Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e36352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Z1yvZBQ3oIJMsIleYFvKIMWf2GF+4S5aGyt6nLutXfc=
Subject key identifier: 8A:B1:57:FC:D9:AC:EA:14:8C:48:CF:05:71:A2:2B:DA:9F:EB:8D:3D
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 6DD56F4FE6E14ABD584F2C9D065BA9EC021399CB
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
Signing time: Mon 12 May 2025 11:30:54 +0000
ROA not before: Mon 12 May 2025 11:25:54 +0000
ROA not after: Mon 11 May 2026 11:30:54 +0000
asID: 834
IP address blocks: 213.139.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 May 2025 14:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:d5:6f:4f:e6:e1:4a:bd:58:4f:2c:9d:06:5b:a9:ec:02:13:99:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 12 11:25:54 2025 GMT
Not After : May 11 11:30:54 2026 GMT
Subject: CN=8AB157FCD9ACEA148C48CF0571A22BDA9FEB8D3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5f:9d:4a:d0:5b:a2:d0:d1:15:4c:49:22:55:
db:1e:62:ea:90:60:61:10:34:2d:3f:49:c1:9b:11:
48:fb:39:b7:a4:d2:58:dd:f4:1e:0c:63:ef:3d:4a:
4c:ba:a6:80:24:37:97:3d:3c:43:30:eb:cd:78:36:
e6:7a:2c:fc:20:46:7c:40:41:40:ae:4f:6c:19:84:
8d:77:c8:57:06:89:a5:c0:27:dd:9e:73:bd:02:e6:
d0:10:6f:4a:97:30:d6:89:c5:01:fe:f6:9c:8c:09:
eb:20:b8:02:fa:af:4c:dc:87:2d:f5:f2:7e:c6:bb:
98:88:d6:b3:48:8c:9e:d8:95:2b:ae:f6:18:b4:c3:
9e:dc:73:aa:b9:ee:24:61:85:c6:58:af:da:7f:0c:
64:9c:3f:e6:6c:96:58:c3:bb:c3:9e:df:b8:4c:53:
ce:f7:40:e7:a6:4c:d2:7b:83:13:87:27:cc:85:d5:
61:0b:10:44:94:fe:e5:80:40:f2:89:0c:70:3d:b4:
87:85:3e:67:44:d7:ca:7b:71:91:5a:0b:36:7e:ef:
44:56:80:02:be:8c:ba:8c:87:1a:99:8a:47:bf:35:
e3:cb:5c:fc:6a:c5:30:9b:95:54:35:f5:5f:c4:a8:
8c:f7:49:f1:c9:af:27:88:d9:06:da:b2:06:0c:66:
37:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B1:57:FC:D9:AC:EA:14:8C:48:CF:05:71:A2:2B:DA:9F:EB:8D:3D
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.65.0/24
Signature Algorithm: sha256WithRSAEncryption
75:dc:3e:d2:ff:28:d0:00:0c:dd:64:8b:86:ad:1c:f6:07:fe:
f0:c6:02:f5:ee:9a:b6:0c:64:a6:f4:87:34:63:9a:e6:09:26:
1c:2b:7d:e9:cb:5d:9d:0b:89:69:88:a4:5c:d4:42:8b:5e:f2:
20:23:15:7d:dc:16:e6:f4:26:56:11:32:44:d9:f5:70:20:d3:
dc:24:38:0c:7c:26:f3:3b:35:61:54:86:57:45:d2:1c:a2:24:
28:18:95:96:af:f0:2c:3e:4b:ad:76:e8:1c:c4:b9:d5:db:96:
b8:99:7d:43:31:18:4a:15:97:f7:14:b1:3b:38:b7:82:0f:cd:
cd:c9:6b:b2:85:e5:34:6f:da:14:7c:f8:ff:1b:cc:d6:c0:9c:
79:f3:82:86:30:76:0a:37:dd:af:27:2a:e6:a7:b2:0b:bc:95:
09:ce:11:4a:6c:6a:d7:eb:64:97:6e:cc:91:bc:12:82:be:ea:
45:3a:c7:7b:c8:4e:48:f2:a2:b7:ba:3c:46:b7:ed:1e:d3:4a:
76:6e:05:34:e3:2e:15:45:3e:aa:fb:e0:57:4e:46:56:91:01:
5b:ab:fe:65:16:60:2f:45:42:e2:e2:64:b0:f5:45:68:01:59:
d5:3f:da:46:54:8e:ef:b0:82:73:a9:f2:44:fb:49:8e:27:4e:
a6:cb:d1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:32:09 2025 by rpki-client