Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3137362e302f32332d3233203d3e2036303739.roa
File: 3134332e32302e3137362e302f32332d3233203d3e2036303739.roa (raw, json)
Hash identifier: d/UZvGc4891YWr2WMAHjeHGoYvE9vj4JRX54r1XiyII=
Subject key identifier: 59:BD:D3:D1:48:A0:EF:79:65:EF:2C:B0:87:52:AB:B8:2D:EF:56:B5
Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Certificate serial: 03610A472A02B949AD68EE222D66ABB903E9B62E
Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3137362e302f32332d3233203d3e2036303739.roa
Signing time: Tue 06 May 2025 06:36:51 +0000
ROA not before: Tue 06 May 2025 06:31:51 +0000
ROA not after: Tue 05 May 2026 06:36:51 +0000
asID: 6079
IP address blocks: 143.20.176.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 02 Jun 2025 16:40:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:61:0a:47:2a:02:b9:49:ad:68:ee:22:2d:66:ab:b9:03:e9:b6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Validity
Not Before: May 6 06:31:51 2025 GMT
Not After : May 5 06:36:51 2026 GMT
Subject: CN=59BDD3D148A0EF7965EF2CB08752ABB82DEF56B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4f:a1:f2:85:0f:8c:cf:e6:54:49:17:69:d9:
85:9c:ab:3a:8f:4f:8d:f0:57:68:80:28:83:04:10:
c4:e1:a8:1b:9b:ad:05:28:98:5f:0c:fa:c6:a8:7d:
f8:24:68:e5:f5:bd:de:6c:9a:3e:e0:46:ce:92:23:
db:09:c7:64:fa:ca:04:b3:2c:db:33:e6:6a:e9:37:
33:c9:35:da:34:d5:05:ed:f8:3b:00:55:a7:f9:ae:
4b:09:9c:87:c1:48:f1:13:04:db:d5:a1:e5:0d:f6:
0c:5f:60:c3:a2:88:1b:3e:21:70:2b:cf:5e:27:d3:
54:91:cc:b4:3e:10:f2:89:7c:7c:f1:57:21:32:4a:
1c:40:6d:6b:e2:30:87:e8:4a:61:11:21:79:d0:ed:
40:3b:0e:16:b7:dc:20:70:c1:48:59:19:56:ad:0e:
19:92:59:d1:65:57:a1:bb:50:a7:5c:f8:6e:99:28:
b3:0d:a6:73:8d:d8:35:93:67:cf:ac:52:e9:ec:f4:
2d:b6:dc:db:41:68:d4:46:47:cd:d0:9b:2a:72:55:
db:3f:bc:d7:e7:7b:2a:47:07:a1:2c:aa:83:84:46:
e4:b5:44:4d:16:b9:43:75:5e:41:69:a2:ff:a4:c0:
35:5c:46:d6:2a:5a:4f:30:40:49:4b:f4:74:24:ad:
d7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BD:D3:D1:48:A0:EF:79:65:EF:2C:B0:87:52:AB:B8:2D:EF:56:B5
X509v3 Authority Key Identifier:
keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/3134332e32302e3137362e302f32332d3233203d3e2036303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.20.176.0/23
Signature Algorithm: sha256WithRSAEncryption
41:e2:b5:c0:62:da:47:5c:d5:d2:c3:6f:89:3f:59:5c:97:2f:
cf:5c:5e:ea:00:a2:30:97:d7:38:76:f4:bc:b9:cb:0a:17:37:
ca:70:90:b2:01:d7:e6:36:28:ba:c6:3a:81:e0:a9:ec:e7:db:
c0:2c:ca:cf:85:91:77:0b:91:92:17:03:27:f9:8c:7b:1d:39:
63:b3:e1:11:b5:6d:4f:21:9f:32:c2:c7:a7:e3:73:d2:77:4c:
09:24:a9:34:40:c6:e9:8b:59:a1:84:58:06:c6:cf:4c:c8:f3:
46:3c:02:64:46:73:4a:73:64:1c:1d:a1:6c:2b:9f:7a:a5:15:
62:bf:2e:50:81:94:49:44:73:ae:12:3e:fc:bc:c6:fa:b1:87:
af:18:3c:bb:e0:56:ed:50:76:68:51:da:d9:95:88:b0:f8:21:
38:47:80:c7:d5:d8:8e:03:2c:98:c1:33:34:e7:a0:9d:d1:a8:
43:8f:5e:2c:6b:10:8d:c5:05:17:df:4f:62:0f:56:9a:e1:43:
cb:12:61:8b:25:9c:37:5f:04:2e:e4:77:20:7e:95:01:46:e8:
87:d3:f4:a9:0e:f1:00:b6:ce:97:bf:f4:93:ab:0a:0d:16:da:
49:f8:77:07:07:51:ba:4f:08:2c:2f:4d:04:7e:85:dd:d6:7b:
99:45:6d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:29:04 2025 by rpki-client