Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135382e302f32342d3234203d3e20333933393432.roa
File: 3138352e35382e3135382e302f32342d3234203d3e20333933393432.roa (raw, json)
Hash identifier: zxYDFRqYL/eHJev6kDZJs6GaWXU3saG8s/s6eyph57I=
Subject key identifier: E4:FE:07:10:75:DB:5C:44:99:B5:C5:09:80:AF:72:C2:FB:E8:39:FB
Certificate issuer: /CN=38a93c81ecd308e6a7632717045b3d35150120f8
Certificate serial: 7C00D250AE00B34CBEC4681845BE1540CE5ED412
Authority key identifier: 38:A9:3C:81:EC:D3:08:E6:A7:63:27:17:04:5B:3D:35:15:01:20:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKk8gezTCOanYycXBFs9NRUBIPg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135382e302f32342d3234203d3e20333933393432.roa
Signing time: Wed 12 Feb 2025 12:58:19 +0000
ROA not before: Wed 12 Feb 2025 12:53:19 +0000
ROA not after: Wed 11 Feb 2026 12:58:19 +0000
asID: 393942
IP address blocks: 185.58.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Mar 2025 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:00:d2:50:ae:00:b3:4c:be:c4:68:18:45:be:15:40:ce:5e:d4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a93c81ecd308e6a7632717045b3d35150120f8
Validity
Not Before: Feb 12 12:53:19 2025 GMT
Not After : Feb 11 12:58:19 2026 GMT
Subject: CN=E4FE071075DB5C4499B5C50980AF72C2FBE839FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:50:e2:29:92:78:58:bb:1a:09:ff:35:65:
15:78:4e:db:48:08:eb:7a:8e:2b:f8:0c:52:7e:d4:
69:84:dd:66:09:32:55:e4:a7:35:e6:5a:8e:64:8d:
00:8e:62:94:1e:c5:51:3d:2b:a3:35:12:52:e7:ee:
74:56:9a:50:f4:71:b0:68:9b:9c:ef:43:e2:f4:b9:
2f:e1:83:19:bc:79:42:d4:61:e7:23:14:83:ab:9d:
b5:f0:c4:38:47:71:f1:4f:4a:72:9e:13:56:ad:5f:
b4:a0:6f:27:db:a6:77:92:94:2b:c4:d2:bb:ea:69:
ce:95:45:bd:d0:e0:2d:fb:ef:33:b0:45:53:8d:2f:
c8:0f:99:b1:24:a0:0e:bb:65:5f:d7:39:a0:de:f6:
4c:95:d3:59:52:cb:1f:84:71:78:de:67:21:d5:63:
94:e1:e4:a7:da:a2:f7:2f:4b:30:f0:f4:8c:29:70:
59:92:76:c2:b7:96:a3:57:53:11:e3:10:72:9b:d3:
72:76:ef:b7:c5:fc:d8:45:43:dd:4c:bd:fc:e4:9c:
04:91:4f:c7:3e:bf:2c:87:e4:ab:cf:7a:eb:56:07:
04:2a:fd:4c:82:c3:f8:a0:2a:a7:58:b3:f3:fa:f5:
83:d7:12:6d:1d:3d:66:f7:fd:55:88:0b:48:1c:38:
9e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FE:07:10:75:DB:5C:44:99:B5:C5:09:80:AF:72:C2:FB:E8:39:FB
X509v3 Authority Key Identifier:
keyid:38:A9:3C:81:EC:D3:08:E6:A7:63:27:17:04:5B:3D:35:15:01:20:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/38A93C81ECD308E6A7632717045B3D35150120F8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKk8gezTCOanYycXBFs9NRUBIPg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/982c65b9-725d-4bb0-a216-8e77191ff9b8/0/3138352e35382e3135382e302f32342d3234203d3e20333933393432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.158.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e8:a2:34:ea:f0:b8:68:b7:54:53:54:f4:55:7d:6a:c3:30:
05:b1:c9:a2:13:5b:1c:e2:67:c3:5e:60:bf:04:47:65:64:b0:
1d:79:44:98:1b:a2:89:99:30:da:e0:a3:f6:d2:df:9d:4a:de:
4d:7c:be:3d:87:34:eb:ee:89:e9:9e:ce:13:1d:e9:88:cc:6e:
7e:a8:4d:f9:ee:27:ae:ea:13:d2:26:31:ce:48:13:08:ad:bf:
74:06:51:ba:2b:1b:2f:80:53:33:77:c1:c1:6c:88:20:93:7d:
ba:a4:07:52:ac:78:b3:bf:37:04:0f:1c:67:57:0d:8c:c5:96:
bb:1f:5f:a1:9b:3a:da:ed:e4:8b:5f:07:ec:09:a5:53:7f:5b:
38:fc:15:3a:59:02:28:7b:f1:0e:fc:f2:e1:c5:4e:4e:98:74:
9b:70:fc:66:8c:02:5e:c4:bc:b8:09:dd:03:3e:96:bb:92:0a:
a5:b2:27:3e:e7:81:27:d9:62:6d:24:c2:ec:6c:b9:18:e1:50:
b2:f1:0a:ba:6a:6b:b6:c5:cd:61:70:43:eb:4a:19:90:20:b6:
a3:1e:1c:bb:76:2c:c3:d9:15:9b:01:54:fb:8b:7c:42:be:51:
26:4e:1c:d5:ba:a8:30:05:68:0d:f7:4a:74:bd:c9:2d:aa:f7:
2d:ed:4f:d7
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUfADSUK4As0y+xGgYRb4VQM5e1BIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzhhOTNjODFlY2QzMDhlNmE3NjMyNzE3MDQ1YjNkMzUx
NTAxMjBmODAeFw0yNTAyMTIxMjUzMTlaFw0yNjAyMTExMjU4MTlaMDMxMTAvBgNV
BAMTKEU0RkUwNzEwNzVEQjVDNDQ5OUI1QzUwOTgwQUY3MkMyRkJFODM5RkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3cVDiKZJ4WLsaCf81ZRV4TttI
COt6jiv4DFJ+1GmE3WYJMlXkpzXmWo5kjQCOYpQexVE9K6M1ElLn7nRWmlD0cbBo
m5zvQ+L0uS/hgxm8eULUYecjFIOrnbXwxDhHcfFPSnKeE1atX7SgbyfbpneSlCvE
0rvqac6VRb3Q4C377zOwRVONL8gPmbEkoA67ZV/XOaDe9kyV01lSyx+EcXjeZyHV
Y5Th5KfaovcvSzDw9IwpcFmSdsK3lqNXUxHjEHKb03J277fF/NhFQ91MvfzknASR
T8c+vyyH5KvPeutWBwQq/UyCw/igKqdYs/P69YPXEm0dPWb3/VWIC0gcOJ6jAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU5P4HEHXbXESZtcUJgK9ywvvoOfswHwYDVR0j
BBgwFoAUOKk8gezTCOanYycXBFs9NRUBIPgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOTgyYzY1YjktNzI1ZC00YmIwLWEyMTYtOGU3NzE5MWZm
OWI4LzAvMzhBOTNDODFFQ0QzMDhFNkE3NjMyNzE3MDQ1QjNEMzUxNTAxMjBGOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL09LazhnZXpUQ09hbll5Y1hCRnM5TlJV
QklQZy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTgyYzY1Yjkt
NzI1ZC00YmIwLWEyMTYtOGU3NzE5MWZmOWI4LzAvMzEzODM1MmUzNTM4MmUzMTM1
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM5MzMzOTM0MzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5Op4wDQYJKoZIhvcNAQELBQADggEBAGLoojTq8Lhot1RTVPRVfWrDMAWxyaIT
WxziZ8NeYL8ER2VksB15RJgboomZMNrgo/bS351K3k18vj2HNOvuiemezhMd6YjM
bn6oTfnuJ67qE9ImMc5IEwitv3QGUborGy+AUzN3wcFsiCCTfbqkB1KseLO/NwQP
HGdXDYzFlrsfX6GbOtrt5ItfB+wJpVN/Wzj8FTpZAih78Q788uHFTk6YdJtw/GaM
Al7EvLgJ3QM+lruSCqWyJz7ngSfZYm0kwuxsuRjhULLxCrpqa7bFzWFwQ+tKGZAg
tqMeHLt2LMPZFZsBVPuLfEK+USZOHNW6qDAFaA33SnS9yS2q9y3tT9c=
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:47:45 2025 by rpki-client