:17:54:2d:71:a9:2f:
d4:17:ed:bd:f6:62:81:14:ef:8f:b6:f5:20:de:21:ad:59:18:
a1:82:83:5e:bf:56:8a:c6:a8:2e:fa:7e:d6:58:6a:d4:94:07:
1b:9c:bd:c0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUTOL6BEDknpG/PmWDKBCCbszdILIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjE3MjU0OGZhM2M0NjBlMjZjYjUxOWVlNTI0MzYxYmNh
NmM3MTMyZTAeFw0yNDA2MDExMjQ5MzRaFw0yNTA1MzExMjU0MzRaMDMxMTAvBgNV
BAMTKDI1REU3OTA3NTk1REZBQTU0OUYzRjJBQzI5QkJFRUIzQzMwQTJBMkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZscu0mMtL+ROaeQ71biFh7Gm
BiXPwPO0rI2vyu/usLIblZ9dKkPg45K2SH7NbVjJp/f+Vb1u+/O86YdBqR/ydOfz
fE9VHV5m1MfLzUwxLYRia2rxl4xaz/r1v0yiq3hoMsq550NGYU/DkPBgRG1WEiZV
YUBhq8oOW0jqIX5rrG6vvqjPJE3yLl+43QYe4JU+5vdIup+HAUVf0ObxNagmj3Sg
L8z9NuBaGZJ6hPjZxe9mKYjSYdyaUBdLN0ZOdOXynZ3m2gpqWxpkLryEm8Rk8tQN
Dy1daw4CcrVL3SoJgO4W4Ogf9jiLzdGvbulmKYx+g5+LdvsO4yTIfJIFlZIXAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJd55B1ld+qVJ8/KsKbvus8MKKiowHwYDVR0j
BBgwFoAUsXJUj6PEYOJstRnuUkNhvKbHEy4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTY1NzNlODgtZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdk
MjVlLzAvQjE3MjU0OEZBM0M0NjBFMjZDQjUxOUVFNTI0MzYxQkNBNkM3MTMyRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NYSlVqNlBFWU9Kc3RSbnVVa05odkti
SEV5NC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTY1NzNlODgt
ZGFiYS00YWM3LWEyZWQtMzIxYzgyNzdkMjVlLzAvMzkzMzJlMzkzNTJlMzEzMTM3
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMyMzYzNzMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
XV91MA0GCSqGSIb3DQEBCwUAA4IBAQC/jDJ+QeDnTNo6dNTOMFBTOCoUSZ9TGk8o
Hf5UuEmpHv4RMHzRbse3k32Jwl0cYMp3Vm5RZyrwnQ+Ld8lHw5tuJQM3L9E9yT/9
kL+Q6BarDmMrlPOCcYAHxtMlT9RfeyaZ78Cr/Q/1OHUsVU+DYGgdK/goU8Bzc7ii
eXNXuZ0M9XEXsKzgCWPOYaiPYFMDITo6EyictrIyyBPJTQuw7xQTmqA8qnDVaan+
Gt5kv/bXNqdX2aJAc6roXeqfqA8B6a/m7kd45dj+qv/vERX2YXCv1psXVC1xqS/U
F+299mKBFO+PtvUg3iGtWRihgoNev1aKxqgu+n7WWGrUlAcbnL3A
-----END CERTIFICATE-----
Generated at Fri Mar 14 04:23:21 2025 by rpki-client