Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
File: AS25198.roa (raw, json)
Hash identifier: ae8ESf9FuQepu/BHnOeOfZfc1yCugVv2hzjk2Sw6kv0=
Subject key identifier: 9C:D4:57:AE:81:06:35:11:80:04:B7:12:6A:17:D6:8A:3B:15:E8:37
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 0C27054C3651112AF22C4DBEC904957CB5B0EEED
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
Signing time: Fri 09 Jan 2026 10:02:13 +0000
ROA not before: Fri 09 Jan 2026 09:57:13 +0000
ROA not after: Fri 08 Jan 2027 10:02:13 +0000
asID: 25198
IP address blocks: 141.11.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jan 2026 07:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:27:05:4c:36:51:11:2a:f2:2c:4d:be:c9:04:95:7c:b5:b0:ee:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Jan 9 09:57:13 2026 GMT
Not After : Jan 8 10:02:13 2027 GMT
Subject: CN=9CD457AE810635118004B7126A17D68A3B15E837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:df:65:73:85:08:37:b6:df:96:95:92:73:d3:
0a:e6:8a:74:9a:4a:de:18:fc:ad:de:1a:e4:0c:8d:
5d:6c:0b:fd:c9:e7:97:5e:9c:d2:a4:f5:ec:84:76:
cd:c1:52:62:15:02:6b:1f:f1:f0:26:6e:12:ad:eb:
63:38:47:a3:3c:7b:5d:9f:56:18:57:51:cd:ca:8b:
98:6b:50:09:2c:5a:16:d6:40:37:62:a0:f3:13:07:
a8:55:08:c4:d4:a9:3c:1f:5e:67:d7:2a:c8:95:2b:
91:34:c9:7e:18:8c:96:db:9e:51:9c:b0:5c:dd:7e:
fe:1d:61:9b:85:0d:6a:f1:bc:a9:7e:96:7e:88:99:
c0:d2:a1:7c:f4:f7:2b:5f:bd:38:79:88:18:28:c2:
47:66:11:fa:c8:46:c8:9a:b9:3f:11:21:a0:79:e7:
a4:f9:01:78:9c:c7:61:dd:9e:25:75:e4:db:bf:b0:
e2:2c:d5:65:6d:e3:e7:0f:7b:98:77:d8:da:d3:c9:
cf:33:6c:2a:0d:39:f7:6c:51:a3:38:c0:fd:1f:66:
cc:7a:5d:3a:1b:eb:23:16:0f:10:a0:1c:ff:a8:ed:
38:be:9f:a2:b8:1e:62:df:e3:30:6b:46:f9:76:14:
bd:27:28:c4:c9:b4:2d:de:25:c3:53:7e:4f:07:da:
57:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D4:57:AE:81:06:35:11:80:04:B7:12:6A:17:D6:8A:3B:15:E8:37
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS25198.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.48.0/24
Signature Algorithm: sha256WithRSAEncryption
01:56:e1:86:c8:13:a3:54:dc:c3:eb:5d:6e:5c:dc:68:83:00:
63:89:7d:d5:5a:27:bc:fd:8b:5b:82:6d:9b:42:84:b8:01:40:
b8:8d:5e:35:78:82:3f:d1:c2:36:ec:5a:d9:f4:a3:3d:3c:22:
11:c3:dd:cf:db:f3:e6:9a:9c:6e:c0:a4:ee:a7:6c:0e:25:0d:
14:7c:7b:aa:6b:c8:50:6b:90:28:5f:53:0a:98:63:39:a3:1b:
6c:b9:aa:e5:21:d6:a0:80:66:1e:03:f9:05:a5:a5:9b:f1:02:
cc:92:95:03:ac:05:48:77:61:5b:30:6d:f2:ce:0d:45:2a:fa:
4b:79:00:3d:5a:65:01:6d:24:76:2a:5f:2e:07:ef:c2:ac:77:
c0:dd:61:36:8c:d9:fd:ac:de:e7:62:be:79:dd:65:51:61:cb:
b4:7b:ce:09:1f:6c:31:29:27:84:9a:1d:ac:a3:52:ef:cd:bb:
f0:cd:a1:3d:01:38:ae:bc:25:e2:68:86:a9:08:a1:1b:ff:36:
38:7b:19:55:eb:d8:3d:43:8d:26:02:e4:76:0f:de:ce:66:d1:
2b:fe:03:a1:f5:f8:32:35:af:36:8b:5c:13:5a:b0:9e:27:76:
6e:0c:41:4e:c7:95:df:b8:0b:eb:d8:27:3b:1b:63:7b:26:7c:
1d:2e:7e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 08:47:53 2026 by rpki-client