Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
File: 3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: M/jQdsC3rzJO608YWzPcbPTsv4p5C+zLs8nyFHIzt/Q=
Subject key identifier: 32:D9:12:BD:86:53:E4:9D:5D:96:1F:E8:A0:87:C8:41:4E:A1:37:50
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 6438EA733217EE5C2B64328A13D0125B676B6874
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
Signing time: Wed 05 Feb 2025 13:30:25 +0000
ROA not before: Wed 05 Feb 2025 13:25:25 +0000
ROA not after: Wed 04 Feb 2026 13:30:25 +0000
asID: 16276
IP address blocks: 185.212.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Feb 2025 09:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:38:ea:73:32:17:ee:5c:2b:64:32:8a:13:d0:12:5b:67:6b:68:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Feb 5 13:25:25 2025 GMT
Not After : Feb 4 13:30:25 2026 GMT
Subject: CN=32D912BD8653E49D5D961FE8A087C8414EA13750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d3:55:eb:72:bd:b0:f6:f9:2b:d0:ce:08:21:
df:a2:ff:22:2b:a3:81:5a:32:fe:01:2a:e9:db:23:
b5:d1:7c:43:2d:ac:bd:00:ea:5a:b0:ec:00:16:7f:
fa:bd:0e:0f:29:93:fa:ea:e8:e0:40:28:00:34:e1:
61:65:94:1e:9d:f2:68:ff:ad:b6:a2:6d:68:3d:80:
3f:6c:41:8c:22:d4:cd:3e:09:3f:7e:bd:ee:0a:7f:
e3:82:a6:d0:e9:f9:30:83:7d:a7:85:86:ae:2e:32:
ef:14:4a:a4:10:55:4d:e6:49:cb:28:ef:2f:42:ed:
5c:f9:82:34:11:69:d7:ea:8e:b8:83:70:33:c1:55:
ff:1c:71:d8:28:8c:45:19:81:8e:9c:40:4f:2d:8e:
06:d6:63:83:ce:b1:42:b5:7d:cb:ae:e8:77:86:46:
35:8c:9f:c8:32:01:77:4e:26:09:28:98:d4:eb:f9:
50:fd:a8:d2:4f:ed:78:4a:59:06:e0:73:d7:c3:a7:
fc:2a:34:aa:12:3c:96:bd:c2:4a:c1:14:bf:46:b4:
bf:b9:fe:d4:dc:31:8b:f9:87:59:79:03:aa:bd:62:
a7:3c:74:df:6f:5b:6d:03:24:06:6b:73:d7:f9:64:
1b:bf:b9:99:cd:4a:9e:ac:a9:c8:06:f7:80:43:20:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D9:12:BD:86:53:E4:9D:5D:96:1F:E8:A0:87:C8:41:4E:A1:37:50
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:39:5a:79:e1:ed:b4:17:a7:47:69:57:a7:ea:6b:f0:b1:30:
a4:4f:2c:62:e1:19:5b:73:3d:62:b2:a3:36:05:1a:7a:7c:bb:
14:ed:b9:d5:5a:fd:af:7c:ca:16:02:50:69:02:cb:11:50:26:
3c:fc:66:d4:16:e7:e9:8d:a4:c5:cd:a6:bf:09:43:bc:81:4c:
1e:1a:54:5b:43:8f:46:4c:6b:03:f3:5b:3f:ad:e3:35:0f:a1:
cd:a2:a1:b6:a9:2f:39:fa:d8:3b:07:d5:e9:a8:a9:39:5d:09:
3a:bc:11:4c:b0:2c:3a:2d:dd:e5:a9:f7:e5:1b:b3:e5:58:4d:
38:72:1f:1c:05:32:35:33:39:bc:72:78:bd:a6:6c:3c:eb:fd:
90:57:51:7e:ef:13:b2:d4:fe:71:1d:ec:b0:8e:93:68:4f:b0:
98:07:ba:6b:84:3f:d4:08:ee:04:94:7e:be:0b:82:91:0a:ad:
8e:7b:42:49:a1:50:4e:33:fa:bf:90:f1:74:97:30:2e:98:df:
78:d5:42:19:7e:a4:e9:2c:a9:e5:98:80:ee:83:b5:67:b5:a7:
59:05:0f:03:a3:47:86:00:39:4d:29:f2:3f:f9:c2:3d:07:c9:
f4:36:95:94:f0:b2:64:f0:c8:68:44:23:13:6c:4f:df:d3:39:
d3:1b:31:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:41:57 2025 by rpki-client