Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa
File: AS25198.roa (raw, json)
Hash identifier: OB3Qmh1FajQ8xC0sXUE0LP6F9R8gBhYrb9s3RYIJQRA=
Subject key identifier: 7D:15:3B:04:3D:7D:60:18:3B:27:16:C5:5A:3E:0C:D7:45:1E:AA:48
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 2B9A7F26F10B561BE40424A567B933A758767229
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa
Signing time: Tue 25 Feb 2025 15:54:55 +0000
ROA not before: Tue 25 Feb 2025 15:49:55 +0000
ROA not after: Tue 24 Feb 2026 15:54:55 +0000
asID: 25198
IP address blocks: 82.27.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Mar 2025 00:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:9a:7f:26:f1:0b:56:1b:e4:04:24:a5:67:b9:33:a7:58:76:72:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 25 15:49:55 2025 GMT
Not After : Feb 24 15:54:55 2026 GMT
Subject: CN=7D153B043D7D60183B2716C55A3E0CD7451EAA48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6d:38:83:af:df:31:48:ba:11:34:c2:2e:1c:
18:4a:0c:8b:cf:c9:5d:7b:c3:19:ea:58:78:da:1e:
d0:63:4e:85:8a:e7:ff:dc:21:40:98:bc:39:aa:b7:
88:15:9c:86:61:b0:23:2a:7e:7e:e5:86:70:8b:88:
6d:16:a2:57:47:b8:73:3e:bd:ce:be:3c:23:57:e1:
81:7c:df:56:59:47:40:21:cd:01:1b:ac:cf:22:73:
b5:e1:73:35:7d:b0:a6:90:e0:1b:47:a3:79:f4:f6:
56:a2:de:bf:6f:24:f4:6b:26:0f:d2:66:e4:a7:cd:
f3:1e:13:57:e5:8e:98:e2:df:7f:a7:bd:58:bd:53:
95:4b:2e:4d:bc:09:44:05:17:2b:09:20:a9:22:d0:
26:43:78:a0:03:8b:b3:79:e9:0c:9d:a0:7f:f9:75:
63:7a:b0:87:c1:4c:c9:e0:af:8a:94:ef:1f:c4:41:
28:4b:5a:e8:a2:4f:eb:27:83:66:5c:dc:2b:ee:72:
f7:3e:c3:35:a4:19:c6:d6:11:8a:50:15:42:0c:dc:
40:9d:84:ca:08:9c:9f:18:0b:ac:a5:6f:57:18:ef:
e5:69:b8:78:0a:3d:28:67:16:bf:01:c8:c5:d3:bf:
80:f3:72:da:7a:aa:10:3c:12:36:c6:98:16:d4:ec:
3f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:15:3B:04:3D:7D:60:18:3B:27:16:C5:5A:3E:0C:D7:45:1E:AA:48
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS25198.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.27.111.0/24
Signature Algorithm: sha256WithRSAEncryption
17:bf:1b:6c:e2:9c:ed:03:1d:60:35:fc:fb:2b:f2:84:b8:7a:
b9:7e:90:71:c4:67:18:b3:88:fb:73:01:a8:97:e7:66:55:20:
49:c2:b1:fc:0c:e3:15:de:a9:d3:22:cc:ec:c1:bb:74:ba:3f:
54:10:0b:c5:48:f0:d7:5b:db:9a:c5:60:0b:d8:23:d0:03:01:
12:60:10:8d:9e:e5:8f:46:90:77:87:05:ac:81:49:88:81:11:
ff:45:da:f1:3c:22:40:2a:ee:dd:7e:73:65:4a:3e:18:54:14:
12:a8:93:86:a8:72:b3:a6:55:cb:87:59:35:fd:8c:6e:cb:d9:
2f:48:88:43:17:0e:1f:16:88:fa:62:e7:b5:f7:1a:5e:2e:83:
2e:fa:72:59:31:0b:bb:fd:9d:45:20:57:5b:8a:fb:c6:d5:82:
e4:cb:a4:b9:e5:c4:63:4a:cc:13:25:03:57:01:64:2d:22:cf:
0c:a2:4e:8e:2a:b6:a5:2a:78:05:a0:76:7f:61:41:8f:a0:f1:
62:a8:8b:c3:83:22:89:73:1c:b3:cb:09:c2:e2:82:d4:cb:85:
e3:94:75:b0:9d:de:74:f5:b2:e6:37:17:60:2d:41:f4:c8:c9:
86:58:7c:e4:21:23:36:19:22:bd:94:f0:a6:8f:25:88:b8:08:
d6:77:0a:e5
-----BEGIN CERTIFICATE-----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Generated at Tue Mar 25 03:16:12 2025 by rpki-client on console.sobornost.net