Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135372e302f32342d3234203d3e20323132333438.roa
File: 3138352e35382e3135372e302f32342d3234203d3e20323132333438.roa (raw, json)
Hash identifier: DGO61w7PmIJ89HGZYCpzYFdXQiPEr9dqR3BmIwUwJEM=
Subject key identifier: F6:C6:B7:BE:A1:4D:4D:9A:04:EF:59:40:AF:6D:07:C4:DF:2F:54:BE
Certificate issuer: /CN=38a93c81ecd308e6a7632717045b3d35150120f8
Certificate serial: 296574D89CB16EE8BDF54506DEDC763338638CCE
Authority key identifier: 38:A9:3C:81:EC:D3:08:E6:A7:63:27:17:04:5B:3D:35:15:01:20:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKk8gezTCOanYycXBFs9NRUBIPg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135372e302f32342d3234203d3e20323132333438.roa
Signing time: Thu 01 May 2025 14:48:51 +0000
ROA not before: Thu 01 May 2025 14:43:51 +0000
ROA not after: Thu 30 Apr 2026 14:48:51 +0000
asID: 212348
IP address blocks: 185.58.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 11:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:65:74:d8:9c:b1:6e:e8:bd:f5:45:06:de:dc:76:33:38:63:8c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a93c81ecd308e6a7632717045b3d35150120f8
Validity
Not Before: May 1 14:43:51 2025 GMT
Not After : Apr 30 14:48:51 2026 GMT
Subject: CN=F6C6B7BEA14D4D9A04EF5940AF6D07C4DF2F54BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1d:96:ed:aa:61:a1:63:77:f7:b7:d8:97:e3:
ab:68:d1:91:84:ba:60:fc:51:61:dc:e6:89:9f:0e:
a9:a3:52:92:1a:41:69:fc:69:28:c0:4d:f4:54:d4:
87:c2:e4:a7:8e:bb:cd:2a:dd:fb:48:53:89:08:69:
42:b7:2d:bb:fc:7b:1b:54:fc:cb:0a:d1:7c:84:b2:
9f:75:07:32:15:8c:ca:aa:b7:63:79:45:d1:b7:c6:
f2:fd:79:4d:40:4d:d9:1b:f0:79:72:39:42:e7:60:
93:89:24:44:9f:f8:24:2d:21:28:1c:38:d5:84:69:
99:5d:4f:0a:53:8a:0b:d9:f4:17:3d:9c:89:9e:74:
2c:fd:56:30:96:50:0b:6f:74:06:15:57:de:da:59:
fd:49:4f:b2:51:98:26:98:94:eb:d1:33:c2:e1:97:
e5:dd:a8:09:10:ab:91:c2:f1:1b:04:cb:74:94:0c:
1e:4a:84:c1:09:4f:5b:f4:27:1d:e6:5f:76:25:9e:
65:40:95:35:c9:5b:04:02:b8:9d:00:b6:0b:05:1d:
d1:0b:b9:a2:14:17:11:a4:23:7a:7c:1f:f8:26:16:
b5:e9:0d:56:b0:4c:8a:3a:ca:a0:06:23:dd:b3:da:
49:3c:97:04:17:65:85:b5:6f:17:da:85:df:87:56:
a1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C6:B7:BE:A1:4D:4D:9A:04:EF:59:40:AF:6D:07:C4:DF:2F:54:BE
X509v3 Authority Key Identifier:
keyid:38:A9:3C:81:EC:D3:08:E6:A7:63:27:17:04:5B:3D:35:15:01:20:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/38A93C81ECD308E6A7632717045B3D35150120F8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKk8gezTCOanYycXBFs9NRUBIPg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135372e302f32342d3234203d3e20323132333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.157.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e2:7c:de:32:ce:8c:31:4d:23:25:a0:b3:2d:5d:59:a1:c8:
48:98:df:b6:0a:32:83:6c:ea:3a:6f:9c:15:72:81:75:1a:3d:
01:99:47:db:79:d0:6e:c9:40:26:51:41:29:c4:f7:d9:03:ed:
5e:3d:f8:a7:2a:43:f9:30:a2:56:8d:57:f4:ab:0e:ce:b4:c8:
6a:f4:23:5b:94:c3:47:40:e0:5e:1a:0f:28:e8:f8:2c:10:08:
ac:67:d6:49:91:21:cd:dd:5f:d1:38:59:6c:e1:35:7b:32:82:
79:ea:79:cf:b5:6e:a7:e5:72:f7:51:10:b7:21:d7:f3:22:c1:
d6:c3:d1:2b:d8:83:23:a1:23:79:85:96:3c:b6:6a:bb:8e:7a:
f2:e0:68:88:29:e9:fb:fb:82:9c:5e:0b:6a:68:54:05:cf:63:
2d:4a:59:e2:a8:13:2f:aa:86:e1:da:94:66:ec:1a:bd:4b:34:
2e:8b:de:0c:e6:e2:49:13:2e:1d:28:ef:62:35:a9:c8:4a:5e:
ae:45:95:6c:19:b3:c2:de:ea:d4:ca:6a:52:a1:ec:7e:29:45:
37:61:af:0f:2a:5f:57:0e:42:68:cd:d8:97:34:ab:a9:52:7a:
86:86:cd:17:cb:41:9f:ff:69:4b:f1:6b:f7:d0:6e:9d:b4:34:
cb:54:01:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:04:09 2025 by rpki-client