Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: jVfQZWbn4cmHZnP/Xph4zBBqMcLO3L6Uqs/KV2y5ua8=
Subject key identifier: 25:A0:0D:1F:15:3A:E0:65:CC:D5:8C:96:C5:EA:3C:29:20:B7:08:51
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 7DA5EDBF2E1768223514618B531A55E656C6EFC7
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
Signing time: Fri 06 Mar 2026 09:01:58 +0000
ROA not before: Fri 06 Mar 2026 08:56:58 +0000
ROA not after: Fri 05 Mar 2027 09:01:58 +0000
asID: 834
IP address blocks: 141.11.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Mar 2026 15:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:a5:ed:bf:2e:17:68:22:35:14:61:8b:53:1a:55:e6:56:c6:ef:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Mar 6 08:56:58 2026 GMT
Not After : Mar 5 09:01:58 2027 GMT
Subject: CN=25A00D1F153AE065CCD58C96C5EA3C2920B70851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:74:a2:0e:8e:14:45:97:52:fb:e7:b1:2d:bb:
0d:c7:ce:ee:ef:57:86:90:82:5b:75:72:fb:08:62:
8f:85:2d:20:91:4e:d3:cf:bf:5b:0c:2b:e6:9b:1b:
3f:49:41:0e:40:4a:19:c7:e7:3e:ca:e1:5c:24:45:
39:1a:23:0a:27:b5:89:9d:99:e0:1b:3a:79:92:9b:
5a:ca:22:74:c3:1e:ef:2a:f4:fe:80:18:e9:d2:83:
c4:c7:b1:4c:95:41:40:09:90:b2:70:99:3b:5f:46:
49:b8:ec:a2:64:af:de:77:8b:74:48:e7:05:62:0f:
c6:ad:75:ba:d7:59:9d:a3:9a:23:13:6e:fb:9c:ef:
d1:b0:fa:e7:cd:4e:c1:72:8c:7b:32:1a:0d:f1:88:
7f:97:fd:3b:b0:7e:d4:51:3c:a2:48:17:57:5f:87:
b1:d2:58:42:f3:90:39:f2:35:c1:ce:02:36:ef:67:
66:97:a2:e1:aa:ff:c6:a3:1d:1c:30:23:14:a8:96:
3a:f8:4c:3b:71:43:38:74:5e:48:33:ae:08:71:f9:
1e:89:66:97:81:2d:48:0d:cb:f6:ec:90:60:93:d6:
0d:f3:9e:0f:a9:11:72:40:fd:30:ef:cb:20:2d:83:
e6:fb:b5:59:89:9a:fb:98:b1:88:c7:2f:52:81:50:
64:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A0:0D:1F:15:3A:E0:65:CC:D5:8C:96:C5:EA:3C:29:20:B7:08:51
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ca:cc:65:34:18:cb:d3:ef:56:81:94:53:5f:64:52:e9:a7:
8e:52:1e:1f:87:f6:48:3d:69:44:95:e2:f0:a9:d1:95:e0:82:
2b:1e:9f:af:c0:34:5b:16:6d:6f:f2:4e:03:62:43:74:62:41:
b9:f5:d9:f2:cb:84:06:c5:29:ad:5e:c9:36:89:96:72:cd:e4:
cd:7d:b2:5f:0a:6c:87:3b:7e:91:86:21:3e:f2:19:a2:37:89:
aa:58:a1:a3:4a:ed:02:bc:02:26:53:80:75:a6:bc:b5:04:6f:
97:87:06:12:70:d2:4f:a1:c3:7d:1e:0e:a8:34:1a:87:f3:bb:
28:68:0c:b5:ef:78:9a:61:c7:f7:10:43:d8:57:35:57:7f:fd:
94:92:d2:d8:8a:a2:37:5a:47:6d:91:e6:35:a8:27:ad:02:3d:
92:40:31:cb:45:05:a4:03:d3:f0:45:c1:e8:57:b1:44:00:ca:
d0:6f:8c:b2:87:9c:e8:31:ed:5b:9c:1c:11:68:d5:35:9d:57:
14:48:42:9c:a2:de:a2:b4:73:61:50:b1:3a:1d:62:6e:ed:e7:
15:e5:67:df:0f:08:2d:58:b5:f3:87:26:50:5d:72:7b:49:9d:
0b:bd:37:88:5f:d3:4f:be:cb:9f:8f:1b:19:d2:90:1c:ea:5f:
41:cc:00:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 20:56:28 2026 by rpki-client