Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3130312e302f32342d3234203d3e20323132333335.roa
File: 3134332e32302e3130312e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: uqSguBd6Mj10XYOJwWx/pAik3ScbCVNTkPYyxsYabsI=
Subject key identifier: B6:92:9E:64:EE:DF:72:4D:A2:9F:2A:DC:2B:46:68:78:48:5C:92:55
Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Certificate serial: 531395A39454720FC59514DE524F9DE6EA391150
Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3130312e302f32342d3234203d3e20323132333335.roa
Signing time: Thu 05 Jun 2025 12:38:42 +0000
ROA not before: Thu 05 Jun 2025 12:33:42 +0000
ROA not after: Thu 04 Jun 2026 12:38:42 +0000
asID: 212335
IP address blocks: 143.20.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jun 2025 17:39:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:13:95:a3:94:54:72:0f:c5:95:14:de:52:4f:9d:e6:ea:39:11:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Validity
Not Before: Jun 5 12:33:42 2025 GMT
Not After : Jun 4 12:38:42 2026 GMT
Subject: CN=B6929E64EEDF724DA29F2ADC2B466878485C9255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:42:0e:a3:4a:73:02:cf:f4:d5:a7:35:81:a4:
01:31:86:b6:9c:e3:71:9e:b5:63:2b:e4:b5:1a:c5:
bb:76:7e:cb:1c:82:0f:c6:d7:8a:c7:48:ef:01:90:
0b:95:46:08:29:b2:d3:cc:0d:9b:7e:76:75:94:54:
53:03:37:5c:2f:d3:1c:1a:f0:41:87:68:a3:8a:cf:
03:34:3b:73:bf:18:d9:c8:6b:d7:9b:be:ce:94:12:
49:15:a3:1b:88:df:be:79:7d:f2:ad:22:70:15:10:
86:e7:7d:c3:61:25:6b:19:49:12:ce:bd:7f:44:c1:
17:71:92:19:da:6f:18:71:ab:b5:18:8d:dd:fd:57:
d5:5b:96:a9:84:eb:21:da:b0:57:5f:49:73:db:8c:
5f:3d:4c:9b:44:b8:ee:e5:0b:49:8b:18:3b:b8:7e:
70:fb:cd:11:f8:ca:02:1f:7e:e3:d7:60:36:3b:a8:
3c:7f:85:d9:08:96:bb:8e:07:84:06:b1:94:eb:d5:
af:6c:33:65:e8:ac:26:ae:9e:cf:21:dd:eb:82:d8:
25:a8:70:9a:15:17:ed:0e:63:45:53:14:4a:67:1a:
55:17:2c:18:50:c6:14:60:b3:a6:7f:66:28:d3:98:
97:2e:8a:84:fb:1b:30:62:09:ca:d3:9d:59:2c:05:
cb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:92:9E:64:EE:DF:72:4D:A2:9F:2A:DC:2B:46:68:78:48:5C:92:55
X509v3 Authority Key Identifier:
keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3130312e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.20.101.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:61:8b:c3:6f:ba:f8:0c:0d:f7:13:f4:eb:14:c0:ed:c8:b6:
dc:39:03:01:0f:17:a6:d6:22:14:e4:e9:ed:7c:93:ce:14:e3:
94:51:7e:84:5b:a1:7e:9b:85:f9:bb:2d:ff:3b:60:4b:01:95:
f7:cd:15:a4:e8:9f:d9:ed:8a:10:6a:57:87:a8:db:f8:35:76:
f9:71:d4:c3:82:7c:b6:26:63:fd:db:d0:3f:ce:4a:60:96:9f:
4d:10:de:fa:9a:7e:f4:a0:77:8a:4d:76:6a:1e:94:01:e1:b0:
df:22:a0:95:60:a4:21:1b:de:81:f0:85:ef:d8:4c:77:9b:49:
99:26:9d:f2:d4:f1:1b:73:6a:e5:f7:be:f2:6c:4a:ea:b4:01:
ca:71:ba:14:1b:e8:e8:4f:98:65:64:3c:bc:77:5c:6d:fe:f2:
16:cf:45:4d:66:8e:6a:81:66:86:84:4c:ce:06:e5:74:65:97:
d8:59:3c:e4:87:ed:db:70:4d:74:88:6a:97:15:d2:94:d3:c7:
4f:2a:7f:1d:b3:60:fa:76:1d:54:4c:d9:f9:6c:c2:96:d8:31:
57:34:46:21:1e:37:1a:ae:94:99:a7:e7:6e:dc:e5:50:2c:50:
7b:6c:bc:06:f8:01:ea:0c:0e:e7:1a:08:d2:aa:3c:bd:96:13:
36:5f:ce:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:43:41 2025 by rpki-client