Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32332d3234203d3e20383334.roa
File: 39332e39352e3131322e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: 3rLaqpIi7OxCCRSTs6eBEK9238V9bCnBuuDz/zNANzU=
Subject key identifier: 3C:27:6E:0C:B0:CD:ED:83:7B:C6:0A:57:A1:5E:CA:5D:0D:03:96:97
Certificate issuer: /CN=b172548fa3c460e26cb519ee524361bca6c7132e
Certificate serial: 1F0511992211E7D51D6E29D390CE9CBA38F9D8E8
Authority key identifier: B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32332d3234203d3e20383334.roa
Signing time: Thu 10 Apr 2025 10:13:05 +0000
ROA not before: Thu 10 Apr 2025 10:08:05 +0000
ROA not after: Thu 09 Apr 2026 10:13:05 +0000
asID: 834
IP address blocks: 93.95.112.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Apr 2025 23:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:05:11:99:22:11:e7:d5:1d:6e:29:d3:90:ce:9c:ba:38:f9:d8:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172548fa3c460e26cb519ee524361bca6c7132e
Validity
Not Before: Apr 10 10:08:05 2025 GMT
Not After : Apr 9 10:13:05 2026 GMT
Subject: CN=3C276E0CB0CDED837BC60A57A15ECA5D0D039697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4c:18:dd:42:79:a8:8a:25:f1:fb:15:45:3a:
0d:1f:90:f4:61:9a:4a:99:ee:2c:17:21:38:42:52:
b6:e2:78:1f:6f:19:0d:06:16:f5:c7:d7:2d:40:d0:
ac:67:46:e4:b7:02:87:2a:d1:12:a8:05:18:61:78:
3e:2e:e0:1a:e7:15:d3:f3:45:54:7b:3a:d3:ba:8d:
b0:0e:b8:13:b4:55:c4:21:49:38:ed:64:c3:99:81:
4d:1a:0b:60:34:f3:e7:23:d5:45:82:4f:3f:d7:1b:
b2:3b:33:10:dd:38:79:2e:eb:57:ce:c2:c7:43:21:
cf:3a:c1:fe:c4:38:b3:46:e2:6c:25:ae:8a:1b:42:
10:80:2d:b0:49:2b:6d:b0:8f:c4:60:9d:2b:e8:86:
2d:c3:18:50:0e:62:5e:fd:d9:16:c4:7e:e7:68:ba:
c7:82:43:2b:22:a9:0f:fa:49:7f:2c:61:b0:6a:d8:
d0:9d:6b:63:a9:bd:bf:c6:ef:b2:b1:f3:93:71:5b:
36:3b:27:33:79:d9:e2:21:4e:31:88:bd:2f:86:0a:
42:c0:ea:d3:33:4a:10:69:00:af:89:4a:aa:7c:e4:
32:29:dc:03:90:24:21:b5:0f:f9:16:cd:dd:d0:18:
c1:0d:44:0e:b0:8b:42:d3:e3:db:8c:33:63:b3:04:
9c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:27:6E:0C:B0:CD:ED:83:7B:C6:0A:57:A1:5E:CA:5D:0D:03:96:97
X509v3 Authority Key Identifier:
keyid:B1:72:54:8F:A3:C4:60:E2:6C:B5:19:EE:52:43:61:BC:A6:C7:13:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/B172548FA3C460E26CB519EE524361BCA6C7132E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXJUj6PEYOJstRnuUkNhvKbHEy4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96573e88-daba-4ac7-a2ed-321c8277d25e/0/39332e39352e3131322e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/23
Signature Algorithm: sha256WithRSAEncryption
e0:ca:8c:07:dd:10:21:be:73:ed:ac:12:b5:06:de:41:2e:b5:
14:f4:39:de:55:69:89:31:67:bc:76:70:04:8e:8c:30:83:f9:
59:a8:2c:92:d0:ce:fd:bd:0a:4d:df:21:08:e3:4a:5f:e0:4b:
1d:60:c9:92:54:50:92:7c:a5:2d:33:c0:8e:b3:66:91:9e:69:
c7:47:27:f6:bd:9f:f5:bd:c0:20:9a:18:f6:44:77:f2:a5:a9:
fa:80:69:bc:78:66:95:7d:fc:d9:fd:bf:61:f6:fa:3a:e7:aa:
9f:43:57:7b:62:1a:60:c3:33:17:1f:6c:75:1e:47:e7:94:c3:
f4:7c:53:52:22:8d:8b:68:65:a1:3b:2d:21:bd:7f:2a:fd:9a:
6e:3f:24:d2:b5:2e:d5:7e:8d:cc:ee:88:1c:34:0f:52:65:ee:
0e:2b:5a:e0:fd:7c:7f:07:91:49:bf:28:7f:92:94:91:43:21:
51:7f:c1:cc:6e:1e:3f:53:31:a0:bc:b0:cf:25:92:e8:01:b5:
14:d6:b3:5f:c3:d8:11:b6:52:8c:50:0b:29:45:20:82:67:da:
62:98:2e:a9:e3:b1:b7:63:06:ee:44:ca:82:e3:8c:3c:30:5c:
6b:a9:a2:7e:52:b0:a5:c0:d5:44:c1:4c:a6:64:87:bd:4b:62:
37:af:82:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:55:07 2025 by rpki-client